Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/t6QZ586oDe5_20ccvMJDm43h3oo.roa
File: t6QZ586oDe5_20ccvMJDm43h3oo.roa (raw, json)
Hash identifier: Fo7uTV6jZyK2B0+zy2YKZsdl5NKgfytxFvmeP5Z2SRM=
Subject key identifier: B7:A4:19:E7:CE:A8:0D:EE:7F:DB:47:1C:BC:C2:43:9B:8D:E1:DE:8A
Certificate issuer: /CN=d4f92129df7aaa7157e15973c24753e118c9057d
Certificate serial: 092D2114
Authority key identifier: D4:F9:21:29:DF:7A:AA:71:57:E1:59:73:C2:47:53:E1:18:C9:05:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PkhKd96qnFX4VlzwkdT4RjJBX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/t6QZ586oDe5_20ccvMJDm43h3oo.roa
Signing time: Sat 01 Jan 2022 11:05:24 +0000
ROA not before: Sat 01 Jan 2022 11:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31424
IP address blocks: 2001:67c:2c08::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153952532 (0x92d2114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f92129df7aaa7157e15973c24753e118c9057d
Validity
Not Before: Jan 1 11:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7a419e7cea80dee7fdb471cbcc2439b8de1de8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d7:5f:b6:4e:23:e9:f1:b3:d1:a5:18:dd:6f:
c8:3a:b5:4f:cb:76:58:b2:85:87:d8:0e:05:c4:c2:
f0:15:15:45:da:d5:23:0e:d9:ab:2b:f2:9f:cf:81:
1b:18:d4:0e:c8:e0:f8:aa:45:71:6b:e5:ec:5a:fb:
fe:e6:d3:c4:95:bd:4b:e4:99:55:34:24:db:55:5d:
d5:aa:44:f2:03:e0:b7:ea:86:79:85:ba:67:41:ed:
2e:13:f4:57:5d:b8:03:30:87:b3:62:1c:88:7d:0f:
97:f3:be:50:04:67:fd:2d:7f:05:65:ed:ca:b1:c2:
df:71:09:00:ed:b4:26:38:e6:f7:6d:8a:27:e3:96:
37:25:24:cd:92:6a:90:9c:ec:50:8e:0e:65:cd:cc:
48:d9:08:07:92:1c:ab:ab:51:d6:2e:5e:cb:b1:7c:
b0:f0:98:d7:ef:e0:7b:20:45:96:fd:e2:a3:8f:95:
37:47:38:8c:34:b9:32:3f:07:1d:f2:c0:03:2a:e6:
de:1d:61:8c:c7:99:39:18:a6:ea:05:2d:89:c6:b3:
7f:4d:3f:cf:88:4a:93:cc:9c:0a:71:af:5e:1f:39:
b1:3a:57:61:68:55:ea:e8:48:fb:70:8c:81:26:5f:
94:81:5f:15:a6:0b:11:11:72:79:3d:e4:02:71:5a:
bc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A4:19:E7:CE:A8:0D:EE:7F:DB:47:1C:BC:C2:43:9B:8D:E1:DE:8A
X509v3 Authority Key Identifier:
keyid:D4:F9:21:29:DF:7A:AA:71:57:E1:59:73:C2:47:53:E1:18:C9:05:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PkhKd96qnFX4VlzwkdT4RjJBX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/t6QZ586oDe5_20ccvMJDm43h3oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/1PkhKd96qnFX4VlzwkdT4RjJBX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2c08::/48
Signature Algorithm: sha256WithRSAEncryption
02:20:8c:6d:75:dc:90:9b:49:3a:b0:5f:a0:70:02:07:82:07:
94:5a:2f:76:63:0b:f6:1d:3c:25:c4:7b:0c:c6:67:43:08:43:
6e:6e:df:a4:de:d4:0c:f5:d4:78:2a:3c:f7:0d:49:b4:b3:a8:
00:e2:db:06:08:00:57:93:bf:a2:0f:93:64:0b:48:44:cc:18:
3a:97:9e:26:dd:98:5d:91:1f:c7:00:f8:38:4c:1d:39:41:9d:
cc:3a:77:93:95:44:91:59:7c:e2:d9:60:55:bc:fa:aa:52:f5:
67:16:96:20:5c:66:20:99:4f:44:3b:69:70:2a:4e:42:97:4c:
3c:7d:40:98:19:66:43:bd:77:bf:a6:87:ee:fd:30:51:72:e9:
63:ac:b1:c7:94:f1:c6:f0:af:c7:1c:7e:07:93:43:d0:63:2c:
2f:65:f4:d1:80:d1:14:af:28:da:fc:91:b9:98:3d:5b:53:8a:
59:9e:68:b5:55:b5:54:8c:9b:ab:c6:0c:af:79:b0:74:d8:9b:
7e:2f:cf:11:e6:f9:85:24:39:6f:f6:9d:88:df:69:f3:53:00:
04:3a:e1:25:e7:25:53:75:29:94:ee:be:56:d8:61:41:e5:64:
c0:1c:e5:93:bf:ae:e0:80:f6:be:7f:22:ca:72:02:b1:87:9c:
30:8e:ee:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:40 2024 by rpki-client on console-fra.rpki-client.org