Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Iu5FMqSWh6pCP_88h3dRRJs3x_4.roa
File: Iu5FMqSWh6pCP_88h3dRRJs3x_4.roa (raw, json)
Hash identifier: UlHwFF122Ng8EbmUozQwI2/ZglrAbhA/svmRTYCuLTM=
Subject key identifier: 22:EE:45:32:A4:96:87:AA:42:3F:FF:3C:87:77:51:44:9B:37:C7:FE
Certificate issuer: /CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Certificate serial: 12404E0E
Authority key identifier: CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Iu5FMqSWh6pCP_88h3dRRJs3x_4.roa
Signing time: Sat 01 Jan 2022 05:58:55 +0000
ROA not before: Sat 01 Jan 2022 05:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59749
IP address blocks: 2a01:73e0:e030::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306204174 (0x12404e0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Validity
Not Before: Jan 1 05:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22ee4532a49687aa423fff3c877751449b37c7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b5:ca:e2:cc:b9:4b:3d:2f:ca:83:aa:e4:a9:
d5:92:d0:18:b4:0e:e8:49:6a:c5:1f:65:ec:3e:de:
0a:29:7c:e0:25:6d:bf:9e:fb:a4:86:eb:36:4c:a6:
30:0e:5b:22:49:77:7e:1b:f8:40:ab:e8:2e:db:05:
aa:c7:a4:5b:64:44:1b:37:69:f2:59:a1:9d:07:e5:
68:b5:d9:ea:78:9b:49:c7:b8:ea:b3:44:ca:59:09:
3e:e3:8d:2d:b1:91:e8:93:3f:69:3d:14:b7:ec:f7:
72:67:60:a6:5c:86:33:5c:60:a3:32:21:55:20:99:
7e:69:78:02:bc:e1:71:62:1d:3b:f4:60:75:e6:85:
a2:ab:ec:4e:14:9c:ef:d3:b0:4b:30:67:03:01:34:
91:36:1f:a6:5b:00:c1:1e:8f:f4:ed:cd:07:e6:31:
c4:06:59:47:7e:19:2e:8b:2c:a0:e6:57:b9:fe:94:
b0:dd:94:ee:b6:0b:22:10:9b:08:f1:7d:cb:55:75:
a6:e0:d3:e5:d7:88:97:3c:9e:8f:83:b3:ed:5a:33:
dc:a7:b5:93:d6:58:71:9a:83:2b:66:99:af:ca:4f:
b3:b3:d8:93:09:1a:02:38:5d:ef:59:af:7e:9d:10:
f5:61:a8:bd:23:16:5e:9d:6d:d8:d2:06:1a:01:ac:
2b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EE:45:32:A4:96:87:AA:42:3F:FF:3C:87:77:51:44:9B:37:C7:FE
X509v3 Authority Key Identifier:
keyid:CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Iu5FMqSWh6pCP_88h3dRRJs3x_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/y5UvnDOcq9FCNNAMhKJS1-xxoqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:73e0:e030::/48
Signature Algorithm: sha256WithRSAEncryption
91:c7:a7:9e:10:5d:3e:5d:79:25:c8:1f:7e:54:5a:c7:26:9c:
6a:5f:3a:2a:6a:04:34:fc:f5:f2:b9:3f:f4:a7:a3:0b:01:ac:
b5:68:cf:00:25:1a:92:09:ed:8f:34:ef:e5:ad:fa:45:e1:36:
f2:26:3e:3d:51:48:41:79:ae:0d:8b:fc:3b:f9:2e:bf:10:a8:
39:12:74:e1:3f:76:ba:47:09:62:6d:d2:12:92:f9:30:17:1e:
0d:55:6e:de:c4:9c:9b:b7:ba:03:76:95:db:2c:38:8b:36:b0:
a2:bd:c0:5d:b2:47:b7:ba:5a:d6:34:e3:b2:33:f5:21:c9:2b:
14:40:21:fc:ae:95:78:cc:19:ea:f9:b7:d7:44:29:e3:ee:a3:
6c:6a:ad:4d:65:c4:6e:ee:ef:fe:c7:93:26:ef:e4:78:e8:b5:
62:ff:04:15:79:7a:9d:25:09:8f:1e:74:10:34:fa:2e:c2:e8:
26:ef:e4:61:65:fd:3c:3e:85:48:6a:aa:f0:68:73:29:dd:91:
de:6c:c9:65:b3:26:9e:bd:57:ba:62:78:65:21:d8:44:0d:8c:
1d:8d:bf:01:e6:3c:1b:fd:76:e3:cf:9f:56:7b:d4:9d:1c:73:
bd:4e:b3:15:a8:1b:b3:6d:2e:c3:7a:ea:59:d1:c4:77:9d:a0:
ec:49:7d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:41 2024 by rpki-client on console-ams.rpki-client.org