Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/128588-3207-4f36-983c-f79ad8122ef5/1/sEFMpE_xNeTMV4zjGW91SQJkpJI.roa
File: sEFMpE_xNeTMV4zjGW91SQJkpJI.roa (raw, json)
Hash identifier: aIqFnVVnDtdQxAc9UfSyOf6Iz6RjEJjcigvGrdMr5Xg=
Subject key identifier: B0:41:4C:A4:4F:F1:35:E4:CC:57:8C:E3:19:6F:75:49:02:64:A4:92
Certificate issuer: /CN=f3d494b8b271afb7c62f1397f712cf2dcd364185
Certificate serial: 10D12973
Authority key identifier: F3:D4:94:B8:B2:71:AF:B7:C6:2F:13:97:F7:12:CF:2D:CD:36:41:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/89SUuLJxr7fGLxOX9xLPLc02QYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/128588-3207-4f36-983c-f79ad8122ef5/1/sEFMpE_xNeTMV4zjGW91SQJkpJI.roa
Signing time: Sat 01 Jan 2022 06:57:39 +0000
ROA not before: Sat 01 Jan 2022 06:57:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206885
IP address blocks: 2001:678:284::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282143091 (0x10d12973)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3d494b8b271afb7c62f1397f712cf2dcd364185
Validity
Not Before: Jan 1 06:57:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0414ca44ff135e4cc578ce3196f75490264a492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:50:5c:d2:50:6a:ad:9f:91:04:16:4c:5b:ac:
aa:56:d6:6a:0f:08:dd:e8:0e:ef:06:82:0b:01:ee:
a6:15:57:0d:cf:12:e8:a7:74:11:8d:dc:6f:77:8a:
e9:f1:ea:06:e9:6f:40:aa:29:6b:91:64:bd:e6:c1:
ed:4b:c1:8e:7a:26:7e:78:25:a4:34:e4:b4:70:a5:
51:69:ca:87:95:57:fb:0f:78:35:5d:a9:41:70:83:
52:98:47:80:74:aa:f7:14:1a:bf:00:58:a8:15:8c:
d7:49:2f:8b:da:a9:92:25:fc:09:70:a6:59:72:30:
cf:59:38:ab:6f:56:24:b2:7b:4c:19:84:52:66:c8:
b0:a5:71:49:3f:79:84:a9:fe:0e:db:ca:db:0c:75:
8e:a0:f8:d5:88:13:48:f9:f2:09:d7:87:0f:e4:67:
09:03:24:a0:03:06:7f:41:5d:31:01:5e:2d:e0:8e:
67:fa:5d:82:67:a7:1f:c8:59:6f:bc:b6:3d:eb:87:
f0:90:3c:66:2c:3b:91:30:7d:1b:6c:d9:4e:6d:76:
24:63:b7:1d:9f:47:63:01:77:58:9f:73:33:25:bc:
9d:f4:8c:7c:58:22:00:3c:36:17:02:cb:6e:1a:80:
14:bc:6e:3e:40:b1:98:64:a8:b6:cc:8e:8b:a2:38:
28:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:41:4C:A4:4F:F1:35:E4:CC:57:8C:E3:19:6F:75:49:02:64:A4:92
X509v3 Authority Key Identifier:
keyid:F3:D4:94:B8:B2:71:AF:B7:C6:2F:13:97:F7:12:CF:2D:CD:36:41:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/89SUuLJxr7fGLxOX9xLPLc02QYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/128588-3207-4f36-983c-f79ad8122ef5/1/sEFMpE_xNeTMV4zjGW91SQJkpJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/128588-3207-4f36-983c-f79ad8122ef5/1/89SUuLJxr7fGLxOX9xLPLc02QYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:284::/48
Signature Algorithm: sha256WithRSAEncryption
38:ac:fb:67:1e:0d:72:9e:5f:5e:af:55:2f:d4:be:1f:db:94:
89:3e:b1:bd:bf:e8:09:8e:2d:1e:1d:af:18:af:59:c3:78:10:
ed:e6:fa:3e:f5:c9:7c:74:3f:b1:f9:e9:e2:65:69:4e:aa:6c:
f4:32:d3:a5:8a:39:51:ac:4b:fb:16:79:21:65:1c:1a:a2:7a:
61:cd:82:c6:98:4b:57:f4:5c:13:94:08:79:7f:07:e5:fe:de:
40:f3:5a:67:29:62:f5:ca:6e:77:bd:76:61:f2:d7:6c:1e:8a:
d7:ee:3d:fe:a8:90:59:87:2f:84:14:f8:63:73:2a:b7:93:06:
03:03:95:8a:19:a5:cb:11:18:9a:77:49:4a:5f:9f:75:e5:f6:
13:38:1d:27:56:fc:61:2f:90:f0:e5:9c:e0:74:62:cb:4a:4c:
59:67:dc:1f:dc:4d:6a:5a:dc:dd:33:d8:b4:62:0d:14:27:3b:
84:23:e4:bb:44:2f:72:61:97:62:4a:7a:ec:fd:15:82:1c:5f:
91:d1:20:44:11:a1:38:b3:c7:5a:a0:a1:64:5b:85:72:1d:7a:
d2:e6:d3:d3:25:84:e3:4f:8d:a1:00:84:b5:7a:8e:04:48:70:
02:b9:51:d9:78:cb:c6:79:7e:6a:31:e7:07:38:05:c6:d7:93:
fe:80:de:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:46 2024 by rpki-client on console-fra.rpki-client.org