Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/M5ZDs3TnLbhCfvpAVDVTTYUplhE.roa
File: M5ZDs3TnLbhCfvpAVDVTTYUplhE.roa (raw, json)
Hash identifier: dgLCWXiEKs8XiqmSOoyCByonqIJVrf5ufdr0CqDX18Y=
Subject key identifier: 33:96:43:B3:74:E7:2D:B8:42:7E:FA:40:54:35:53:4D:85:29:96:11
Certificate issuer: /CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Certificate serial: 0A59D664
Authority key identifier: 92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/M5ZDs3TnLbhCfvpAVDVTTYUplhE.roa
Signing time: Sat 01 Jan 2022 01:56:44 +0000
ROA not before: Sat 01 Jan 2022 01:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136468
IP address blocks: 2a00:edc0:136::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173659748 (0xa59d664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Validity
Not Before: Jan 1 01:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=339643b374e72db8427efa405435534d85299611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:01:49:49:e4:15:2f:b6:a8:8b:24:8f:22:1c:
e0:4f:7d:37:b6:c4:0c:e7:bb:45:6e:0b:4c:06:49:
36:6d:4e:ab:79:f1:f8:a9:a5:65:96:6b:24:4f:d7:
a8:d1:da:c9:5c:90:26:f7:c2:e2:64:f0:77:1c:81:
f4:ac:f2:57:24:ba:c0:1f:99:af:1d:97:55:c9:02:
04:3b:9b:97:60:0d:f6:92:05:1a:f7:a4:e6:27:3b:
52:22:df:4e:c0:21:48:cd:fa:e5:52:27:8e:7c:15:
10:6c:4e:46:5c:77:ad:ff:95:97:a4:38:a9:f2:9d:
9f:77:90:bc:55:f1:fd:c8:b2:a9:e5:63:b2:a1:e0:
e2:b8:26:be:b3:08:44:e1:62:49:c3:15:aa:85:4f:
f9:fb:0f:ed:a8:8a:40:8c:e7:54:fe:79:c1:f4:96:
03:7b:c5:0a:e4:3b:8d:7b:3b:79:11:28:e4:5a:06:
65:68:23:a9:f8:2f:d1:42:0e:fc:c8:19:d8:fa:33:
24:47:ac:df:68:8b:56:e6:bf:d0:69:99:85:e8:88:
5d:0e:0e:70:c4:9f:ca:ad:af:a6:99:39:08:77:41:
87:0d:13:02:b2:60:c8:6d:5d:b1:71:e2:3d:78:3a:
80:12:e1:86:05:59:20:c9:fa:d3:ae:fb:09:c1:fc:
d9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:96:43:B3:74:E7:2D:B8:42:7E:FA:40:54:35:53:4D:85:29:96:11
X509v3 Authority Key Identifier:
keyid:92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/M5ZDs3TnLbhCfvpAVDVTTYUplhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kjGbzZsJqYSwcOLvWI_8-otzyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:edc0:136::/48
Signature Algorithm: sha256WithRSAEncryption
2c:bf:00:09:bc:7a:2d:bf:5e:0d:a6:d3:39:f7:cb:5f:f0:1e:
a2:ad:a9:9b:1a:29:8d:ba:d3:f9:22:d7:6d:68:c9:a1:91:4d:
b3:d8:8f:8a:2e:2c:84:70:9c:40:78:8a:0c:d8:3b:26:94:ea:
18:56:10:54:3d:2e:b2:73:61:6c:03:11:31:ef:f8:4c:91:05:
f3:fe:06:4a:9d:f0:ad:6a:f9:2e:58:31:82:c5:d6:69:95:2b:
b9:c7:3c:59:2c:e4:53:8b:1c:2e:3b:9e:ae:d8:1c:7d:d9:ca:
ba:7a:f2:94:27:64:9f:f8:32:38:b0:8e:cb:70:43:f6:d3:47:
6e:23:d8:c6:bb:fe:97:22:e8:d5:8a:be:95:b5:bc:37:4f:ae:
e1:b2:2b:fe:c6:83:ae:00:47:45:28:2a:89:16:34:3b:93:d0:
58:b3:ae:65:e5:79:cc:84:0a:14:98:e6:df:b9:19:72:6f:ef:
f2:e0:b3:87:92:35:6b:a5:09:d0:94:0b:73:7d:cb:11:66:34:
b8:95:a1:e4:49:d4:40:ca:b4:f4:72:27:e0:bf:0e:3e:81:01:
e5:af:99:9c:5d:5f:62:8e:9d:1c:a2:a6:05:27:c0:0d:2a:0a:
ce:16:fd:b1:d3:4c:12:3b:cb:de:d6:cb:33:b6:83:b3:70:0d:
eb:54:49:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org