Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/LkqOeiryutYI7pYXCjd-Ay7pn1M.roa
File: LkqOeiryutYI7pYXCjd-Ay7pn1M.roa (raw, json)
Hash identifier: Q61OetZXY/TQ8hj9hffBgVvRngp8eP/dxx9PG3ux9fY=
Subject key identifier: 2E:4A:8E:7A:2A:F2:BA:D6:08:EE:96:17:0A:37:7E:03:2E:E9:9F:53
Certificate issuer: /CN=d6c480bac972607fdab605593a84b8364c6ab1b0
Certificate serial: 0939A224
Authority key identifier: D6:C4:80:BA:C9:72:60:7F:DA:B6:05:59:3A:84:B8:36:4C:6A:B1:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1sSAuslyYH_atgVZOoS4NkxqsbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/LkqOeiryutYI7pYXCjd-Ay7pn1M.roa
Signing time: Sat 01 Jan 2022 01:57:39 +0000
ROA not before: Sat 01 Jan 2022 01:57:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64449
IP address blocks: 2001:678:1d4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154772004 (0x939a224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6c480bac972607fdab605593a84b8364c6ab1b0
Validity
Not Before: Jan 1 01:57:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e4a8e7a2af2bad608ee96170a377e032ee99f53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:1f:66:5d:2d:62:fd:bf:d6:ea:a0:cc:ba:19:
1c:45:d2:42:3d:4e:63:e1:c8:e6:c9:4c:96:f1:38:
43:6b:90:49:7a:17:58:20:e8:d5:87:34:06:ec:66:
97:87:2a:53:5c:8b:f7:c2:43:7b:35:69:ce:2c:5b:
12:b8:a7:36:e3:5e:e9:29:35:08:ba:1b:b9:97:f7:
a4:04:d2:87:2e:48:ec:98:21:8f:27:f2:bc:22:ff:
c7:6c:a1:86:be:c8:26:0f:ab:76:b3:eb:a3:ff:7d:
c2:2e:f7:1e:24:d6:fd:44:bb:ef:18:a3:f8:f4:50:
3c:c8:c5:db:ea:e9:63:6e:a5:e3:d9:a1:38:ff:05:
58:34:15:98:11:87:8f:5e:bc:aa:17:c1:bf:61:98:
23:6c:94:5e:11:c8:ab:20:5e:ad:6b:91:c5:4e:02:
6a:2c:7f:e9:1b:4f:5e:d5:5a:15:cc:bc:6e:38:2d:
59:52:2d:b5:e8:4c:56:22:6b:92:60:39:ae:37:8c:
97:e9:4b:80:4a:ba:87:b2:8a:1d:24:ab:35:3a:63:
73:f3:e9:e6:20:b8:63:75:66:ad:ea:ba:7d:16:36:
b0:50:d5:ee:a5:58:72:b4:14:58:79:90:d0:e8:2c:
54:a9:9e:34:6d:64:4a:a4:34:30:79:92:6e:5e:bc:
44:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4A:8E:7A:2A:F2:BA:D6:08:EE:96:17:0A:37:7E:03:2E:E9:9F:53
X509v3 Authority Key Identifier:
keyid:D6:C4:80:BA:C9:72:60:7F:DA:B6:05:59:3A:84:B8:36:4C:6A:B1:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1sSAuslyYH_atgVZOoS4NkxqsbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/LkqOeiryutYI7pYXCjd-Ay7pn1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/1sSAuslyYH_atgVZOoS4NkxqsbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:1d4::/48
Signature Algorithm: sha256WithRSAEncryption
bd:d1:e1:0a:b2:68:59:db:b3:82:4f:2a:e8:05:03:8e:4e:ab:
d8:ee:47:39:90:d8:49:24:a6:25:85:42:17:63:c4:47:47:0d:
c2:4c:16:80:41:71:23:06:f6:6a:ae:b3:6c:1c:a4:e8:50:d0:
35:cf:70:39:6b:f0:d5:a9:31:eb:ed:c0:10:a6:ef:bf:45:84:
3f:93:ab:f3:18:43:6a:7c:50:d4:6b:aa:a4:cc:69:80:4a:df:
8a:4d:1b:ad:5b:d6:a6:f4:e7:ba:b7:5c:0b:09:1a:cb:16:dd:
b4:2f:b0:51:66:ff:69:2b:b1:b7:9a:bd:e7:34:d9:11:5b:8e:
72:18:1c:f7:37:3c:c7:47:27:82:f8:92:bc:6f:60:dc:6c:74:
9d:59:93:b2:fc:d0:ee:79:6c:5d:e9:db:04:f9:a1:c8:4a:1e:
5c:58:32:65:b5:0b:6b:43:89:10:58:e9:4a:60:ad:55:e0:a1:
8a:b8:76:81:4b:ba:ec:97:58:0f:3a:ed:8e:83:5d:4c:19:46:
b1:bd:2f:d8:3c:d1:09:34:c8:c6:68:c0:aa:f9:65:ee:26:9b:
9e:7d:f7:19:f3:fc:af:26:af:d8:3b:73:20:dd:03:cd:10:0d:
87:52:4f:a7:29:9e:74:1e:97:8e:a9:ef:9a:ee:e4:27:aa:eb:
ae:7e:f6:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-ams.rpki-client.org