Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/01c7c0-e700-418e-9207-91160bb4c659/1/jdjrrQG-mRz6JMSmcHJWhz5G3ZQ.roa
File: jdjrrQG-mRz6JMSmcHJWhz5G3ZQ.roa (raw, json)
Hash identifier: ly74oqKQqKH0yYkuF8rqrXmh436VN2R5MEeRjc9keJc=
Subject key identifier: 8D:D8:EB:AD:01:BE:99:1C:FA:24:C4:A6:70:72:56:87:3E:46:DD:94
Certificate issuer: /CN=8e7aee3559fcc31bfed77eece8b7479c8e856a5b
Certificate serial: 08475C6E
Authority key identifier: 8E:7A:EE:35:59:FC:C3:1B:FE:D7:7E:EC:E8:B7:47:9C:8E:85:6A:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnruNVn8wxv-137s6LdHnI6Fals.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/01c7c0-e700-418e-9207-91160bb4c659/1/jdjrrQG-mRz6JMSmcHJWhz5G3ZQ.roa
Signing time: Sat 01 Jan 2022 15:56:24 +0000
ROA not before: Sat 01 Jan 2022 15:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57166
IP address blocks: 2001:678:918::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138894446 (0x8475c6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7aee3559fcc31bfed77eece8b7479c8e856a5b
Validity
Not Before: Jan 1 15:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dd8ebad01be991cfa24c4a6707256873e46dd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3b:2b:c8:47:5a:cf:ac:9b:f3:ea:30:15:62:
f5:43:8f:66:71:42:79:da:bd:58:57:55:45:31:cf:
30:4d:ee:33:72:4a:1f:1d:d6:95:50:ce:26:7f:a7:
d7:42:d6:3b:53:f1:a5:86:49:5c:b1:66:90:93:13:
8c:fc:66:20:e7:49:fe:4d:b4:53:06:1d:04:c9:68:
a1:03:3f:ab:05:b5:fd:f9:b8:c2:fd:41:2f:1d:ff:
eb:06:66:7b:97:de:2d:c5:fa:c9:c5:e3:89:76:57:
a9:cf:2d:20:c4:38:84:0f:36:b1:fb:f9:3a:87:60:
fb:46:4f:57:85:ad:e9:98:ed:dd:53:5e:5a:e0:68:
d8:be:d7:30:1c:15:1c:63:1c:ad:6a:78:aa:7e:d4:
3a:45:ef:2d:a5:9e:26:c3:d5:3f:2c:84:48:62:ed:
c0:f8:91:08:30:8f:f5:c3:e1:9c:d3:ed:33:a5:87:
66:59:0e:ce:79:b8:d6:fc:fe:5d:67:f8:3a:f6:81:
b4:e1:4f:35:dc:60:cc:4b:43:36:c3:b3:3c:84:ff:
87:80:7e:4d:28:36:11:67:4d:03:e1:a6:46:1e:a1:
b7:ad:d1:04:11:f7:7c:bb:55:dc:35:52:0b:01:e1:
9e:b9:1f:2e:da:af:89:18:4e:1f:4a:68:8e:1d:42:
5b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D8:EB:AD:01:BE:99:1C:FA:24:C4:A6:70:72:56:87:3E:46:DD:94
X509v3 Authority Key Identifier:
keyid:8E:7A:EE:35:59:FC:C3:1B:FE:D7:7E:EC:E8:B7:47:9C:8E:85:6A:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnruNVn8wxv-137s6LdHnI6Fals.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/01c7c0-e700-418e-9207-91160bb4c659/1/jdjrrQG-mRz6JMSmcHJWhz5G3ZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/01c7c0-e700-418e-9207-91160bb4c659/1/jnruNVn8wxv-137s6LdHnI6Fals.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:918::/48
Signature Algorithm: sha256WithRSAEncryption
78:4a:26:89:56:8a:63:09:22:21:9d:06:25:5a:89:32:e6:db:
e4:8c:ab:93:e6:76:58:9b:14:14:56:13:6f:b4:d4:5b:91:5b:
73:53:3c:28:19:00:04:29:be:86:c1:9c:95:c1:00:00:cc:a4:
50:23:6f:b9:ed:a1:2e:ce:ec:a8:34:9f:97:a2:04:03:cf:cf:
d0:2d:ad:54:49:ba:65:97:74:80:ba:e0:c9:48:17:45:91:f0:
c7:9c:de:9e:9e:db:62:9c:00:24:9a:a7:2b:25:07:aa:ca:33:
54:33:5b:2b:31:c1:91:5e:58:7b:23:06:b8:02:29:e5:0d:19:
60:e1:3b:28:dd:4d:ac:fc:17:4f:c8:08:9c:48:e7:6c:0a:5f:
1f:bf:fe:d1:44:26:67:65:b5:0d:7b:7e:e0:8a:4f:24:49:9a:
06:25:5d:58:13:0f:3b:d5:57:87:b1:3b:c9:1a:c1:a2:60:9a:
05:1f:af:01:79:d7:fd:85:41:d7:5a:d4:8a:96:56:76:6c:fe:
b4:e4:87:b9:31:57:71:ce:d9:61:56:9f:6e:54:2e:c2:2d:a5:
0b:f1:9b:85:84:90:71:73:6b:b5:59:d9:be:3d:1b:e8:67:5f:
87:55:c6:fb:5b:6c:c6:d5:f2:60:69:8a:7b:1f:9a:3c:e8:23:
29:c1:57:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:02 2024 by rpki-client on console-fra.rpki-client.org