Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/GXDiBXo1m_-4BRFPe2ek7YgGCU4.roa
File: GXDiBXo1m_-4BRFPe2ek7YgGCU4.roa (raw, json)
Hash identifier: l6V31uvynqofI2iwJPhSui+w9tENkJRvR2UaRNynxFs=
Subject key identifier: 19:70:E2:05:7A:35:9B:FF:B8:05:11:4F:7B:67:A4:ED:88:06:09:4E
Certificate issuer: /CN=e1e8b7cab521e88e8022a36424544185538a7b33
Certificate serial: 018462139D4CF0305825F50D0E7850F47537
Authority key identifier: E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/GXDiBXo1m_-4BRFPe2ek7YgGCU4.roa
Signing time: Thu 10 Nov 2022 15:06:03 +0000
ROA not before: Thu 10 Nov 2022 15:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 2a13:1640::/29 maxlen: 29
2a13:1640::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:13:9d:4c:f0:30:58:25:f5:0d:0e:78:50:f4:75:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8b7cab521e88e8022a36424544185538a7b33
Validity
Not Before: Nov 10 15:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1970e2057a359bffb805114f7b67a4ed8806094e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9e:69:c2:5b:68:94:fb:09:8e:87:9c:99:59:
af:d7:e2:3b:17:6f:c1:ef:5f:a9:d8:1d:3a:5d:52:
3b:ad:44:b4:c0:20:6e:9a:25:8f:64:0f:1b:cf:b6:
f9:85:93:fd:ac:4f:b7:bc:76:5b:3b:3c:53:78:78:
1e:bd:21:3a:83:43:f0:9c:c4:3a:b3:ac:f2:ef:31:
76:b3:6d:81:e2:2a:43:a2:3f:3f:7b:e8:bd:63:42:
56:a0:6b:1e:99:0a:ed:6b:dc:41:50:1e:ac:fb:ba:
93:35:2d:8b:d6:52:db:0b:5c:d4:28:db:c7:8e:69:
ac:94:66:c2:d4:83:72:58:55:62:00:eb:f8:64:f8:
b9:3d:b2:47:4d:08:b8:e3:3d:60:c6:18:cf:79:a4:
94:b6:05:53:a8:61:2c:fb:70:44:91:b3:c5:70:a6:
40:3e:b4:8e:50:2e:87:64:1b:e6:66:7c:87:68:41:
0d:39:51:59:c2:f0:73:13:9f:17:b9:6d:48:f2:e7:
00:ac:14:bb:98:13:a6:e9:a6:f6:0e:27:b3:0d:36:
91:ec:25:42:d6:7f:2d:05:1b:98:08:6c:22:87:3b:
e2:fd:27:ab:b9:e6:cf:3f:b9:20:c2:d0:04:1f:79:
14:22:8f:d9:45:67:99:59:36:64:16:04:9c:2e:09:
e7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:70:E2:05:7A:35:9B:FF:B8:05:11:4F:7B:67:A4:ED:88:06:09:4E
X509v3 Authority Key Identifier:
keyid:E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/GXDiBXo1m_-4BRFPe2ek7YgGCU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/4ei3yrUh6I6AIqNkJFRBhVOKezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1640::/29
Signature Algorithm: sha256WithRSAEncryption
5b:03:0b:1e:5b:5c:0c:fe:37:38:18:47:29:5e:d3:52:5a:b2:
c7:1f:b5:0b:19:7d:98:a3:d7:56:f2:81:c2:80:a9:b6:b4:76:
fc:96:c8:ac:b9:b9:f6:e2:f2:5f:86:d5:82:e8:1c:01:c9:b3:
06:d9:67:f3:f6:5b:51:9f:33:9a:c2:14:10:60:4a:46:78:68:
0c:bb:3a:14:ae:d2:bb:78:b6:40:80:9d:2c:06:56:3e:4c:a9:
a3:d2:4b:ae:56:12:c8:d9:19:a3:13:70:73:dd:d5:0c:22:a6:
d3:5f:7d:97:f4:9b:b8:bd:36:8f:c4:02:5c:63:b1:eb:0d:99:
43:64:ab:ef:fd:33:06:cc:30:19:70:e4:cc:a6:9f:27:a7:d6:
c8:4e:aa:b6:f9:7a:14:08:5f:66:4c:1f:63:ae:5d:56:3b:d2:
09:e6:2e:63:cb:04:45:36:49:5d:c7:27:4f:79:50:fd:f2:d0:
7f:39:e3:c6:4b:b9:0a:97:bf:4d:e6:ac:ec:44:c0:c2:7d:15:
df:b0:14:ee:b3:7f:cb:0f:ac:40:02:f5:80:95:4e:27:57:f5:
45:68:d4:9e:b8:a3:2f:04:5f:ec:7b:f2:59:cb:75:08:a9:a0:
bd:82:7b:c8:19:85:3c:de:72:7a:d4:d6:50:eb:2b:dd:aa:a9:
9c:ff:2e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org