Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/fnZxVAETo4_KIo4KnHTKSVqZudA.roa
File: fnZxVAETo4_KIo4KnHTKSVqZudA.roa (raw, json)
Hash identifier: +//1qaPwxZX42ujCsb0HFEI6LXBDho30fB1X076o1oI=
Subject key identifier: 7E:76:71:54:01:13:A3:8F:CA:22:8E:0A:9C:74:CA:49:5A:99:B9:D0
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 4321F20D
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/fnZxVAETo4_KIo4KnHTKSVqZudA.roa
Signing time: Wed 25 May 2022 06:12:14 +0000
ROA not before: Wed 25 May 2022 06:12:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60996
IP address blocks: 128.0.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126298125 (0x4321f20d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 25 06:12:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e7671540113a38fca228e0a9c74ca495a99b9d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6e:4e:45:eb:74:73:8b:86:00:0c:75:ee:4e:
28:8f:58:ec:af:0c:c4:d5:98:47:52:ab:b7:72:2f:
82:88:05:80:9c:e8:bd:53:31:ca:20:04:19:09:bc:
f8:d2:d9:60:b1:d5:7f:14:93:5f:c6:51:13:37:ef:
d7:d9:8c:b6:da:13:5a:70:a1:ad:36:0f:f9:3a:e7:
8e:f4:66:c7:00:ee:15:4f:2d:49:79:af:47:ae:1d:
f8:eb:45:c6:c1:f8:e3:d3:be:79:13:f6:b2:85:5e:
87:c0:1c:9b:c0:7e:c6:5d:b6:85:1a:a8:cc:73:de:
e2:53:93:86:e4:ad:1a:77:52:9a:d4:16:76:b9:72:
a9:41:1d:db:c3:22:30:bc:27:f3:c6:72:b7:e8:89:
4e:db:da:bf:62:3e:aa:8d:d7:af:75:d2:02:74:55:
e1:9f:75:2b:08:21:21:10:01:8a:b7:20:6f:40:08:
ee:eb:21:91:76:26:dd:26:27:7d:a7:3f:4c:f0:b4:
2b:00:c6:d4:8e:f8:53:72:e5:08:c2:65:6f:1f:dd:
77:35:ed:80:e5:b9:bb:5c:0e:37:92:45:46:ca:cb:
4d:56:db:49:ff:c4:ff:a3:a7:47:bf:3c:41:20:39:
cd:bf:8c:27:10:d1:8d:09:ff:82:2a:bc:0f:6a:dd:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:76:71:54:01:13:A3:8F:CA:22:8E:0A:9C:74:CA:49:5A:99:B9:D0
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/fnZxVAETo4_KIo4KnHTKSVqZudA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.56.0/24
Signature Algorithm: sha256WithRSAEncryption
70:99:5c:57:f3:ac:70:7a:1e:d0:19:71:c5:49:76:dc:6d:c4:
2c:ba:3e:c7:c6:eb:e8:67:1b:1e:2f:22:9c:76:93:b8:25:18:
10:ef:ea:19:96:21:ff:63:fd:13:1d:98:8c:8d:ba:ff:82:37:
ab:2d:8a:6e:26:c7:d8:a1:44:34:d7:75:e8:53:a0:9e:a3:37:
e8:a7:13:19:71:64:ce:e2:3e:c8:c3:0c:e1:a4:e3:aa:d3:1b:
1e:1b:cb:e7:aa:28:1e:90:cc:12:1a:a7:eb:76:9d:8d:24:f6:
27:0a:22:3c:dc:37:7e:c0:48:1f:1b:2a:65:7b:51:c5:08:8a:
7f:e4:4c:22:8b:b9:03:74:cf:3b:27:55:56:1a:24:2e:8c:0b:
3c:d5:35:59:98:e5:3b:7a:49:32:19:65:78:54:ce:fe:df:14:
d5:86:3c:39:1a:f5:fe:62:9f:28:de:f7:cd:8d:fc:b8:e5:51:
a4:57:52:04:6f:ab:8f:91:9a:dd:2e:ca:45:0e:a0:b7:8d:0b:
b1:a4:52:d6:73:67:9f:e7:bb:c6:2f:0e:9c:3e:20:65:e0:b5:
08:56:69:91:13:e6:b5:f9:47:9c:c3:a8:ed:a8:72:e2:00:07:
ec:32:25:0b:3d:f0:2a:f7:fb:b2:22:07:be:36:e3:04:17:51:
f3:8b:c0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org