Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/444437-6843-4ad4-b764-79cc52c06d4f/1/1-JrceNDcy6tLTf6tE_P6xx91_qk.roa
File: 1-JrceNDcy6tLTf6tE_P6xx91_qk.roa (raw, json)
Hash identifier: 52eHWgfy5r0MI4Wog4mtXtCNY/hkHaOhjhQUpBNuF3o=
Subject key identifier: F8:9A:DC:78:D0:DC:CB:AB:4B:4D:FE:AD:13:F3:FA:C7:1F:75:FE:A9
Certificate issuer: /CN=b3398b5b1d9a96e4115b7bcf6fca63fbaf639ca7
Certificate serial: 021DF8C3
Authority key identifier: B3:39:8B:5B:1D:9A:96:E4:11:5B:7B:CF:6F:CA:63:FB:AF:63:9C:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/szmLWx2aluQRW3vPb8pj-69jnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/444437-6843-4ad4-b764-79cc52c06d4f/1/1-JrceNDcy6tLTf6tE_P6xx91_qk.roa
Signing time: Sat 01 Jan 2022 14:58:31 +0000
ROA not before: Sat 01 Jan 2022 14:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52192
IP address blocks: 2001:678:f40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35518659 (0x21df8c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3398b5b1d9a96e4115b7bcf6fca63fbaf639ca7
Validity
Not Before: Jan 1 14:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f89adc78d0dccbab4b4dfead13f3fac71f75fea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:78:ba:25:ed:26:16:1d:03:62:ba:dd:f1:00:
e0:83:cb:11:24:3e:81:c5:c6:d9:b7:87:e3:79:92:
e1:0b:9f:07:5c:75:29:58:ca:e6:74:d4:ad:92:4b:
a8:e4:ed:b1:b7:79:46:64:a1:fe:49:72:c4:d4:13:
5d:5a:a7:9d:b8:bf:1e:9c:84:4c:0c:b4:8b:4d:3d:
f1:19:32:4e:05:17:50:12:2d:50:b1:96:0e:02:b9:
3c:cd:e9:c6:30:8e:df:d5:f9:bc:dd:61:9a:8f:f7:
78:33:76:af:2f:48:55:ec:0f:b3:e2:41:2c:69:3d:
b1:67:79:de:4a:84:4b:0c:a9:0d:dc:3e:6a:c7:13:
dd:54:65:9d:ab:08:64:b0:86:27:92:af:33:de:5f:
e5:b7:37:cd:1f:85:ba:e1:75:47:5e:0b:de:38:a4:
72:cd:46:dc:c0:a8:a7:c8:7b:a8:07:20:dc:e3:43:
42:ef:c6:d6:d0:e9:8a:16:ec:10:4e:ae:c1:32:3f:
8d:dc:c3:d1:22:4f:94:ef:b3:4a:95:07:25:f4:ce:
b7:cd:6a:79:d6:a1:d0:51:3c:92:ca:d2:45:3a:c9:
68:fe:7f:2f:32:68:7e:2e:7c:58:23:fe:05:59:2e:
f1:ae:80:94:b3:e9:48:3a:51:9a:69:dc:81:6c:58:
4d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9A:DC:78:D0:DC:CB:AB:4B:4D:FE:AD:13:F3:FA:C7:1F:75:FE:A9
X509v3 Authority Key Identifier:
keyid:B3:39:8B:5B:1D:9A:96:E4:11:5B:7B:CF:6F:CA:63:FB:AF:63:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/szmLWx2aluQRW3vPb8pj-69jnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/444437-6843-4ad4-b764-79cc52c06d4f/1/1-JrceNDcy6tLTf6tE_P6xx91_qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/444437-6843-4ad4-b764-79cc52c06d4f/1/szmLWx2aluQRW3vPb8pj-69jnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f40::/48
Signature Algorithm: sha256WithRSAEncryption
68:b3:db:5f:ab:8d:b0:88:af:3c:45:54:a6:85:22:af:8b:15:
43:e7:38:35:c9:f6:d5:1f:96:06:67:52:b4:bf:e7:a5:d2:ca:
5d:c2:f4:22:85:1f:69:31:53:9e:1e:43:cb:94:90:f3:c8:10:
98:9e:3b:83:8d:d8:43:c3:55:ea:57:b0:51:83:b6:5e:a0:8a:
ad:a3:ae:da:2b:82:4b:01:85:92:83:3f:d5:ba:50:57:16:8c:
30:f0:e5:0f:8b:6e:b5:df:54:70:50:cf:24:06:92:05:3d:3d:
0e:e5:62:9c:6c:03:44:19:0a:2c:e7:d5:f9:4e:17:1c:89:4f:
65:76:54:20:8e:ab:2d:08:75:c9:56:32:8c:64:c7:80:01:98:
45:f6:59:91:c7:fa:b7:82:ff:fb:c7:0f:73:8c:4d:27:e1:59:
48:a2:0f:ae:65:8c:fb:73:31:86:07:c9:33:3f:55:b1:9c:26:
c8:b0:fa:8b:47:b1:2e:48:08:5b:fa:7b:22:08:cc:71:99:c9:
59:c2:e4:c6:86:d0:e2:a3:cb:cd:cb:ef:13:71:f7:29:7d:11:
cb:3f:6d:ce:72:ee:3a:e2:30:f2:82:27:73:87:df:01:98:81:
39:f4:d6:f9:c3:4b:6a:3d:fb:26:66:df:70:da:41:8a:73:7f:
42:b5:a0:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:06 2024 by rpki-client on console-fra.rpki-client.org