Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/FhjjSFxsqForLTjbnLsLp9eOYts.roa
File: FhjjSFxsqForLTjbnLsLp9eOYts.roa (raw, json)
Hash identifier: S1xSACKLVtz0pObWG/ryFJi+W2dYvULXBX5u+UCRJcs=
Subject key identifier: 16:18:E3:48:5C:6C:A8:5A:2B:2D:38:DB:9C:BB:0B:A7:D7:8E:62:DB
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0552A976
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/FhjjSFxsqForLTjbnLsLp9eOYts.roa
Signing time: Sat 01 Jan 2022 06:56:04 +0000
ROA not before: Sat 01 Jan 2022 06:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60188
IP address blocks: 2a06:5040:9::/48 maxlen: 48
2a06:5040:8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89303414 (0x552a976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 1 06:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1618e3485c6ca85a2b2d38db9cbb0ba7d78e62db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:03:6d:73:b8:29:67:42:00:b3:57:13:f5:f7:
fd:bc:e4:f5:8d:e2:42:a6:31:25:52:1a:91:19:f2:
5b:45:df:36:f4:5c:15:28:57:80:2c:92:89:fe:49:
fc:64:4e:0d:ca:3b:b2:6f:03:61:80:15:aa:c7:62:
77:41:7e:94:3f:dc:be:b3:30:51:a7:be:54:41:a7:
cd:65:32:d3:b0:7a:fd:e2:31:cc:d5:db:1a:cb:b9:
d0:84:19:a9:fb:cf:83:1a:aa:73:46:3e:8d:14:bd:
25:57:73:55:d5:5e:a2:e6:d7:7b:00:6e:ae:5f:05:
fe:fb:71:8c:9e:51:ea:ae:2c:ce:eb:aa:1a:c6:f4:
ae:1e:88:c0:94:86:9b:92:43:80:02:c4:72:e9:b5:
2f:1d:d0:a5:5f:f4:4f:35:f1:d6:54:fa:dc:b9:df:
1d:fc:d4:4e:9d:c7:e4:4d:03:29:33:7d:7b:ae:d6:
57:40:47:95:14:f5:3b:8b:fa:8c:8c:b4:69:04:a7:
7a:98:4f:56:da:c4:d7:8b:e7:ff:fa:87:d8:02:ba:
a4:67:c1:38:8a:5d:01:4f:b7:07:b7:ab:d9:54:4c:
70:7d:10:c2:bc:17:62:99:64:51:b7:da:6b:c3:8d:
b8:a5:e5:bd:16:92:d4:9e:c8:13:19:5d:29:27:c8:
26:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:18:E3:48:5C:6C:A8:5A:2B:2D:38:DB:9C:BB:0B:A7:D7:8E:62:DB
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/FhjjSFxsqForLTjbnLsLp9eOYts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:5040:8::/47
Signature Algorithm: sha256WithRSAEncryption
0a:a8:9b:7d:f2:3e:42:6e:9b:0c:7c:85:a8:31:1a:e8:4f:20:
09:3d:6c:5c:6c:54:ec:58:17:8d:3f:56:c3:b7:8b:5a:47:97:
f8:64:af:45:8c:fe:f3:91:5c:a7:e3:17:76:2d:eb:4f:f7:86:
39:fc:f3:1c:81:d8:31:06:27:34:0f:bb:49:96:8d:47:76:d5:
9d:f6:4c:ce:65:17:ea:d9:54:e4:2b:42:b9:6c:40:50:4b:4c:
f5:23:bc:4c:98:d1:b4:53:39:28:f6:bf:f1:36:52:05:19:d3:
68:6b:5f:00:eb:ed:0a:4a:8c:df:64:1d:8d:44:7f:93:a0:b6:
dd:c5:5f:04:12:7b:b8:b6:2d:73:09:5c:39:61:79:30:b0:b0:
c0:91:e7:3f:96:75:7b:9a:55:97:a3:5c:7d:d8:19:0b:95:34:
dd:dd:84:8f:aa:37:53:f9:49:6e:0a:5d:64:09:d4:b3:84:7f:
d4:34:ab:d4:7b:d2:16:fe:cc:fc:3c:cf:ab:5b:85:3d:ed:bb:
8c:78:fc:5c:87:48:70:a8:3c:63:39:dd:67:47:99:e4:b0:dc:
26:69:b5:b5:3c:50:ad:8d:19:a9:16:35:a9:a8:f4:22:25:10:
67:37:4a:73:3e:61:f2:e8:a5:d9:10:85:8e:43:8b:95:17:a6:
85:69:19:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:14 2024 by rpki-client on console-ams.rpki-client.org