Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/DlbXdQCRNSe0KvZduPUjTb9gni0.roa
File: DlbXdQCRNSe0KvZduPUjTb9gni0.roa (raw, json)
Hash identifier: +/B6OQW4pn2Hp0BbE5Vq/9XSUWHYQUV5dPsSZMy2KjU=
Subject key identifier: 0E:56:D7:75:00:91:35:27:B4:2A:F6:5D:B8:F5:23:4D:BF:60:9E:2D
Certificate issuer: /CN=97ea541c123faa9c0edc729f829e959fd292e37d
Certificate serial: 05CF4747
Authority key identifier: 97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/DlbXdQCRNSe0KvZduPUjTb9gni0.roa
Signing time: Sat 01 Jan 2022 06:53:27 +0000
ROA not before: Sat 01 Jan 2022 06:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0d:9b84:ff00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97470279 (0x5cf4747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ea541c123faa9c0edc729f829e959fd292e37d
Validity
Not Before: Jan 1 06:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e56d77500913527b42af65db8f5234dbf609e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:32:ff:1b:40:6e:c1:d2:a7:31:63:07:2c:69:
3d:ab:97:17:98:71:0c:02:7b:96:37:76:18:95:aa:
21:6c:4f:53:1e:f3:5d:c2:b7:46:78:06:73:3a:db:
f3:a5:ab:9b:68:1d:2d:25:57:47:a1:a4:a3:6f:2e:
08:c3:94:4d:11:b5:bd:f1:ec:fb:e9:38:92:0b:f5:
9b:c0:37:7a:52:2b:81:cb:9d:3f:93:c8:31:84:22:
25:fa:86:e5:0f:34:8b:3e:06:6d:9e:6c:71:1f:6e:
70:8b:be:39:63:90:7d:31:be:40:de:6d:42:50:6b:
b0:33:31:eb:7d:48:cb:09:aa:4a:cb:52:d8:92:21:
6f:6a:46:bf:fc:3f:9e:6b:6c:1a:1c:f1:7a:7a:c2:
1a:7a:8f:62:d6:d3:8d:cf:73:3b:a3:b0:6f:91:b1:
d4:60:27:04:1d:05:d4:bc:5f:19:e6:1b:46:77:94:
ec:95:1f:0d:ba:b5:7a:0f:05:e9:83:b8:03:fc:7c:
67:4b:ba:00:1c:28:ff:c2:aa:3a:0b:c7:d7:d9:98:
33:9d:7b:a1:9a:3b:4b:19:3f:f5:3d:05:4d:0e:2a:
88:71:6b:e9:46:b8:39:79:6b:34:c0:49:a5:a1:5e:
35:bf:fe:b1:9e:fa:de:8b:a4:df:58:37:4a:73:5d:
5e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:56:D7:75:00:91:35:27:B4:2A:F6:5D:B8:F5:23:4D:BF:60:9E:2D
X509v3 Authority Key Identifier:
keyid:97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/DlbXdQCRNSe0KvZduPUjTb9gni0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/l-pUHBI_qpwO3HKfgp6Vn9KS430.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:9b84:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
39:87:64:2e:c1:fb:29:b8:1e:fa:ab:06:c5:c2:c3:16:a4:9c:
bb:13:76:0e:9c:56:0b:3e:b0:ce:c1:30:08:43:7f:92:31:65:
41:5e:08:7b:72:97:6b:10:04:bf:34:d9:ce:c4:67:ce:74:c5:
95:0d:61:94:e4:ae:53:52:63:8a:c3:81:94:8b:eb:63:8e:46:
3f:74:c9:10:a8:7d:e1:2e:0a:96:9c:bc:e6:03:ed:83:5c:18:
bc:3d:0a:37:57:25:bc:07:65:ef:b6:21:f3:52:15:14:cd:1b:
6b:7c:c4:40:f2:5f:dd:99:90:ec:cf:1a:4c:e9:c1:10:a5:3b:
0b:8d:01:6b:25:45:ad:ee:67:6e:ca:5f:52:a6:10:39:01:af:
82:9c:96:c1:64:f5:c6:4a:33:e7:61:7d:98:e3:2e:7d:6b:c3:
eb:07:f1:9b:67:5a:61:5f:d2:01:c8:8a:9c:14:04:ff:f0:ae:
79:0b:af:3a:e1:9b:3f:53:68:62:7f:86:5f:f0:98:07:91:0e:
a1:b3:07:1e:a7:9a:7d:4c:b7:2e:0d:1c:c9:ff:47:ea:60:d8:
f2:5c:9a:bc:db:5b:b8:93:02:c5:8c:35:a7:fb:e3:3b:da:34:
fc:85:6e:9f:41:e2:6c:4f:30:0c:7e:65:be:89:62:65:53:fe:
6f:84:39:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-fra.rpki-client.org