Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/eTXNWjLSA6q_zMEhmgjr7waTOWQ.roa
File: eTXNWjLSA6q_zMEhmgjr7waTOWQ.roa (raw, json)
Hash identifier: cn524UbXnSK5sQJOn3lyfy43CCW8cUHreg6CPnMk21A=
Subject key identifier: 79:35:CD:5A:32:D2:03:AA:BF:CC:C1:21:9A:08:EB:EF:06:93:39:64
Certificate issuer: /CN=5b6d178f13851306b5634df159716319f4d82478
Certificate serial: 01829CCBDC9DA0522C6CD9FEF2F4B290870E
Authority key identifier: 5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/eTXNWjLSA6q_zMEhmgjr7waTOWQ.roa
Signing time: Sun 14 Aug 2022 14:39:41 +0000
ROA not before: Sun 14 Aug 2022 14:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201086
IP address blocks: 2a0e:36c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:9c:cb:dc:9d:a0:52:2c:6c:d9:fe:f2:f4:b2:90:87:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b6d178f13851306b5634df159716319f4d82478
Validity
Not Before: Aug 14 14:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7935cd5a32d203aabfccc1219a08ebef06933964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:70:f5:ca:f3:75:e7:d2:cb:9a:1d:12:98:43:
be:d5:7a:22:32:34:2c:f5:be:de:af:67:b3:f5:87:
51:58:5c:fc:7e:f7:9b:27:83:56:ff:8c:08:86:c8:
32:0a:e4:a9:d8:1e:89:c4:50:82:06:21:b5:9c:b8:
a7:f3:ae:1a:02:b2:e5:7e:0d:ce:91:c8:38:91:66:
ca:3c:86:1f:c1:dc:d6:c7:f9:d8:7e:e6:ed:8e:63:
79:9a:78:87:31:7d:2e:ff:21:6f:b6:6d:5c:66:eb:
0e:a5:ab:ca:71:f8:b1:91:6a:d3:25:ae:26:5c:5a:
b1:b8:83:71:3b:7c:1e:41:ac:df:dd:1d:60:4c:22:
6d:be:50:38:5c:fb:dd:02:92:6d:b7:b3:d4:db:4d:
67:6e:64:38:b4:0f:a7:e8:46:1c:2c:64:f5:e4:7d:
10:5b:66:ac:57:10:37:31:26:42:c5:7d:82:0c:3f:
82:e3:49:45:0a:5c:e6:38:07:25:30:83:6e:a1:47:
41:aa:8b:8e:cd:a3:2e:45:cf:69:47:ba:18:ce:e0:
fa:47:3d:7c:bb:ae:ea:20:3b:4c:3a:16:3e:2e:bc:
cc:16:90:3f:b1:ce:d4:11:5a:45:03:7c:26:66:c7:
36:67:64:b7:79:d9:33:e6:e2:3a:c5:93:30:b3:b4:
55:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:35:CD:5A:32:D2:03:AA:BF:CC:C1:21:9A:08:EB:EF:06:93:39:64
X509v3 Authority Key Identifier:
keyid:5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/eTXNWjLSA6q_zMEhmgjr7waTOWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/W20XjxOFEwa1Y03xWXFjGfTYJHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:36c0::/32
Signature Algorithm: sha256WithRSAEncryption
94:df:00:61:ef:de:24:c8:ba:d2:c8:b4:6e:11:8e:11:b3:43:
a9:b7:37:53:69:ae:a6:d6:82:1e:81:1c:16:b7:0c:47:d6:72:
fd:ee:43:37:8f:7d:e1:4d:42:e0:a0:62:f3:51:d0:30:ff:ec:
e8:52:48:a2:66:ac:23:37:7f:61:10:d0:b2:35:7f:cb:33:75:
e8:cb:80:2f:29:08:aa:10:14:c0:e0:c4:cc:e2:7e:49:09:aa:
3e:a8:90:98:1b:ad:d4:09:ce:c4:8f:15:ac:f7:9e:78:46:e1:
a0:66:fb:c5:d3:cf:87:f8:6d:bf:9e:9f:6a:26:8a:d0:20:e2:
23:b8:be:ed:fc:40:d5:f0:1d:da:fd:b2:43:26:8e:b5:4a:3d:
69:74:cc:50:96:bd:62:13:3c:d4:53:e9:fb:2b:96:70:d0:d2:
2b:fa:50:78:99:e5:b8:17:79:f9:4e:fd:37:0c:99:bc:af:1f:
90:26:f4:3f:93:8b:0d:f9:95:00:83:48:55:25:a5:ef:d4:0f:
0b:ae:e8:b9:7b:49:aa:ec:fd:1f:77:8f:55:d5:a3:6c:b6:42:
09:05:05:b9:01:96:58:15:04:83:cd:0a:99:67:d5:91:8a:c2:
dc:c4:f6:2d:c5:4b:5b:47:5b:6e:67:f6:23:5b:e2:9f:11:48:
aa:94:fb:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:13 2024 by rpki-client on console-ams.rpki-client.org