Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/jL_DpGPrVksI-dsabZdfhnE3sFM.roa
File: jL_DpGPrVksI-dsabZdfhnE3sFM.roa (raw, json)
Hash identifier: 7zP1DYMQaklWWj25ZomlSWjegzS3LJmJDe3I6kHHBEE=
Subject key identifier: 8C:BF:C3:A4:63:EB:56:4B:08:F9:DB:1A:6D:97:5F:86:71:37:B0:53
Certificate issuer: /CN=a19c643946a059397355420d73bc45f14da2a76b
Certificate serial: 0587290D
Authority key identifier: A1:9C:64:39:46:A0:59:39:73:55:42:0D:73:BC:45:F1:4D:A2:A7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZxkOUagWTlzVUINc7xF8U2ip2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/jL_DpGPrVksI-dsabZdfhnE3sFM.roa
Signing time: Sat 01 Jan 2022 01:59:36 +0000
ROA not before: Sat 01 Jan 2022 01:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213364
IP address blocks: 2001:678:d14::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92743949 (0x587290d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19c643946a059397355420d73bc45f14da2a76b
Validity
Not Before: Jan 1 01:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cbfc3a463eb564b08f9db1a6d975f867137b053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:63:b7:1e:ff:e7:c8:42:8b:a9:ac:a1:c2:b3:
ff:46:63:9a:ab:d7:67:4d:bc:cd:75:45:ec:a0:e4:
60:6c:27:e4:0a:25:c3:c3:77:eb:8c:4a:c2:ca:d9:
0f:ec:ea:34:95:73:a0:19:dd:eb:1a:2a:7e:91:2a:
13:5a:17:0f:96:9c:b2:e3:01:5d:9b:70:41:5d:df:
b5:ae:51:15:6e:95:d0:9f:f5:78:12:d0:04:50:02:
9f:6d:a9:21:da:0c:55:46:33:34:92:a2:85:a4:13:
b8:88:c7:e8:46:9d:65:57:79:63:5d:da:c1:eb:29:
aa:16:60:30:86:db:fa:24:60:f0:2a:97:2f:13:91:
e6:dc:5d:35:26:78:62:b9:05:83:c1:3e:21:2f:c7:
bb:84:59:55:dd:2d:30:cb:fa:ee:c7:48:41:e3:f7:
4e:fb:ec:47:6a:64:c3:ae:ce:db:49:38:1c:e5:fa:
34:3f:6c:0f:51:79:ba:b4:75:4f:1f:c4:4d:29:b1:
75:4a:5d:fa:34:35:f3:0c:e2:07:3e:38:9f:ac:c8:
b3:b2:79:bf:56:5a:4b:2e:cc:09:a9:91:44:bb:2b:
7f:58:3f:a4:9b:43:42:98:84:64:da:88:7f:39:9b:
84:42:e6:8d:12:4f:8e:ba:76:78:6c:5b:18:d7:90:
fa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BF:C3:A4:63:EB:56:4B:08:F9:DB:1A:6D:97:5F:86:71:37:B0:53
X509v3 Authority Key Identifier:
keyid:A1:9C:64:39:46:A0:59:39:73:55:42:0D:73:BC:45:F1:4D:A2:A7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZxkOUagWTlzVUINc7xF8U2ip2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/jL_DpGPrVksI-dsabZdfhnE3sFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/oZxkOUagWTlzVUINc7xF8U2ip2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d14::/48
Signature Algorithm: sha256WithRSAEncryption
05:29:e8:5a:86:e4:43:a5:29:3f:bf:29:b0:fb:6f:ff:94:2e:
95:61:89:f1:d3:d4:23:d7:64:cf:b3:3c:1d:2d:c7:9f:00:f4:
f5:a3:75:d0:46:76:39:f3:93:9c:2a:ce:e3:e0:25:ef:aa:b2:
49:cb:e6:af:3b:15:c6:dc:3d:86:e9:51:37:9f:f1:0d:a6:dc:
c2:c2:71:e7:ac:f5:aa:22:db:0d:38:44:42:d8:af:4a:49:84:
3c:6e:d3:0d:bf:a4:77:fc:4b:0c:d6:b7:82:3d:ce:45:a2:49:
5b:98:2c:41:fd:c4:73:33:f6:10:a6:72:e4:39:a8:93:48:5e:
1c:4f:c9:37:a7:72:7e:9c:b8:de:ff:6a:1b:dd:61:cb:23:9d:
c9:14:c8:ca:f5:30:c5:0c:d0:ac:eb:b7:e1:68:0b:8d:eb:e5:
71:04:e0:48:2c:0f:d4:79:72:7d:5a:ac:14:a8:c1:83:66:83:
82:65:33:a4:4d:41:25:b6:4f:b0:9c:04:a2:90:6d:ff:af:3e:
1d:b8:34:e7:fd:42:8e:39:9f:ab:24:ec:b7:53:a6:6c:3c:e7:
12:d3:38:29:de:1e:39:45:d0:6f:88:0f:0d:e0:26:8e:81:af:
e5:bc:33:b8:86:27:7d:c3:12:4a:3d:03:60:44:dd:e3:98:67:
af:78:0d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:00 2024 by rpki-client on console-ams.rpki-client.org