Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cEnUVoG2eu2IY7cCd5Cwc-QI328.roa
File: cEnUVoG2eu2IY7cCd5Cwc-QI328.roa (raw, json)
Hash identifier: 8Mfxm48WkGDMo/pkzC1boXN54H3mxYCrb9fOSfdP9Js=
Subject key identifier: 70:49:D4:56:81:B6:7A:ED:88:63:B7:02:77:90:B0:73:E4:08:DF:6F
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1A79BCBB
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cEnUVoG2eu2IY7cCd5Cwc-QI328.roa
Signing time: Tue 22 Feb 2022 08:31:57 +0000
ROA not before: Tue 22 Feb 2022 08:31:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210661
IP address blocks: 2a0e:c740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444185787 (0x1a79bcbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Feb 22 08:31:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7049d45681b67aed8863b7027790b073e408df6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:28:96:57:e7:0b:9f:6c:c5:ec:c1:2b:f2:8f:
f1:c9:6e:b4:60:55:3c:1c:f7:04:9e:a6:ba:34:2d:
c8:19:c5:43:a3:cb:62:a3:52:2c:5d:7a:1b:9e:ca:
f9:a6:f1:6f:6a:f3:a1:32:d7:1f:9d:b2:89:da:39:
d8:ea:fb:f9:cb:3e:9d:37:7e:ca:40:19:dd:3d:53:
d1:52:45:d7:fa:02:fa:f4:62:52:8c:81:bc:8b:a0:
92:ed:77:07:cb:0e:5f:c2:11:65:56:19:d0:08:34:
e1:79:64:56:3e:67:a0:80:3f:ea:8c:92:d0:58:b3:
a5:6f:50:63:76:da:05:78:71:f3:a2:d3:1d:89:2e:
c7:1e:c2:a6:95:df:6b:8e:46:7a:36:4d:9c:72:1d:
da:17:b1:a3:61:a4:2b:81:88:34:be:f7:d8:16:f9:
19:19:3f:82:22:b2:10:97:8b:84:53:ce:ab:bc:43:
32:85:14:6b:ca:1f:9d:8f:91:91:94:54:f8:e1:d8:
72:13:d0:e0:99:0b:ce:57:cb:33:1a:c0:fd:e4:96:
f5:8b:1e:a5:dc:af:3d:9f:41:69:e9:96:33:6c:4a:
c4:69:d1:69:83:6a:ed:39:90:09:63:1c:f5:fe:ba:
09:d3:04:9d:bd:ae:6d:7c:4d:eb:42:54:53:36:e3:
1f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:49:D4:56:81:B6:7A:ED:88:63:B7:02:77:90:B0:73:E4:08:DF:6F
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cEnUVoG2eu2IY7cCd5Cwc-QI328.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c740::/29
Signature Algorithm: sha256WithRSAEncryption
08:1c:b9:ef:ae:f4:9d:8e:b8:0e:35:b9:ae:0e:2d:6e:39:d2:
e1:09:5f:a0:c6:5f:7b:1a:14:f8:2a:ec:0e:53:4c:74:ea:38:
63:70:6f:de:f2:b6:cc:cf:fc:ff:71:61:c6:99:d3:c9:32:81:
44:4e:bd:b3:de:60:6c:a7:85:eb:8b:a3:9e:59:30:ec:56:3d:
b7:31:88:10:b6:8d:b5:7b:22:e2:5e:cb:ad:30:33:c2:5b:10:
24:11:a0:7e:81:5c:ff:1e:1f:e3:53:1a:ee:3c:94:05:1b:54:
c1:6e:86:19:6d:0c:a6:df:15:65:54:1d:01:12:16:20:48:8b:
b1:a4:3d:22:de:66:83:c0:d0:68:30:84:f5:79:d9:bd:98:d0:
be:89:a3:2c:8d:a0:89:c3:c9:d4:3e:90:94:ad:51:66:15:98:
86:5e:2e:0a:fa:33:41:53:d1:fa:94:46:fd:81:17:32:85:e8:
fd:60:01:89:37:1b:aa:0b:41:3d:e2:d1:08:8e:68:93:19:f4:
0a:48:88:84:41:be:37:7c:74:61:47:85:e3:ff:9d:0d:64:24:
1d:af:e4:54:de:ac:87:c6:ed:f2:a6:83:d6:01:84:8d:66:a1:
78:bc:bb:ad:36:6b:a0:d4:4d:f3:08:d4:26:cb:4b:04:cf:71:
25:41:dc:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org