Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/V2UtXbLDSZSGfD4Hmv4HO4MMZhA.roa
File: V2UtXbLDSZSGfD4Hmv4HO4MMZhA.roa (raw, json)
Hash identifier: kYM270C+sgteUutiJbTt0GYhtsyn1ZVKhyT8kcbNVBI=
Subject key identifier: 57:65:2D:5D:B2:C3:49:94:86:7C:3E:07:9A:FE:07:3B:83:0C:66:10
Certificate issuer: /CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Certificate serial: 0182E9CF5E93718F7165AEB7331516B4DEAF
Authority key identifier: D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/V2UtXbLDSZSGfD4Hmv4HO4MMZhA.roa
Signing time: Mon 29 Aug 2022 13:34:17 +0000
ROA not before: Mon 29 Aug 2022 13:34:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51559
IP address blocks: 2a06:41c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e9:cf:5e:93:71:8f:71:65:ae:b7:33:15:16:b4:de:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Validity
Not Before: Aug 29 13:34:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57652d5db2c34994867c3e079afe073b830c6610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:64:dc:2b:d6:cb:b5:1e:2a:0f:82:90:af:be:
7b:9f:3d:5e:16:ae:65:65:95:9e:1d:48:71:00:f8:
7c:0e:d7:f3:24:03:ef:36:e9:57:db:de:76:2f:9d:
b2:d2:06:04:4e:88:9f:9a:99:7e:af:10:ee:b0:9d:
4d:ec:b5:d3:da:31:ca:13:04:21:b8:f4:c7:9a:42:
12:ce:b8:1b:3a:f2:85:e1:3e:88:8a:b9:e0:e1:aa:
44:73:ee:74:b1:c8:63:ce:a3:09:26:1f:01:55:5e:
e7:ef:dc:ac:ad:97:b7:61:5e:9c:2e:63:c6:70:08:
f1:82:f7:bc:cb:b7:09:be:8e:cb:c2:17:a6:15:38:
c7:ce:8b:5b:7c:e5:0e:b4:e4:2c:57:cb:9f:d4:a6:
bd:72:bc:b6:81:6b:d8:d2:3c:a5:5c:7c:30:24:e8:
61:87:01:cf:35:ee:23:cf:19:29:07:e8:e7:92:d4:
05:c0:11:58:1c:94:5e:2c:85:d7:ff:b5:ae:f3:14:
18:9d:51:67:bc:c7:a1:35:9a:51:01:7e:87:24:26:
84:8b:90:3d:76:a1:d5:e2:0a:1c:df:a4:0a:1f:a9:
b5:27:44:19:91:97:ee:cb:26:a1:38:43:37:f2:d9:
63:6f:7d:11:84:86:83:e5:16:b4:63:b8:bd:6a:5c:
5b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:65:2D:5D:B2:C3:49:94:86:7C:3E:07:9A:FE:07:3B:83:0C:66:10
X509v3 Authority Key Identifier:
keyid:D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/V2UtXbLDSZSGfD4Hmv4HO4MMZhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:41c0::/48
Signature Algorithm: sha256WithRSAEncryption
74:ad:fe:c2:09:cc:54:f5:4b:11:50:d9:26:37:cf:4d:53:08:
dd:d3:9b:11:59:b1:cc:68:34:74:3a:83:86:21:f2:08:a8:19:
ea:94:0b:e7:35:db:4b:67:1e:2c:b2:ea:1b:2c:cc:34:56:58:
78:4c:ca:a8:04:b3:a0:62:01:ac:b8:e3:6e:4e:04:51:fa:37:
80:bb:f2:63:23:60:9e:af:a7:fa:01:98:9c:c6:cd:0e:c0:10:
fb:48:7d:f3:2e:76:de:05:c7:91:f6:6d:f6:08:e8:57:cf:db:
ab:3c:2c:e2:77:fc:4e:6c:91:06:57:98:60:e0:98:ef:b7:df:
2f:e2:6e:9c:5f:b7:91:a6:f5:a4:77:b1:2b:95:bf:58:10:c9:
b9:63:59:27:f2:39:10:f2:ed:14:09:06:37:4b:cf:27:c8:80:
04:9c:90:14:ec:79:77:05:a8:83:98:f4:cb:67:d9:51:58:2b:
b4:67:a9:08:51:c5:6b:c5:d3:3f:53:d2:de:1f:69:6a:3d:0a:
45:16:27:34:42:e1:76:72:18:60:34:60:d0:d2:0f:cf:f2:89:
17:63:52:05:8a:5f:95:29:9d:87:0a:a3:d2:58:6a:9c:40:1b:
be:1b:cf:00:a9:10:72:79:4d:41:00:db:e9:40:4a:75:02:4b:
b3:e2:27:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:38 2023 by rpki-client on console-fra.rpki-client.org