Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/7PxPIvTMWlbuitDnXGXUYO4TJos.roa
File: 7PxPIvTMWlbuitDnXGXUYO4TJos.roa (raw, json)
Hash identifier: zyWTesN+URGsevwUFrsYqVwWu+Gmy1UKByXyZPhOg1A=
Subject key identifier: EC:FC:4F:22:F4:CC:5A:56:EE:8A:D0:E7:5C:65:D4:60:EE:13:26:8B
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 150C8F38
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/7PxPIvTMWlbuitDnXGXUYO4TJos.roa
Signing time: Sat 01 Jan 2022 15:54:52 +0000
ROA not before: Sat 01 Jan 2022 15:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43193
IP address blocks: 2a02:1140:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353144632 (0x150c8f38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 1 15:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecfc4f22f4cc5a56ee8ad0e75c65d460ee13268b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:76:28:9b:3a:e6:d5:d8:0e:1e:ff:a4:91:24:
2f:8a:44:2c:73:ff:65:01:9b:0e:08:ef:2f:e9:83:
82:3a:57:6b:45:f5:ef:55:c9:99:2d:6c:57:87:0b:
9e:f1:0a:79:54:e8:2f:d3:46:d5:73:c8:85:7b:39:
0a:db:0b:ad:2f:3e:30:3c:bb:fe:c0:50:11:27:e2:
b8:ab:c3:55:e6:61:db:0b:db:a8:74:5f:f1:99:8d:
f8:bc:f2:1d:47:d0:52:b1:d6:95:3a:1e:be:b2:f5:
b8:15:be:28:31:23:01:71:3c:13:3c:be:24:96:92:
f3:1a:6c:f8:72:ca:63:3a:e0:3c:b2:d3:18:e1:57:
05:c5:ca:b8:fb:42:30:4a:cf:f5:1a:15:5a:a3:ef:
b0:7a:8b:21:41:07:a8:0b:e5:99:a1:16:f3:94:d4:
a1:93:c0:63:4f:cd:3b:10:dd:70:a7:42:65:13:5f:
21:00:e2:e8:d8:6a:e2:c3:f5:84:c6:09:30:49:66:
b1:d9:ac:bc:67:81:f0:76:a8:48:f2:46:94:c1:d7:
94:ed:7f:72:0c:f0:19:ae:43:c1:80:31:a2:9f:bb:
33:5a:46:50:84:d1:e4:3d:e1:e6:aa:31:c4:ee:0f:
5f:c1:42:33:b5:be:1b:88:70:08:68:cd:20:a4:60:
45:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FC:4F:22:F4:CC:5A:56:EE:8A:D0:E7:5C:65:D4:60:EE:13:26:8B
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/7PxPIvTMWlbuitDnXGXUYO4TJos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:1140:100::/40
Signature Algorithm: sha256WithRSAEncryption
91:1d:55:fc:e2:65:5e:d2:5d:d8:57:b8:55:bc:3b:91:06:86:
38:79:37:3f:17:9e:08:83:b6:14:2a:1a:52:49:fc:a8:3d:7f:
26:94:c9:6f:51:1c:b0:07:1f:54:97:64:88:dd:02:76:80:c8:
20:05:74:7f:9a:21:64:07:98:93:ae:5c:57:7f:ae:a0:df:ca:
9c:31:a8:bf:48:e3:00:73:d1:78:54:bb:c5:e8:0b:f9:50:c3:
d0:a2:64:6a:79:32:9d:18:36:88:4a:5b:d9:58:6e:07:b8:3c:
14:77:1e:3d:8e:66:1a:4d:c7:09:46:aa:95:9f:44:af:cc:71:
54:68:0f:12:aa:62:9e:4e:34:96:67:e0:f3:52:ff:3f:c8:27:
d4:10:d1:86:85:0d:21:49:de:a4:4a:02:28:0d:72:b4:df:e9:
9a:76:c2:70:26:66:a6:2d:e9:10:ea:a0:23:4e:85:af:4f:6f:
ed:e4:fa:94:cf:a7:36:d5:e7:9f:4e:24:8d:43:18:16:96:0a:
e0:7a:5b:f7:d1:84:a6:0d:42:d8:03:ad:64:1d:c2:eb:ad:96:
99:0c:3e:66:f4:cd:e8:e6:20:08:11:28:6d:6f:be:9a:19:fb:
b2:da:7e:67:69:d8:e8:0f:9a:fe:75:f7:9c:76:24:33:35:b6:
4f:8e:8b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:30 2024 by rpki-client on console-ams.rpki-client.org