Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/7w5B7V1h1eqaiWAgQECdvic7kQc.roa
File: 7w5B7V1h1eqaiWAgQECdvic7kQc.roa (raw, json)
Hash identifier: N7qy9ph8OzMgkXMi22UDsXHZ6N1wAkJhO4HgdWy9XoY=
Subject key identifier: EF:0E:41:ED:5D:61:D5:EA:9A:89:60:20:40:40:9D:BE:27:3B:91:07
Certificate issuer: /CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Certificate serial: 0EEAFC44
Authority key identifier: DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/7w5B7V1h1eqaiWAgQECdvic7kQc.roa
Signing time: Sat 01 Jan 2022 11:00:36 +0000
ROA not before: Sat 01 Jan 2022 11:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47555
IP address blocks: 128.127.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250281028 (0xeeafc44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Validity
Not Before: Jan 1 11:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef0e41ed5d61d5ea9a89602040409dbe273b9107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c1:e5:40:c8:94:e5:fe:b7:55:40:80:5c:37:
b4:d1:8d:76:35:4e:40:72:9f:b4:33:45:51:ed:3f:
dd:f8:d9:49:60:99:d6:0e:78:14:5e:23:80:66:f7:
09:cc:a4:c4:ae:eb:0d:af:68:0f:f2:e1:69:f1:20:
65:9d:60:c9:90:b7:12:35:b4:e3:4f:16:37:c4:8a:
95:77:ff:e7:1d:3c:63:8d:54:1e:ce:0c:a1:78:df:
02:5e:43:84:ac:eb:f4:d8:49:d8:a3:84:04:86:cd:
48:c4:40:97:c5:1e:f0:32:03:0a:88:12:12:5a:8a:
7e:56:54:7f:43:c9:fa:52:e3:65:2d:56:c5:ae:ec:
0f:a5:3b:40:d3:91:0f:37:18:10:fe:bb:7c:b3:0e:
4c:c1:29:25:e8:d1:05:33:80:92:9f:9f:6c:97:db:
e8:48:a1:87:e9:4f:ce:53:5c:89:43:de:f2:4c:a1:
5d:c7:97:c6:e3:82:1e:f3:4e:62:54:34:04:00:23:
68:19:57:cb:8e:60:f7:28:49:8c:7b:35:a8:61:ae:
49:10:f7:63:60:c1:c2:27:af:1e:d4:82:63:55:f9:
9e:14:e3:02:c3:1a:11:e1:49:9a:91:d8:d5:33:ef:
14:13:22:28:d9:ff:f2:d9:ff:9b:3f:b7:20:ef:ff:
94:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0E:41:ED:5D:61:D5:EA:9A:89:60:20:40:40:9D:BE:27:3B:91:07
X509v3 Authority Key Identifier:
keyid:DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/7w5B7V1h1eqaiWAgQECdvic7kQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.127.181.0/24
Signature Algorithm: sha256WithRSAEncryption
36:42:b7:6a:66:89:f1:e8:95:18:11:66:1e:9f:07:24:4a:cf:
d6:c9:33:0c:08:27:82:b2:b6:c9:16:ef:7e:5a:92:50:8b:5a:
b5:81:1c:40:64:f3:52:6b:73:1f:fc:f0:3c:98:9e:1e:06:5a:
ed:43:8a:e3:18:63:c2:a5:c7:cb:bd:b2:dd:9c:07:dd:88:08:
79:9a:9b:8f:3c:ca:f3:38:2b:4e:6f:82:d8:66:20:1c:e2:56:
4d:72:19:9a:0f:4a:ee:6e:04:d8:bb:7b:5b:98:82:af:dc:11:
f6:86:31:59:f6:6f:aa:81:12:84:22:5c:0c:a9:5e:fa:40:01:
49:b1:02:30:21:b3:f3:1c:f0:5f:72:16:89:cf:80:59:48:33:
74:4f:16:71:81:1c:3a:22:f9:3d:de:7e:63:92:8e:8b:01:25:
20:33:36:59:22:d8:ef:0f:37:f3:cc:e3:a6:55:c0:d4:d0:17:
f6:d2:31:a9:cf:50:ca:98:00:3f:78:d3:20:7e:0f:2a:db:36:
f2:2e:a5:36:2d:d5:02:dd:99:5d:27:1b:3e:a6:4f:1f:67:a6:
04:78:8d:91:78:45:a1:9a:fc:47:4f:33:7d:ed:6f:ed:b8:96:
a3:7d:c5:67:d0:44:7c:2d:e0:e2:6b:40:98:3f:12:d2:9f:73:
4c:6c:2c:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:26 2024 by rpki-client on console-ams.rpki-client.org