Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/5GpQUqIeLfT2Yi7csg1nzIbJ5pE.roa
File: 5GpQUqIeLfT2Yi7csg1nzIbJ5pE.roa (raw, json)
Hash identifier: 0HKpHVbhtCxSglx2LkUlJK+SHWDft098XlUvFcar+KQ=
Subject key identifier: E4:6A:50:52:A2:1E:2D:F4:F6:62:2E:DC:B2:0D:67:CC:86:C9:E6:91
Certificate issuer: /CN=5b6d178f13851306b5634df159716319f4d82478
Certificate serial: 05F76A
Authority key identifier: 5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/5GpQUqIeLfT2Yi7csg1nzIbJ5pE.roa
Signing time: Tue 24 May 2022 23:47:13 +0000
ROA not before: Tue 24 May 2022 23:47:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 2a0e:36c2::/32 maxlen: 32
2a0e:36c0::/32 maxlen: 32
2a0e:36c6::/32 maxlen: 32
2a0e:36c3::/32 maxlen: 32
2a0e:36c1::/32 maxlen: 32
2a0e:36c5::/32 maxlen: 32
2a0e:36c0::/29 maxlen: 32
2a0e:36c7::/32 maxlen: 32
2a0e:36c4::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391018 (0x5f76a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b6d178f13851306b5634df159716319f4d82478
Validity
Not Before: May 24 23:47:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e46a5052a21e2df4f6622edcb20d67cc86c9e691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e3:48:21:9e:85:bf:1c:9f:54:66:5e:6f:32:
f6:2f:03:46:25:3c:a7:20:8e:6c:b1:5e:7c:1e:77:
8f:c2:b4:c2:82:3c:13:d6:29:fb:02:db:e6:a7:24:
57:76:30:bf:38:e4:df:a2:c5:97:22:ac:a4:d6:fa:
b9:d1:dc:8c:78:7b:29:bf:f4:ea:00:80:b3:bf:21:
3d:af:b5:80:23:b8:32:a5:ef:d2:d2:69:2b:6b:a2:
3f:40:ac:fb:98:5e:0f:15:e3:b0:6d:37:c2:e8:de:
70:83:ca:dd:e1:b8:37:17:90:77:6f:2d:59:f8:cf:
45:7b:cf:85:9d:80:fa:56:ef:03:4a:65:7d:5b:7c:
0c:13:18:95:6f:d0:d7:38:3c:8e:27:6a:7e:01:55:
d1:5d:27:49:a6:10:cb:38:7b:0a:bc:56:c2:5d:ae:
85:91:27:62:c6:03:c8:e7:ae:30:4a:d2:63:51:0f:
25:40:28:83:d3:a0:bc:c0:f0:ff:75:33:42:02:46:
65:33:f6:b5:29:ec:39:34:42:77:fc:3f:ed:5f:5f:
0a:47:cd:5b:bc:41:0d:e2:9e:33:4b:20:c5:99:a0:
92:1b:3b:5f:23:9f:78:0a:68:2f:f9:95:1f:0d:98:
45:ae:a4:36:84:22:e5:fa:1f:19:b3:fd:d6:a1:a6:
ec:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:6A:50:52:A2:1E:2D:F4:F6:62:2E:DC:B2:0D:67:CC:86:C9:E6:91
X509v3 Authority Key Identifier:
keyid:5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/5GpQUqIeLfT2Yi7csg1nzIbJ5pE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/W20XjxOFEwa1Y03xWXFjGfTYJHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:50:7c:5d:5f:5c:09:49:6a:a1:9a:82:4e:ce:bf:cf:02:80:
8f:7c:31:5b:43:05:06:ae:7c:93:d2:b9:b4:ed:bd:e2:f0:ec:
9c:7f:25:a6:de:1b:a7:d6:bd:99:b0:66:95:af:73:42:8b:4e:
4f:c8:76:f9:f7:35:ab:ad:67:34:58:52:26:2a:8f:6f:c4:b8:
3d:de:dd:72:54:d2:9b:d4:96:89:6c:7b:20:f6:66:1b:a5:7a:
6e:9e:3e:4f:3e:54:6e:af:bd:d2:c2:6e:d4:fd:59:b1:37:a3:
f7:d4:3f:44:ff:16:d3:1d:6c:b8:22:1d:16:59:30:8a:b1:f5:
ed:9f:f9:e6:50:93:19:a7:1d:f9:30:59:d1:79:87:aa:8a:ce:
d7:53:2a:6d:90:8c:aa:b8:d7:38:3f:32:d5:44:0b:a9:50:d3:
bc:a1:8b:e6:e0:90:33:41:0c:89:4e:0a:c6:b2:b7:15:23:46:
46:4d:fc:29:82:e8:ef:ba:3c:97:20:42:47:55:ed:33:09:62:
00:ef:fe:93:13:86:57:97:60:4c:3a:70:41:25:8f:b9:df:58:
15:0d:77:2d:7c:4b:5e:53:bc:36:20:85:ab:22:aa:8a:53:8f:
e0:ae:2c:da:47:76:5f:05:c3:a5:40:db:6a:98:c2:f6:fe:60:
ab:d2:04:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:47 2024 by rpki-client on console-fra.rpki-client.org