Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/99ccfa-c96f-4d12-b18f-5b3a41125bea/1/_0LFQSNkA6fCyhbvWz-UQzozVvw.roa
File: _0LFQSNkA6fCyhbvWz-UQzozVvw.roa (raw, json)
Hash identifier: c0FY4Czrc7ldqCfLTFDpDiIhBEpQqKB43/XP0K/qfwc=
Subject key identifier: FF:42:C5:41:23:64:03:A7:C2:CA:16:EF:5B:3F:94:43:3A:33:56:FC
Certificate issuer: /CN=544905eaad4cea6c3f2d650c08fae3d445186752
Certificate serial: F9DD5B
Authority key identifier: 54:49:05:EA:AD:4C:EA:6C:3F:2D:65:0C:08:FA:E3:D4:45:18:67:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VEkF6q1M6mw_LWUMCPrj1EUYZ1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/99ccfa-c96f-4d12-b18f-5b3a41125bea/1/_0LFQSNkA6fCyhbvWz-UQzozVvw.roa
Signing time: Sat 01 Jan 2022 13:02:26 +0000
ROA not before: Sat 01 Jan 2022 13:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210941
IP address blocks: 2001:67c:810::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16375131 (0xf9dd5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=544905eaad4cea6c3f2d650c08fae3d445186752
Validity
Not Before: Jan 1 13:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff42c541236403a7c2ca16ef5b3f94433a3356fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:86:e8:21:b7:8c:80:ea:ef:7c:39:b1:16:f0:
27:0a:4a:5b:29:2a:3f:1c:32:4a:82:e5:85:6b:df:
54:11:c3:43:36:ec:ff:6d:21:04:00:50:f8:60:14:
11:3d:63:8f:47:a6:3d:6c:4d:2f:1d:26:d3:3e:00:
d6:0e:87:5f:a8:5e:e9:94:b9:af:75:b1:1b:76:96:
4d:42:d2:b3:be:90:7f:41:63:d6:5d:28:db:2b:8c:
e1:e2:ea:75:f5:8b:b4:22:9f:59:1c:1c:99:ea:62:
55:f5:f7:5d:65:08:ce:46:a1:3c:4f:d2:83:42:d0:
8a:35:a9:ef:29:be:fa:09:bd:d9:48:f6:fb:ac:37:
47:20:c4:89:67:bc:b3:be:c5:9d:6c:20:b0:f8:91:
90:3b:d7:00:5a:ed:49:79:63:0f:d3:71:ef:44:62:
71:55:68:61:d5:a0:7c:f5:4c:75:3b:2a:8e:c6:51:
c2:73:bd:66:4f:a7:0a:cf:4c:2c:2e:b8:29:fd:12:
ed:0e:70:c3:0f:c7:f6:74:9a:93:dd:14:06:6f:24:
e3:f1:a0:ff:31:b9:1d:16:f8:fe:04:7a:94:67:30:
73:18:8d:72:59:03:fc:63:63:1b:00:6e:5f:2c:ba:
c2:8c:90:2a:7e:85:9b:f4:b9:6e:33:be:62:ea:68:
df:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:42:C5:41:23:64:03:A7:C2:CA:16:EF:5B:3F:94:43:3A:33:56:FC
X509v3 Authority Key Identifier:
keyid:54:49:05:EA:AD:4C:EA:6C:3F:2D:65:0C:08:FA:E3:D4:45:18:67:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VEkF6q1M6mw_LWUMCPrj1EUYZ1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/99ccfa-c96f-4d12-b18f-5b3a41125bea/1/_0LFQSNkA6fCyhbvWz-UQzozVvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/99ccfa-c96f-4d12-b18f-5b3a41125bea/1/VEkF6q1M6mw_LWUMCPrj1EUYZ1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:810::/48
Signature Algorithm: sha256WithRSAEncryption
2e:5f:36:3b:de:a3:27:56:11:bc:ca:e3:91:78:0d:2a:f2:f6:
9b:57:f4:b7:f0:d9:2d:c1:3d:12:93:34:a5:10:fd:9f:75:76:
87:5c:b0:9e:4b:27:93:38:50:cf:36:ef:4e:ef:08:27:17:2f:
a7:86:9c:e5:19:95:89:4e:c9:48:fb:95:87:4e:a2:04:40:97:
e2:94:f8:05:ca:20:52:3d:3a:90:bd:00:14:72:1d:d1:a6:a9:
55:12:7b:99:9a:59:e1:7b:95:88:5a:10:19:32:ba:3d:9e:30:
52:b6:fd:31:d8:7b:97:b9:4b:00:6b:fd:38:f7:65:1f:53:15:
90:cb:66:7b:27:f0:4f:d8:c8:37:85:e3:f2:ab:08:5b:d8:ed:
37:37:d1:bc:d6:41:32:b9:35:41:6a:a6:9d:af:78:4c:e2:3d:
7f:e2:5c:9c:b7:70:56:af:3a:6b:b8:c9:43:75:e9:73:e4:05:
ec:f5:a6:b9:1a:c2:c1:97:c4:12:05:fa:75:d9:37:8f:24:7b:
96:76:59:7c:28:0c:9a:bd:ec:d5:19:35:52:83:1c:cb:2a:ab:
67:df:93:f3:f0:43:a6:2c:31:fc:d7:dd:36:23:0b:9a:ac:23:
19:04:ff:1e:43:9d:57:e6:d0:50:e9:1e:f8:29:c8:cc:a9:47:
87:07:64:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:36 2024 by rpki-client on console-ams.rpki-client.org