Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/9ZFsiEfowSgH27nkiNzxujd7FGg.roa
File: 9ZFsiEfowSgH27nkiNzxujd7FGg.roa (raw, json)
Hash identifier: tZwQJxX+D3oBai9Dxg3vtU2eoPtfYXC9z63KMRiC/s0=
Subject key identifier: F5:91:6C:88:47:E8:C1:28:07:DB:B9:E4:88:DC:F1:BA:37:7B:14:68
Certificate issuer: /CN=58a5ed8e3ecc92a2de8c80abe9a8195d5ff997e6
Certificate serial: 010496
Authority key identifier: 58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKXtjj7MkqLejICr6agZXV_5l-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/9ZFsiEfowSgH27nkiNzxujd7FGg.roa
Signing time: Mon 14 Mar 2022 22:30:34 +0000
ROA not before: Mon 14 Mar 2022 22:30:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49852
IP address blocks: 2001:678:6ac::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66710 (0x10496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a5ed8e3ecc92a2de8c80abe9a8195d5ff997e6
Validity
Not Before: Mar 14 22:30:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5916c8847e8c12807dbb9e488dcf1ba377b1468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cb:a1:78:df:6b:cc:e5:6c:9a:3d:af:2b:36:
d1:c8:64:01:af:bc:f2:44:77:05:ed:75:71:2e:7c:
0a:26:68:3a:e7:01:97:0e:ed:78:fb:9a:87:48:eb:
87:9d:e4:0d:a7:74:9f:58:7a:ba:ea:cf:d5:09:56:
1f:98:4d:d6:7d:1f:1a:16:b8:97:73:f0:1f:74:4a:
24:80:b8:1e:20:38:79:51:f8:15:f1:c1:8f:d6:d5:
b1:76:3f:d7:7a:8f:15:40:ef:4e:dc:77:5c:24:92:
34:60:04:69:b0:81:74:02:12:1c:94:76:3d:84:7d:
b2:e4:c1:dd:e8:fd:9c:68:fd:1c:63:bc:f8:06:8e:
d4:aa:d8:10:17:99:23:4b:67:a1:db:a4:fe:53:f7:
f0:b2:e1:3f:a6:04:38:05:68:89:2d:10:31:24:08:
d4:8f:a2:b2:12:38:c4:ca:40:e4:49:5a:30:d6:4b:
f3:b2:ef:ad:81:c0:09:39:8c:92:86:fb:19:0a:88:
02:c8:21:c7:83:ec:ad:5d:4c:ae:31:d5:04:83:b2:
4f:47:d8:ee:9a:7a:48:09:d5:b3:2a:75:90:17:1f:
f4:e5:7c:4e:dc:6e:bd:15:dd:0f:fb:74:1e:b9:0c:
0f:50:0d:83:cb:a6:5f:47:ce:88:cd:4e:bc:a7:1c:
8b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:91:6C:88:47:E8:C1:28:07:DB:B9:E4:88:DC:F1:BA:37:7B:14:68
X509v3 Authority Key Identifier:
keyid:58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKXtjj7MkqLejICr6agZXV_5l-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/9ZFsiEfowSgH27nkiNzxujd7FGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/WKXtjj7MkqLejICr6agZXV_5l-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:6ac::/48
Signature Algorithm: sha256WithRSAEncryption
58:4c:ef:ef:98:53:d2:e4:d7:ab:8f:86:61:6d:a5:1f:fa:19:
1a:2b:f8:bd:17:05:88:6b:b7:4b:b3:bc:57:62:9e:ce:90:19:
89:a3:38:03:2e:61:59:98:a3:69:4f:17:b6:9a:c7:e7:b7:57:
21:04:ab:c2:c5:dd:13:27:a8:96:70:2a:b2:65:15:b2:9c:4a:
8c:e6:4c:e0:9d:98:ff:8f:75:86:0a:0c:ab:e8:4c:3f:e7:4d:
84:4a:f2:35:50:63:e4:37:3a:fa:cb:3a:e2:73:9d:8e:71:9c:
fc:cd:84:88:03:0f:72:f6:a8:d1:a7:fc:49:3a:31:16:33:0a:
34:1f:9f:85:b4:c8:d3:f2:98:8a:b1:59:09:93:dc:7f:03:c2:
5f:6c:5c:2b:a0:35:cb:4b:04:c0:91:7c:db:5d:9c:00:5b:73:
b4:e7:d1:62:94:e0:aa:38:9e:09:6b:33:42:e7:d0:77:7c:25:
85:57:cd:c3:9c:a7:22:d4:24:44:65:0f:f1:91:e5:9d:0e:37:
2e:d4:1f:19:54:72:14:7f:bd:95:a4:3c:3e:15:bd:50:96:dd:
c7:b4:42:6c:75:a1:21:22:8a:83:59:fe:9f:5a:b8:87:95:87:
01:c3:31:8e:2b:93:af:b7:27:7d:ef:3a:d9:ef:15:21:56:57:
52:55:50:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:02 2024 by rpki-client on console-ams.rpki-client.org