Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/58t4AMsF9UyZfv-i7Hdi4q0dihU.roa
File: 58t4AMsF9UyZfv-i7Hdi4q0dihU.roa (raw, json)
Hash identifier: MCmRUS63oD/zMtughZ/8NlGCNc8zeZobjTyGuddxRQw=
Subject key identifier: E7:CB:78:00:CB:05:F5:4C:99:7E:FF:A2:EC:77:62:E2:AD:1D:8A:15
Certificate issuer: /CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Certificate serial: 0935AFD9
Authority key identifier: 39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/58t4AMsF9UyZfv-i7Hdi4q0dihU.roa
Signing time: Sat 01 Jan 2022 06:05:35 +0000
ROA not before: Sat 01 Jan 2022 06:05:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50979
IP address blocks: 2a02:27ac::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154513369 (0x935afd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Validity
Not Before: Jan 1 06:05:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7cb7800cb05f54c997effa2ec7762e2ad1d8a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ba:55:7d:e4:e8:2c:70:90:ac:1c:d2:71:48:
e0:aa:4b:26:e1:93:40:97:77:c7:ee:55:d9:91:6e:
9e:69:c3:e0:77:0f:87:69:88:c4:73:81:4f:e8:f5:
ab:d2:3d:25:81:07:7c:1a:23:ea:7b:f5:0b:a7:ef:
f8:2f:6a:68:0b:4f:04:d2:2f:dd:81:81:82:63:42:
49:d0:57:ab:58:3a:f0:34:8f:92:e3:9b:d5:7c:1a:
78:b5:a6:3b:b4:90:1d:e0:79:4c:4e:86:4b:a2:de:
18:18:1c:e4:f1:17:8f:b2:b9:33:ae:d8:d8:aa:49:
fc:e4:5a:83:bb:6d:8b:c9:58:43:4e:9d:b6:fd:8d:
4c:64:9d:1a:b1:b8:4e:08:75:7a:4b:a3:73:47:66:
11:6b:43:33:22:bc:2b:34:40:ee:86:6d:93:20:1a:
f8:1a:62:65:bc:27:ad:2f:43:f8:2f:aa:3a:04:fa:
2b:d4:f9:14:fd:e2:f1:c1:41:86:02:03:5e:e4:ae:
84:10:56:99:88:60:9a:1c:2c:23:ec:9f:02:a5:a6:
be:9d:ac:8e:04:55:d5:8f:f3:17:e2:18:93:a2:f1:
6f:2d:b3:22:66:00:3c:b1:52:e2:cb:51:7b:2e:4e:
31:77:af:36:af:39:64:e7:58:40:67:3b:04:1e:e0:
19:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CB:78:00:CB:05:F5:4C:99:7E:FF:A2:EC:77:62:E2:AD:1D:8A:15
X509v3 Authority Key Identifier:
keyid:39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/58t4AMsF9UyZfv-i7Hdi4q0dihU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/OVAwNhWspuX29bVpHHwsjcpfI00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:27ac::/32
Signature Algorithm: sha256WithRSAEncryption
08:d8:be:39:cb:c7:80:6a:46:19:b9:9b:62:ba:c9:4f:12:3c:
e0:1e:68:57:f1:59:a9:48:00:fe:9e:38:3b:b9:fb:f3:9a:8a:
4a:3b:98:ca:34:82:85:ab:49:e4:1d:04:f3:6f:27:75:f8:e3:
c6:78:db:b5:88:1f:a8:08:fa:d1:0f:3b:f4:f3:a5:1d:e4:1a:
8c:e7:1d:26:b6:3b:6a:89:47:da:a9:8a:35:1b:55:61:5d:3b:
ad:c1:87:b1:7e:28:23:8d:15:b1:d5:a1:d9:aa:9c:01:de:43:
8f:84:8b:ed:66:8f:3f:82:60:f1:9d:a8:7e:1a:6c:5e:e9:22:
ba:ac:bb:95:52:07:45:4f:44:c5:75:22:18:e2:68:be:ef:b2:
34:d1:3c:d3:a0:89:38:9d:0c:1e:b3:e7:4c:83:ec:48:48:53:
5e:cd:ba:1b:78:3a:c2:3b:bf:ae:a7:35:0c:6d:32:96:1b:2a:
d0:ad:86:96:5f:a2:7e:82:36:27:42:c8:f3:37:ad:bf:c3:9f:
86:18:47:f5:55:59:96:fe:8b:b2:0c:f4:cb:3f:7c:bc:92:ca:
65:55:29:bc:e4:2f:92:8a:02:ab:2d:60:93:23:89:ca:98:1d:
37:4e:e2:79:41:48:77:3f:f3:60:a2:23:96:ac:99:ab:1d:ad:
40:93:62:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:22 2024 by rpki-client on console-fra.rpki-client.org