Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/eKAYTjELwkpL7owuZF4vP50cZlE.roa
File: eKAYTjELwkpL7owuZF4vP50cZlE.roa (raw, json)
Hash identifier: Enluko64HAw1CDosRGqGEM8gZ4fMLP9lIODi0gogrV0=
Subject key identifier: 78:A0:18:4E:31:0B:C2:4A:4B:EE:8C:2E:64:5E:2F:3F:9D:1C:66:51
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 0540316D
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/eKAYTjELwkpL7owuZF4vP50cZlE.roa
Signing time: Sat 01 Jan 2022 12:04:36 +0000
ROA not before: Sat 01 Jan 2022 12:04:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62041
IP address blocks: 2001:67c:4e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88093037 (0x540316d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Jan 1 12:04:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78a0184e310bc24a4bee8c2e645e2f3f9d1c6651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:67:2e:30:af:67:85:7d:cf:97:eb:ba:39:a8:
b3:af:14:3b:9d:0b:e2:b5:db:9d:2b:b1:3f:9f:90:
ed:44:58:47:49:95:ea:47:33:03:be:9b:1b:d2:f2:
f2:bd:ff:90:6d:39:12:41:72:93:15:33:a0:84:f0:
db:24:f8:32:4e:70:ff:07:1f:58:8a:60:e7:ee:86:
8d:75:26:2f:43:5a:62:59:78:47:63:27:53:eb:66:
82:82:ea:0a:f5:86:32:8d:9b:d4:c1:37:aa:9c:43:
73:ff:31:a3:f6:1f:cb:1f:ac:ff:c7:a3:97:ef:24:
1e:40:d6:75:d0:30:dc:53:e0:30:3f:b2:eb:17:8f:
97:d1:d1:e7:8f:8d:2e:d1:7c:73:11:91:29:02:76:
70:54:57:ac:0f:96:c6:42:cc:45:cd:09:32:3f:26:
9a:f9:b9:bd:59:f6:72:60:0e:98:06:d1:12:2e:13:
f4:b7:98:cd:15:a9:88:c4:67:11:2a:c5:e2:4a:51:
14:29:15:de:d6:b5:25:d1:05:a5:23:f3:04:f3:f7:
f5:ec:af:e5:40:57:70:0c:64:dc:58:ac:91:6a:99:
03:a0:c8:7b:15:26:ce:b6:31:40:be:d0:85:7c:56:
af:3a:f1:42:c4:ca:00:ce:f6:ab:98:04:ab:b0:88:
cc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A0:18:4E:31:0B:C2:4A:4B:EE:8C:2E:64:5E:2F:3F:9D:1C:66:51
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/eKAYTjELwkpL7owuZF4vP50cZlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:4e8::/48
Signature Algorithm: sha256WithRSAEncryption
27:17:90:bc:2a:25:b1:3e:df:cd:60:08:04:5a:d2:2c:4f:4f:
49:0e:b6:d1:e0:c7:56:31:b7:a3:28:13:80:8f:53:b8:6e:b1:
6c:a6:96:83:cc:e0:14:ce:d1:0d:e7:54:32:4e:3e:58:35:fa:
3d:05:28:40:c0:47:16:72:f9:04:ef:a7:75:82:df:ca:f0:7d:
31:84:28:1f:16:9c:02:49:3e:b7:de:64:22:ed:5b:a7:bc:d0:
42:cc:f6:8d:3c:61:35:45:e0:1f:21:a9:1a:3c:55:2e:a2:d7:
3e:26:ad:84:04:0e:f0:c5:36:40:64:04:ad:78:e8:76:c8:93:
4b:68:2b:24:e0:fa:0c:5b:8f:cf:a5:67:d5:3e:f6:a5:c4:87:
f3:a1:7d:f0:70:91:65:a6:9d:42:69:c2:6a:de:57:85:e3:31:
08:93:76:b5:16:e2:df:c1:e3:46:27:2a:a7:9f:4f:0f:4c:09:
6e:d6:92:d5:ce:03:99:cf:ad:13:19:b3:8f:55:07:41:20:e7:
e3:f5:91:27:ac:15:71:1d:c4:76:4a:24:3c:21:ad:da:0a:f8:
8f:23:a9:15:4a:64:e5:87:49:cf:8c:3c:9b:fc:62:f4:0b:7a:
13:ed:e2:4a:0b:ed:09:99:ee:64:71:2b:5e:e8:68:be:18:2a:
72:56:42:42
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBUAxbTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjUxYjQwYjMzMTk4YWM1YTFlZGY1MGZmZjA4NjI4MTYwMzM1ZGZkMB4XDTIyMDEw
MTEyMDQzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzhhMDE4NGUzMTBi
YzI0YTRiZWU4YzJlNjQ1ZTJmM2Y5ZDFjNjY1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKxnLjCvZ4V9z5frujmos68UO50L4rXbnSuxP5+Q7URYR0mV
6kczA76bG9Ly8r3/kG05EkFykxUzoITw2yT4Mk5w/wcfWIpg5+6GjXUmL0NaYll4
R2MnU+tmgoLqCvWGMo2b1ME3qpxDc/8xo/Yfyx+s/8ejl+8kHkDWddAw3FPgMD+y
6xePl9HR54+NLtF8cxGRKQJ2cFRXrA+WxkLMRc0JMj8mmvm5vVn2cmAOmAbREi4T
9LeYzRWpiMRnESrF4kpRFCkV3ta1JdEFpSPzBPP39eyv5UBXcAxk3FiskWqZA6DI
exUmzrYxQL7QhXxWrzrxQsTKAM72q5gEq7CIzF0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR4oBhOMQvCSkvujC5kXi8/nRxmUTAfBgNVHSMEGDAWgBRSUbQLMxmKxaHt
9Q//CGKBYDNd/TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VsRzBDek1aaXNXaDdmVVBfd2hpZ1dBelhmMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzEvZWNhODA5LWQ5NDItNGQ4OS1iNDM4LWExYzI5OTkyYmZiZS8x
L2VLQVlUakVMd2twTDdvd3VaRjR2UDUwY1psRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzEv
ZWNhODA5LWQ5NDItNGQ4OS1iNDM4LWExYzI5OTkyYmZiZS8xL1VsRzBDek1aaXNX
aDdmVVBfd2hpZ1dBelhmMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwE6DANBgkqhkiG9w0BAQsF
AAOCAQEAJxeQvColsT7fzWAIBFrSLE9PSQ620eDHVjG3oygTgI9TuG6xbKaWg8zg
FM7RDedUMk4+WDX6PQUoQMBHFnL5BO+ndYLfyvB9MYQoHxacAkk+t95kIu1bp7zQ
Qsz2jTxhNUXgHyGpGjxVLqLXPiathAQO8MU2QGQErXjodsiTS2grJOD6DFuPz6Vn
1T72pcSH86F98HCRZaadQmnCat5XheMxCJN2tRbi38HjRicqp59PD0wJbtaS1c4D
mc+tExmzj1UHQSDn4/WRJ6wVcR3EdkokPCGt2gr4jyOpFUpk5YdJz4w8m/xi9At6
E+3iSgvtCZnuZHErXuhovhgqclZCQg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:39 2024 by rpki-client on console-ams.rpki-client.org