Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/LNAuYZNC-TYqzsiYa3XmaoGdaPA.roa
File: LNAuYZNC-TYqzsiYa3XmaoGdaPA.roa (raw, json)
Hash identifier: D1bzV+44uwS/jZYV8MFcNGf49WXQNK64/nvJBGcCR8Q=
Subject key identifier: 2C:D0:2E:61:93:42:F9:36:2A:CE:C8:98:6B:75:E6:6A:81:9D:68:F0
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18B88383
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/LNAuYZNC-TYqzsiYa3XmaoGdaPA.roa
Signing time: Tue 15 Feb 2022 12:14:46 +0000
ROA not before: Tue 15 Feb 2022 12:14:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44541
IP address blocks: 2a06:7a06::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414745475 (0x18b88383)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 15 12:14:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cd02e619342f9362acec8986b75e66a819d68f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dc:d7:98:07:20:fe:32:04:a6:23:3d:d0:f5:
5a:af:fa:6a:98:b7:59:3e:4c:28:7d:1b:21:f3:ea:
92:c4:be:9a:a3:c8:9f:8a:89:db:1f:41:23:04:e7:
e9:71:4f:8b:ce:96:ce:be:a7:c5:62:2b:34:1c:33:
40:2e:28:d8:0d:49:c7:e1:37:30:07:0e:32:2c:b8:
41:65:f1:ee:4b:0c:23:86:7a:7f:b4:66:0f:f7:7e:
e8:5d:e0:9a:d5:4c:ac:e1:c1:1b:73:4e:39:7e:12:
f2:1e:8a:34:7f:fc:6e:1f:f9:35:9b:bb:8b:3b:0e:
aa:43:9e:e8:20:54:c4:4f:8b:ad:33:f7:db:96:57:
dc:12:e2:71:dd:fb:87:ca:1b:3a:38:37:c5:32:8f:
d0:6a:02:ff:62:7f:18:97:31:1b:e8:53:f2:f3:72:
2a:16:4f:91:c6:46:19:cc:44:cf:89:1a:ac:e4:62:
37:d1:0d:04:49:de:ca:37:12:de:5e:9a:53:c9:88:
2a:e8:57:cf:87:1a:ba:84:e3:bf:b0:cf:55:fc:b1:
86:cc:49:5a:3a:ba:84:57:f6:89:23:5a:a8:ed:3c:
02:c0:e6:4a:0d:70:0f:4c:fb:43:55:e8:ff:8d:18:
37:0a:f4:39:83:80:15:c5:ba:03:98:fe:88:59:61:
c3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D0:2E:61:93:42:F9:36:2A:CE:C8:98:6B:75:E6:6A:81:9D:68:F0
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/LNAuYZNC-TYqzsiYa3XmaoGdaPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:7a06::/48
Signature Algorithm: sha256WithRSAEncryption
c8:3e:32:49:e3:3b:e3:af:1f:32:0b:ff:b4:97:94:bc:6e:3b:
2c:7e:01:4d:ec:37:ae:24:90:76:79:37:6c:de:65:ed:e4:a6:
e2:ca:51:9b:0c:25:c6:0e:1a:1c:9f:e4:85:3b:f5:4a:c1:3d:
d5:4c:bb:97:84:f1:03:e2:11:49:a6:17:19:ff:d6:8e:7c:80:
1d:57:15:1b:23:61:29:c5:7a:d2:47:50:89:8e:73:96:fa:4e:
33:2d:72:58:c2:05:20:81:0c:c5:cb:a9:95:3a:18:93:33:25:
54:9f:96:c2:a0:77:e2:4e:fe:8a:aa:81:01:ac:ba:18:6d:c3:
79:be:41:a8:b9:81:67:44:6a:13:48:d2:02:ac:7c:99:d4:cc:
42:6f:a0:0b:a6:be:26:20:5f:7e:28:ff:c5:af:31:1b:28:9e:
95:c0:0a:27:19:1d:5d:c8:70:6e:f0:87:4e:77:eb:b7:df:db:
c0:5f:58:82:3e:98:27:e6:81:24:60:9f:ed:ae:6a:39:de:04:
00:87:7c:a7:9c:92:d1:12:d4:81:ad:04:59:ac:03:c1:bb:bf:
7b:a9:34:08:28:ba:d6:bf:54:62:1f:d8:7e:ad:fd:1c:6b:39:
cc:a0:5a:d9:1e:29:5b:c8:b3:29:b6:76:a1:88:3d:86:0f:e2:
36:9b:db:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org