Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/PQW4WY4wzlMa61IIFPZ6ZD-rUDg.roa
File: PQW4WY4wzlMa61IIFPZ6ZD-rUDg.roa (raw, json)
Hash identifier: lHr8KY+9atQejo0gtbdZjwrnamz16TuNgSwCUZr4KHU=
Subject key identifier: 3D:05:B8:59:8E:30:CE:53:1A:EB:52:08:14:F6:7A:64:3F:AB:50:38
Certificate issuer: /CN=5e7c7736945c29a77bacd5b18b0ff58751117bad
Certificate serial: 0183D0DEF6BA45118A3F6C76A9AD0A9C97C1
Authority key identifier: 5E:7C:77:36:94:5C:29:A7:7B:AC:D5:B1:8B:0F:F5:87:51:11:7B:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xnx3NpRcKad7rNWxiw_1h1ERe60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/PQW4WY4wzlMa61IIFPZ6ZD-rUDg.roa
Signing time: Thu 13 Oct 2022 10:23:36 +0000
ROA not before: Thu 13 Oct 2022 10:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48789
IP address blocks: 2a12:6cc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:de:f6:ba:45:11:8a:3f:6c:76:a9:ad:0a:9c:97:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e7c7736945c29a77bacd5b18b0ff58751117bad
Validity
Not Before: Oct 13 10:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d05b8598e30ce531aeb520814f67a643fab5038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:4f:16:8f:9e:50:93:0b:ad:39:5e:58:42:
ff:96:13:c0:a6:77:1a:52:37:bf:20:4b:bc:5f:4b:
31:90:9c:1d:b3:46:db:35:05:c3:cb:4a:ae:bf:03:
6c:50:03:c0:12:bf:b6:ef:81:d8:ff:c9:e0:85:2e:
1d:24:10:fb:bb:79:8c:cb:53:e6:fa:5e:8e:02:02:
fb:0f:e9:cf:67:19:6a:3a:5c:aa:b2:c3:8c:9e:6d:
d4:02:d4:d4:cf:91:98:8f:cf:8f:f9:c6:63:3e:bf:
d8:78:d6:17:ff:16:87:71:3a:99:7e:03:a5:19:e4:
bd:fa:79:5f:fc:5e:b0:c8:13:62:a0:65:49:82:66:
d4:c8:86:a3:c9:02:be:8f:f5:c1:ff:3b:b9:f8:b2:
ab:50:a1:db:b8:bd:28:39:6b:30:f8:b9:05:90:70:
1e:e2:22:7a:2e:9b:73:67:c5:3f:ea:ac:09:6d:2c:
76:ae:f1:e9:49:05:35:56:9a:27:49:bb:97:51:cb:
02:53:39:48:34:84:03:8c:f3:7a:94:69:07:59:06:
27:48:bb:ed:6e:25:c2:90:bb:47:ae:12:25:bb:cc:
43:f1:45:9e:49:fa:ac:29:2e:b9:be:15:df:08:65:
c4:7d:5a:6b:dd:5d:2b:45:6b:46:df:13:16:35:51:
dc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:05:B8:59:8E:30:CE:53:1A:EB:52:08:14:F6:7A:64:3F:AB:50:38
X509v3 Authority Key Identifier:
keyid:5E:7C:77:36:94:5C:29:A7:7B:AC:D5:B1:8B:0F:F5:87:51:11:7B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xnx3NpRcKad7rNWxiw_1h1ERe60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/PQW4WY4wzlMa61IIFPZ6ZD-rUDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/Xnx3NpRcKad7rNWxiw_1h1ERe60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6cc0::/32
Signature Algorithm: sha256WithRSAEncryption
bd:fe:f3:8f:ce:84:cf:14:07:6c:7d:d7:81:f0:3b:d3:3e:79:
06:8a:39:fc:9c:b6:6e:9b:1b:95:1e:e0:a1:5b:f1:2c:c5:5c:
ca:9b:f5:45:52:b0:14:a8:ca:79:68:36:ac:4e:ee:b2:c5:13:
74:27:a7:92:77:53:66:24:58:f5:91:f8:91:c3:c4:bd:5e:86:
63:8f:b4:28:1f:6e:34:06:e6:42:b0:4d:86:0c:cd:a3:3e:ef:
9c:4e:68:f8:f6:5b:c1:00:93:d6:a4:81:2f:8f:13:ff:b2:8a:
9d:bf:a1:2c:8b:a6:ea:aa:12:47:01:ff:30:65:29:94:86:67:
b8:7d:c0:bb:30:ce:02:44:0f:9e:e8:ac:3b:be:ad:ce:a7:2c:
d5:12:5a:11:74:dc:11:d8:b4:d2:ac:71:9c:e1:11:b4:8c:b8:
82:cc:1a:cf:1b:55:c1:f3:da:cf:53:c7:2b:99:86:ea:93:ad:
56:66:fd:51:e0:3e:6d:d6:b1:2f:ae:8a:7a:b2:48:cb:60:cd:
86:74:34:e3:14:cc:6d:ff:36:5f:77:28:9e:11:19:51:aa:7f:
32:b4:fb:31:f9:60:cf:5f:d7:d6:57:5c:bb:8a:82:f7:82:62:
ef:9f:2c:57:32:71:fd:83:b1:1c:24:65:30:67:b1:40:ee:ff:
16:22:68:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:35 2024 by rpki-client on console-fra.rpki-client.org