Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/418fe2-4f7d-40ac-abe4-119bbd761973/1/a0gT64kBYsq_LnnfAtP_sf0oTPA.roa
File: a0gT64kBYsq_LnnfAtP_sf0oTPA.roa (raw, json)
Hash identifier: 9yOgpzmHlvZbS/nXlisdiuNnI+gnEVcE+gW5t9R9BOw=
Subject key identifier: 6B:48:13:EB:89:01:62:CA:BF:2E:79:DF:02:D3:FF:B1:FD:28:4C:F0
Certificate issuer: /CN=fc2621ee31e06aadc1ca3a376e457d8d0496b10d
Certificate serial: 04C12C19
Authority key identifier: FC:26:21:EE:31:E0:6A:AD:C1:CA:3A:37:6E:45:7D:8D:04:96:B1:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_CYh7jHgaq3Byjo3bkV9jQSWsQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/418fe2-4f7d-40ac-abe4-119bbd761973/1/a0gT64kBYsq_LnnfAtP_sf0oTPA.roa
Signing time: Sat 01 Jan 2022 03:59:47 +0000
ROA not before: Sat 01 Jan 2022 03:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59570
IP address blocks: 2001:678:d30::/48 maxlen: 48
2001:678:d34::/48 maxlen: 48
2001:67c:2148::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79768601 (0x4c12c19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc2621ee31e06aadc1ca3a376e457d8d0496b10d
Validity
Not Before: Jan 1 03:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b4813eb890162cabf2e79df02d3ffb1fd284cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4c:eb:8e:14:c6:06:3b:13:77:00:9d:d3:1d:
0f:2f:c9:8d:fe:9a:83:ac:23:a5:20:d0:b8:9c:74:
50:27:32:a5:af:75:85:22:1a:8a:0e:f6:22:27:40:
e1:44:e4:e5:07:24:1a:f7:77:72:7c:1f:a1:22:2d:
f0:75:3f:01:58:f3:87:8f:af:04:8e:04:18:b2:54:
c7:a0:4d:c7:68:d3:a7:c2:2e:25:c6:3b:54:af:40:
c8:52:63:c5:83:59:78:3a:a2:94:87:15:b2:1b:fd:
ea:e7:a4:61:e2:90:20:18:a3:ee:05:93:e9:d0:a4:
2d:14:ad:d2:2b:07:72:53:71:3c:16:ec:69:5e:e0:
15:f1:d4:82:62:bd:f0:f6:2f:c6:f7:cd:c1:e3:9c:
9e:8c:63:80:26:52:73:46:69:d5:57:db:90:96:72:
43:33:10:9c:11:56:50:ee:c8:8e:7f:6f:96:b1:e3:
12:54:87:05:eb:fd:bc:b6:fa:58:e1:b5:20:51:55:
0f:09:4b:bf:e2:c2:38:43:5b:54:aa:41:e6:0f:44:
90:56:1e:20:d8:03:d6:e0:e8:0a:48:e8:c8:d3:76:
9c:b4:ff:2a:42:4c:8b:dd:5f:e6:91:d9:85:99:0f:
f2:c2:9b:b9:8f:c0:9c:92:9a:02:56:c0:e2:82:7d:
2b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:48:13:EB:89:01:62:CA:BF:2E:79:DF:02:D3:FF:B1:FD:28:4C:F0
X509v3 Authority Key Identifier:
keyid:FC:26:21:EE:31:E0:6A:AD:C1:CA:3A:37:6E:45:7D:8D:04:96:B1:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_CYh7jHgaq3Byjo3bkV9jQSWsQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/418fe2-4f7d-40ac-abe4-119bbd761973/1/a0gT64kBYsq_LnnfAtP_sf0oTPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/418fe2-4f7d-40ac-abe4-119bbd761973/1/_CYh7jHgaq3Byjo3bkV9jQSWsQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d30::/48
2001:678:d34::/48
2001:67c:2148::/48
Signature Algorithm: sha256WithRSAEncryption
98:72:8b:45:f1:ca:1e:ce:9c:73:a8:de:f6:83:35:2e:5b:10:
3c:7b:eb:19:9c:b9:60:62:e8:74:9f:fa:bb:62:97:76:82:0f:
bd:4b:74:1b:fa:0a:a6:57:27:ea:60:68:a3:2b:37:1c:33:dc:
63:e7:09:83:a5:6a:1e:f2:14:6f:6c:4f:d0:7f:b6:6e:96:e8:
57:ea:83:71:25:41:96:57:44:bd:ac:9a:9d:e1:04:56:b6:a2:
25:65:da:a4:5e:ef:39:b8:59:18:c3:4d:fa:61:61:c8:69:1b:
40:97:cf:ba:5c:4c:e2:57:6c:52:90:46:54:a4:4a:37:80:2b:
c8:3a:90:9e:2a:7d:fd:70:68:ed:1a:7f:33:d4:15:45:64:35:
1d:8f:05:85:cd:43:11:6d:0d:58:fa:06:ec:5f:1f:3f:ae:b5:
dc:0f:a4:54:b6:1b:3d:27:15:c4:1f:e1:fb:5c:14:87:54:05:
5c:da:b9:14:66:36:ba:86:2c:0b:87:57:49:d8:27:5a:4a:b0:
99:74:d6:bd:5b:04:09:48:dc:a8:9d:08:7b:df:5b:a9:9c:82:
48:2e:fe:c5:60:bc:aa:d8:6d:09:99:78:e8:9b:6c:27:c5:ed:
a0:53:2a:1d:93:9c:ba:33:ff:94:40:cb:65:0f:1d:42:da:82:
06:eb:00:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org