Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/aCvF_xW964bwX_YYq5XLHaETLY8.roa
File: aCvF_xW964bwX_YYq5XLHaETLY8.roa (raw, json)
Hash identifier: grJjt20xG0Zp9HqBOTeFRxLplC69ev3gQMH5cam7G4Y=
Subject key identifier: 68:2B:C5:FF:15:BD:EB:86:F0:5F:F6:18:AB:95:CB:1D:A1:13:2D:8F
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 0893BB9D
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/aCvF_xW964bwX_YYq5XLHaETLY8.roa
Signing time: Thu 21 Apr 2022 09:09:50 +0000
ROA not before: Thu 21 Apr 2022 09:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 131668
IP address blocks: 2a0f:607:1051::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143899549 (0x893bb9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Apr 21 09:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=682bc5ff15bdeb86f05ff618ab95cb1da1132d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:7d:6e:64:50:b7:53:35:70:ac:b3:64:17:
42:97:68:aa:24:23:2e:96:a9:e7:e0:75:33:7e:63:
14:38:a0:2d:d7:15:13:1c:04:97:01:02:90:84:77:
95:f1:79:44:af:c6:ac:12:c9:16:4c:75:b5:d0:85:
8c:83:74:d5:f4:5a:ab:a8:13:bd:2d:c7:d1:94:7f:
ad:09:b9:b1:5f:91:e9:55:af:64:98:49:57:e2:d0:
a6:f5:d1:d9:27:40:fa:ea:ae:52:2d:7b:6a:2f:0a:
36:ed:06:0a:f3:9a:7f:f8:c6:8b:c0:1a:75:9f:90:
0f:2c:19:32:4f:d5:4a:95:27:f2:88:67:e6:c3:9b:
18:c4:d0:71:4c:a6:d7:a4:24:af:96:32:bd:da:37:
3e:44:10:5c:0f:d1:ec:2c:81:c3:2f:a4:ed:a7:6e:
b5:e6:28:29:a0:1d:0a:0e:9a:4e:47:5d:00:0c:16:
98:7a:c5:f8:9e:0a:cf:43:c8:ab:d5:61:28:30:a5:
e5:f8:66:25:e9:d9:fe:07:54:66:6a:25:ef:7b:90:
94:8e:e2:c2:eb:08:0a:30:bd:0a:f2:56:6a:a1:ee:
36:c0:ea:db:d8:3b:75:c6:69:b4:9a:07:d9:68:54:
03:2a:04:f9:69:48:00:15:a1:37:85:12:c1:99:54:
06:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:2B:C5:FF:15:BD:EB:86:F0:5F:F6:18:AB:95:CB:1D:A1:13:2D:8F
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/aCvF_xW964bwX_YYq5XLHaETLY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1051::/48
Signature Algorithm: sha256WithRSAEncryption
74:10:61:e5:32:f9:8b:22:3d:8e:d3:f5:51:b0:be:5b:b8:97:
07:9c:c4:76:d6:46:39:b5:42:51:7e:f3:45:54:30:1e:f9:2e:
a9:f8:2a:82:91:3c:43:7f:7c:ef:2a:65:92:0d:8d:18:b0:d5:
f5:da:d6:65:92:33:89:5f:6d:9d:26:93:9a:56:83:ad:bc:f0:
f0:2e:3c:c9:88:79:ae:93:84:52:01:7b:b2:e2:45:e2:87:3b:
b6:bd:08:68:d1:a6:7e:22:9a:3c:f8:4f:76:61:c8:b8:ea:53:
1e:3a:a8:8b:9d:f8:f0:1c:a1:5a:e9:05:cd:2d:c8:d5:29:1d:
a8:c4:53:87:c7:ce:2d:ab:6f:1f:15:2d:5f:90:cc:2a:87:3e:
eb:32:62:34:5e:84:30:15:bb:e5:12:30:14:f4:74:b2:ab:a1:
a7:17:37:28:19:78:36:3d:fc:40:3b:cc:d6:1f:2f:44:90:62:
9d:ea:c8:18:f8:e5:4b:42:90:f1:de:7e:e5:31:f0:07:66:0e:
84:c9:20:40:b1:f9:db:a2:71:c9:0c:b8:83:52:7b:94:3c:d7:
66:f0:63:84:ec:76:45:8f:21:67:14:52:cb:0b:8b:2b:64:44:
c6:59:44:42:ad:a9:c7:6c:7f:3f:6a:c3:51:20:d5:ba:cc:b6:
f1:45:38:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org