Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/UoXYL1u8nPbSe5VjvzHTtpHvEiM.roa
File: UoXYL1u8nPbSe5VjvzHTtpHvEiM.roa (raw, json)
Hash identifier: WuObhUMVJx5pTZOdE2q6b/Uehep391W0Z5iTl2uCO58=
Subject key identifier: 52:85:D8:2F:5B:BC:9C:F6:D2:7B:95:63:BF:31:D3:B6:91:EF:12:23
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 0743EA80
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/UoXYL1u8nPbSe5VjvzHTtpHvEiM.roa
Signing time: Sat 01 Jan 2022 14:00:13 +0000
ROA not before: Sat 01 Jan 2022 14:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142418
IP address blocks: 2a0f:ca81:6960::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121891456 (0x743ea80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 1 14:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5285d82f5bbc9cf6d27b9563bf31d3b691ef1223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5e:e1:c6:37:1f:4f:93:e1:db:53:c9:8b:9b:
8a:56:4b:d3:ee:e7:ce:07:01:c9:30:49:b3:06:f7:
cc:f4:6a:9b:8e:84:ff:80:6c:f2:0a:de:6b:d6:f5:
e0:68:d8:74:cb:a9:1a:38:f6:ac:c7:94:7f:55:9a:
37:1f:44:35:69:db:41:e1:61:96:3f:c7:26:6e:e6:
59:41:4a:87:db:72:d3:5b:97:82:22:49:4c:b9:42:
91:ce:40:9b:fe:4d:7e:84:56:e6:25:c4:48:cb:ac:
fb:e5:1a:d3:50:7f:d9:b4:3e:cc:71:5b:cb:20:7f:
9d:a7:1a:9a:ac:af:e9:b1:ca:ff:08:33:89:0d:c6:
a5:b1:eb:14:73:2d:9e:c1:46:6b:02:02:90:59:bb:
72:79:98:64:f8:25:d8:3e:41:0b:f9:d3:47:2a:70:
2d:f3:3b:1d:07:3b:7b:38:ef:97:69:8f:ac:d1:2b:
db:1c:b4:ee:3d:fc:f2:8b:a9:e8:20:20:73:15:36:
21:24:84:7a:cf:ac:a8:e3:04:98:60:2b:f8:90:bf:
ea:01:68:7f:bc:1e:4c:1b:45:36:28:e5:f9:1e:fb:
49:fc:37:97:a9:f8:64:d1:dd:96:21:b0:27:05:68:
18:2e:a9:15:5d:91:ee:2d:61:80:d5:24:db:ea:71:
9e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:85:D8:2F:5B:BC:9C:F6:D2:7B:95:63:BF:31:D3:B6:91:EF:12:23
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/UoXYL1u8nPbSe5VjvzHTtpHvEiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ca81:6960::/44
Signature Algorithm: sha256WithRSAEncryption
8b:03:10:2d:91:54:4f:20:c6:c0:c7:7d:68:75:e1:51:36:30:
14:1e:eb:f0:8d:64:88:7d:25:10:75:9e:f2:bf:e9:10:5c:42:
c9:a6:3d:fe:b1:38:3c:3d:a5:84:dc:99:18:52:33:23:f1:54:
f0:40:4d:68:eb:23:1f:40:ff:70:72:ea:bb:93:9f:aa:36:60:
40:50:c7:11:72:d4:98:11:6b:66:46:13:95:3a:29:ba:23:2c:
69:f5:c0:c5:ab:f0:81:7e:a4:db:12:65:f5:c5:c9:87:90:2e:
39:37:af:64:63:dd:91:80:1e:3d:09:2c:bc:57:64:ea:8e:d5:
f6:d7:10:8f:17:8e:2d:6c:61:d8:3f:ec:96:5c:4a:c5:42:61:
dc:7b:da:e3:5f:99:92:6d:8b:0d:63:13:43:b8:95:2b:8f:61:
31:50:d7:b2:c2:2a:65:56:08:7b:a7:e6:3e:75:b5:16:8f:d1:
b2:dc:bc:25:fa:12:fe:69:9d:3d:b8:4f:c2:34:70:fe:04:2d:
bd:84:86:95:33:56:57:b4:c8:0c:02:ff:a3:84:8b:92:86:7c:
e9:63:6b:10:2f:1d:6d:71:4c:7e:ce:c6:68:0e:c2:5b:5a:b3:
1b:4b:af:f7:78:ce:c9:ee:b0:4a:65:f9:e6:53:71:33:43:2f:
dd:6c:b5:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:46 2024 by rpki-client on console-ams.rpki-client.org