Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/5a1279-ba32-4840-ab9f-1805b3083886/1/eNNBtxso9G6R5soT8Xd0Y53xzCQ.roa
File: eNNBtxso9G6R5soT8Xd0Y53xzCQ.roa (raw, json)
Hash identifier: oFhgv5dttmvvHhU57yyJ9IC/gNWp2JqyB2FMMftIzr4=
Subject key identifier: 78:D3:41:B7:1B:28:F4:6E:91:E6:CA:13:F1:77:74:63:9D:F1:CC:24
Certificate issuer: /CN=7436d6e8002334c7434eacdef8bf2ce7216c953f
Certificate serial: 0118137E
Authority key identifier: 74:36:D6:E8:00:23:34:C7:43:4E:AC:DE:F8:BF:2C:E7:21:6C:95:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dDbW6AAjNMdDTqze-L8s5yFslT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/5a1279-ba32-4840-ab9f-1805b3083886/1/eNNBtxso9G6R5soT8Xd0Y53xzCQ.roa
Signing time: Sat 01 Jan 2022 05:05:47 +0000
ROA not before: Sat 01 Jan 2022 05:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210814
IP address blocks: 2001:678:778::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18355070 (0x118137e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7436d6e8002334c7434eacdef8bf2ce7216c953f
Validity
Not Before: Jan 1 05:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78d341b71b28f46e91e6ca13f17774639df1cc24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d5:23:7b:42:72:a3:99:a9:1a:88:79:58:8a:
fa:72:37:15:4e:ae:a1:03:cd:da:69:6e:cf:09:ad:
7e:72:bb:cb:f3:db:62:b3:4f:8b:11:63:5b:e6:3b:
ca:c0:fe:09:2a:c4:7e:df:c0:26:66:92:f7:39:fa:
da:4f:bb:bd:9b:43:94:2b:79:ee:5f:20:62:b1:63:
4e:1c:48:14:92:0b:73:df:97:71:5f:7d:92:b5:ac:
68:8e:56:58:78:24:b6:27:a0:5c:aa:64:db:4c:da:
70:45:e1:ab:3d:fb:6e:13:b5:c8:af:ee:6e:d6:43:
a1:9b:ee:b1:1b:a7:69:23:2e:a8:71:dd:0e:b1:a9:
04:4e:0b:90:84:d1:f8:ea:41:76:3d:eb:1c:be:b7:
e1:42:08:fe:76:fa:0e:7f:7e:f3:44:fb:94:b7:21:
cd:d3:a1:8a:0a:b5:95:0c:f6:7e:fa:0c:6a:da:a5:
a4:8e:c3:d2:0c:78:be:fc:d6:a1:75:5c:cf:63:69:
b5:ff:0b:59:50:e0:53:21:e2:fd:75:35:60:8a:70:
4f:80:12:dd:a8:27:a6:7f:a0:49:90:46:30:75:d9:
2f:04:96:f3:33:aa:d7:ca:c1:97:9b:8c:cb:aa:af:
3d:ab:1f:e7:2e:db:07:cf:e5:1f:8c:3e:67:a6:f0:
19:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D3:41:B7:1B:28:F4:6E:91:E6:CA:13:F1:77:74:63:9D:F1:CC:24
X509v3 Authority Key Identifier:
keyid:74:36:D6:E8:00:23:34:C7:43:4E:AC:DE:F8:BF:2C:E7:21:6C:95:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dDbW6AAjNMdDTqze-L8s5yFslT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/5a1279-ba32-4840-ab9f-1805b3083886/1/eNNBtxso9G6R5soT8Xd0Y53xzCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/5a1279-ba32-4840-ab9f-1805b3083886/1/dDbW6AAjNMdDTqze-L8s5yFslT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:778::/48
Signature Algorithm: sha256WithRSAEncryption
87:62:f3:5e:ac:52:33:50:4a:c0:4f:7c:29:d9:92:c9:da:e7:
ca:35:4c:30:df:9f:4f:b0:34:45:c2:f3:9c:8d:e4:a0:fc:74:
c3:f2:ff:bf:4c:eb:0a:a9:b3:db:9b:95:79:b1:d3:a3:21:02:
25:97:b2:0e:c0:d6:e7:bd:81:f8:1a:7e:22:18:d0:b0:67:8f:
ff:c4:64:78:e6:ec:9d:2e:d2:79:9d:e0:a1:11:55:6b:90:b7:
85:bc:47:8d:c7:e3:7f:d8:f9:09:27:cd:bc:5d:dc:25:cf:ed:
7c:1d:9e:cc:1a:0c:65:14:51:34:26:76:82:b8:e0:0b:5e:cb:
0c:c8:f3:cc:7b:fe:91:38:bb:46:6c:6f:12:c6:b1:07:02:ec:
6d:30:21:30:8b:e5:77:d6:94:d8:72:e3:e3:19:1b:e2:95:c2:
c5:41:5b:b8:e9:b3:a2:9e:43:7b:a8:07:60:51:89:d1:a4:13:
a6:a9:8c:e7:a5:63:90:15:da:c0:ef:ae:09:1f:c2:44:d4:c7:
8a:0c:bd:de:c4:bc:0b:23:b0:ee:df:c2:91:ca:e0:fe:58:2a:
8b:99:54:5e:ab:19:6c:2b:f5:bb:21:0c:70:59:4a:5a:ac:5d:
9f:61:3f:cd:92:7a:0d:2d:51:12:36:b9:ff:53:f9:f8:a8:eb:
2c:50:d8:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:11 2024 by rpki-client on console-fra.rpki-client.org