Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/15X1nmcO2QQD5ghJ313oPP3NMhM.roa
File: 15X1nmcO2QQD5ghJ313oPP3NMhM.roa (raw, json)
Hash identifier: nWrhRD1SDRKAmRnfbMaLs4QeTpIWoM2OJsMnocbJtSw=
Subject key identifier: D7:95:F5:9E:67:0E:D9:04:03:E6:08:49:DF:5D:E8:3C:FD:CD:32:13
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 071E4FCF
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/15X1nmcO2QQD5ghJ313oPP3NMhM.roa
Signing time: Sat 01 Jan 2022 15:01:36 +0000
ROA not before: Sat 01 Jan 2022 15:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34936
IP address blocks: 2001:4ba7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119427023 (0x71e4fcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Jan 1 15:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d795f59e670ed90403e60849df5de83cfdcd3213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:be:31:59:45:0f:b8:16:6f:9c:c3:82:b8:db:
3b:74:af:be:f0:4e:0c:41:bd:56:88:bc:14:28:66:
bc:51:0e:7e:8a:8e:91:6b:ee:ec:5e:66:61:d4:6c:
0f:22:21:52:5e:90:90:2c:89:5b:80:30:05:5d:e4:
be:23:d0:07:1d:37:20:4d:b2:28:f4:17:47:ee:66:
67:d5:fb:16:ec:60:e3:36:02:3f:3f:f4:cd:d1:cf:
a6:72:2a:ac:f5:79:4d:7d:56:66:ba:34:3a:ca:16:
e0:ab:8e:6b:a0:b9:d4:3c:5d:0c:4d:35:27:8c:cb:
fd:46:69:3b:fb:c4:55:c9:08:d5:fd:51:81:b6:19:
78:fd:04:fb:39:46:a5:5f:5a:16:5f:79:b8:2e:0e:
93:94:71:f8:bf:69:d9:a9:b8:0d:77:71:c3:1e:02:
21:cd:45:f4:b8:8d:9d:3c:f7:ed:f0:a9:70:f8:06:
f6:88:63:65:33:5e:f3:dd:d0:c7:e6:92:be:34:19:
2d:34:d7:b3:c9:59:b3:5a:ba:13:36:55:79:6b:0d:
69:da:c0:31:0f:38:15:7d:8d:ae:7a:be:44:21:77:
68:1c:0e:98:d3:08:28:35:d8:53:29:5a:14:32:0e:
1b:1c:fa:7b:37:89:1a:b4:e8:dc:df:ff:a5:78:d5:
cf:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:95:F5:9E:67:0E:D9:04:03:E6:08:49:DF:5D:E8:3C:FD:CD:32:13
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/15X1nmcO2QQD5ghJ313oPP3NMhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4ba7::/48
Signature Algorithm: sha256WithRSAEncryption
4c:ef:cd:74:5a:d3:26:ad:02:c3:35:17:f8:19:76:23:0f:39:
f7:21:81:b0:08:58:34:e9:5d:d3:1d:2a:46:7c:31:72:e1:23:
d7:a6:aa:6b:20:68:b7:14:00:56:93:8e:8e:86:2b:b2:6b:43:
b6:50:66:5c:a6:67:0c:bd:7b:e0:a4:96:ef:d0:ce:b9:71:27:
3b:aa:4c:53:89:b0:23:e6:e8:ca:3c:8a:55:98:ff:c7:a1:d8:
ba:a5:c1:bf:e0:d8:4f:23:7e:f8:9a:3a:7c:79:8d:d2:13:16:
c3:62:1f:9e:c1:4c:61:28:41:9e:61:3e:26:86:29:a3:df:40:
0b:e9:46:bc:0a:72:b7:1c:45:41:9b:dc:66:7f:65:5e:60:75:
6d:26:a6:a5:bf:1c:d3:cb:49:9b:f5:f5:7a:7e:99:9c:d6:b0:
e8:81:2f:53:91:7f:61:77:75:89:c6:c3:dd:bd:c8:4e:e3:f1:
b0:66:a4:77:35:13:2b:c7:3b:d9:82:bf:33:fc:d7:86:f6:1d:
90:c1:39:04:bb:2f:8f:eb:b6:2d:34:aa:51:ec:d4:52:de:b1:
95:67:02:fb:f6:fe:bd:9a:c5:4c:6f:9d:c1:fd:ea:61:3b:35:
45:0f:5a:39:fa:11:3f:a8:37:75:23:47:6d:9b:59:27:71:94:
be:07:70:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:25 2024 by rpki-client on console-fra.rpki-client.org