Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/0u7BCKGfOMdlAreScidCkYxEmsA.roa
File: 0u7BCKGfOMdlAreScidCkYxEmsA.roa (raw, json)
Hash identifier: ya+DwoUIFIhwpODcEejl9yqFxF5oeZk0zMIjWnnp2/E=
Subject key identifier: D2:EE:C1:08:A1:9F:38:C7:65:02:B7:92:72:27:42:91:8C:44:9A:C0
Certificate issuer: /CN=ecb612e1f6b4d83f8a5d552cf3b60edd23bfe9f4
Certificate serial: 058C21E4
Authority key identifier: EC:B6:12:E1:F6:B4:D8:3F:8A:5D:55:2C:F3:B6:0E:DD:23:BF:E9:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7LYS4fa02D-KXVUs87YO3SO_6fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/0u7BCKGfOMdlAreScidCkYxEmsA.roa
Signing time: Sat 01 Jan 2022 06:03:04 +0000
ROA not before: Sat 01 Jan 2022 06:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201057
IP address blocks: 2a03:e581:4::/48 maxlen: 48
2a03:e581::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93069796 (0x58c21e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecb612e1f6b4d83f8a5d552cf3b60edd23bfe9f4
Validity
Not Before: Jan 1 06:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2eec108a19f38c76502b792722742918c449ac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c5:2e:12:a0:04:7e:92:ca:1d:6f:7e:18:6d:
99:ab:7b:1e:34:56:9f:10:a0:35:87:7b:c3:90:94:
7b:78:84:36:cb:96:8c:52:df:f5:2e:28:e1:74:0d:
d6:80:c5:b5:1d:cd:c5:07:37:79:49:a8:ce:74:06:
82:bd:55:9f:be:38:8b:33:22:01:69:67:eb:70:60:
b5:07:77:7c:ed:4c:0c:01:48:c7:58:19:23:f8:eb:
f3:18:d4:23:51:70:d3:04:33:08:94:c2:e0:42:d4:
75:f8:45:62:d9:e2:22:d7:64:14:43:5d:c3:d1:b4:
3a:ac:32:26:84:70:2b:69:db:a5:15:5e:bb:0d:54:
d0:85:4e:26:57:2b:bb:f0:29:39:7b:d6:18:54:a9:
35:91:03:4c:72:2a:07:54:b6:4f:32:cf:4e:f2:55:
7e:7d:26:bf:63:31:aa:98:51:1f:6f:b5:c8:61:e1:
17:55:77:c6:00:aa:78:63:1c:4c:d4:65:2a:0c:3a:
88:ae:a9:7e:f6:18:2b:c2:91:98:c0:86:24:c0:f9:
0f:30:6a:f0:60:db:d1:a9:ef:74:47:58:78:32:f9:
49:b0:f9:94:9b:55:99:18:13:02:7b:21:7a:73:7f:
6c:27:5f:b5:79:99:e3:04:1c:4c:7e:f7:b7:ed:d3:
f7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:EE:C1:08:A1:9F:38:C7:65:02:B7:92:72:27:42:91:8C:44:9A:C0
X509v3 Authority Key Identifier:
keyid:EC:B6:12:E1:F6:B4:D8:3F:8A:5D:55:2C:F3:B6:0E:DD:23:BF:E9:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7LYS4fa02D-KXVUs87YO3SO_6fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/0u7BCKGfOMdlAreScidCkYxEmsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/7LYS4fa02D-KXVUs87YO3SO_6fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:e581::/48
2a03:e581:4::/48
Signature Algorithm: sha256WithRSAEncryption
6a:fa:24:8b:ae:ad:cd:b0:3a:bd:50:b6:f9:77:02:18:2d:30:
cf:53:f8:ad:eb:d7:f9:b7:ed:9b:43:82:94:b0:e3:30:0e:38:
03:ee:99:1b:43:bc:43:82:dd:92:66:47:d8:29:fc:50:fc:a0:
99:7d:ee:b6:d9:6c:90:92:a3:94:7c:17:e4:11:3d:a4:a6:64:
5b:9e:08:c3:a8:11:a0:75:78:41:51:0e:6b:f3:4b:8e:36:d2:
18:aa:1a:20:cf:cd:9b:78:69:96:70:05:5b:0e:c9:e1:15:3f:
15:6d:64:f2:12:05:bb:79:2a:54:64:fe:41:44:34:76:91:49:
01:a6:8e:21:f5:48:a7:33:5d:fd:55:fa:19:7e:6d:38:5a:91:
42:94:b3:26:97:85:be:7d:2e:20:bd:3b:f8:42:d4:c8:04:02:
6a:65:50:43:3e:11:23:8e:d4:7b:13:60:4a:81:5d:85:ae:76:
01:a1:67:55:e3:59:6a:87:0f:db:71:7c:d3:3f:ba:49:79:eb:
1b:b4:a5:e6:d9:a8:c0:16:22:87:5e:b2:28:d8:4b:b6:95:2c:
cf:90:bc:23:77:1c:a8:26:64:b9:22:c7:ee:cc:48:0e:ef:03:
07:7a:45:4e:f0:4f:b0:26:3a:b8:63:fa:7a:29:eb:8e:ec:50:
53:7e:c9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:19 2024 by rpki-client on console-fra.rpki-client.org