Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/cseV04KOeB354ghWs8HDUZi7fro.roa
File: cseV04KOeB354ghWs8HDUZi7fro.roa (raw, json)
Hash identifier: hIW+hMRvKhDfjqppnzqGb7ruJBUAjQyVUXvX25kbcL4=
Subject key identifier: 72:C7:95:D3:82:8E:78:1D:F9:E2:08:56:B3:C1:C3:51:98:BB:7E:BA
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 053C3C4C
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/cseV04KOeB354ghWs8HDUZi7fro.roa
Signing time: Sat 01 Jan 2022 10:04:19 +0000
ROA not before: Sat 01 Jan 2022 10:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213204
IP address blocks: 2001:678:d50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87833676 (0x53c3c4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Jan 1 10:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72c795d3828e781df9e20856b3c1c35198bb7eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:b2:b1:9e:b8:30:27:6d:ec:49:5f:50:c6:be:
7e:f9:41:7e:97:52:ff:29:e1:23:ab:9e:47:e2:d1:
84:7b:3a:49:b6:cb:1b:f9:e9:19:71:22:c8:19:ff:
b3:e3:bb:fc:55:42:40:92:17:7d:51:83:64:48:25:
c4:0a:c4:a2:5e:8c:25:e8:0d:9e:bd:69:28:0f:33:
97:31:3c:5b:9b:31:35:2e:4c:88:b9:48:f2:63:22:
1e:5b:39:27:49:cc:58:bc:d9:93:a3:7d:35:22:55:
4e:3d:b8:7f:c2:9f:98:01:0a:8b:97:62:1a:0c:65:
6f:da:87:a8:b4:11:c8:ca:d9:f2:b7:35:59:be:ee:
ed:10:6c:34:8e:7a:99:2f:10:4f:81:d4:6e:54:7a:
16:e3:b9:29:77:d8:3b:0d:0c:0e:80:2f:83:94:e4:
6d:8b:6f:a5:0b:8e:88:24:33:67:e0:38:61:7e:aa:
d4:43:e8:7d:04:cb:71:2f:6e:08:7b:bd:7b:4c:bf:
ce:ba:a4:22:b4:aa:05:d5:99:8d:38:53:37:71:73:
9d:b7:90:d7:11:62:7f:8e:05:3a:03:ed:7a:80:d9:
ca:eb:ae:95:a5:f6:34:4f:61:e6:f1:6c:30:20:fe:
23:e3:2e:5a:4a:1b:1d:b0:fe:14:a5:a9:11:2d:25:
a4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C7:95:D3:82:8E:78:1D:F9:E2:08:56:B3:C1:C3:51:98:BB:7E:BA
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/cseV04KOeB354ghWs8HDUZi7fro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d50::/48
Signature Algorithm: sha256WithRSAEncryption
1d:1d:df:5a:36:a9:4b:35:cb:51:1a:f2:58:57:69:3d:3f:2c:
02:9d:31:aa:df:8b:22:95:11:06:4e:ad:16:9c:c7:15:4c:18:
05:5e:8c:35:bb:dd:33:cb:d5:eb:b4:41:81:6e:b9:ff:ae:56:
68:25:e3:10:a5:8c:dc:f2:af:ca:a0:8c:35:82:fb:ec:b0:0f:
68:c0:31:76:53:81:ff:f8:49:23:95:21:12:e4:95:ff:e1:71:
6f:38:f5:f4:93:d3:a8:3f:d6:ca:ce:8d:bd:68:c5:f5:39:22:
cc:4d:a4:ed:2f:d2:67:33:0a:4a:41:fd:3b:f1:8b:45:eb:80:
5a:0e:3d:81:b6:fb:fd:7a:4a:e3:7f:a2:c0:76:22:cb:76:ca:
39:13:8b:a4:56:e2:c1:fb:77:81:dc:3b:47:d4:4d:82:d5:94:
04:cf:f6:b9:34:27:d6:ba:90:fc:63:cb:ae:07:dd:44:0f:2e:
4d:ac:d1:24:cc:b8:30:31:56:49:eb:2b:47:ac:aa:d1:2a:49:
d7:86:5d:f6:de:ef:f9:9b:b5:f2:bf:3f:31:4f:85:50:63:0d:
11:f4:98:2d:1e:ce:26:55:ce:b1:50:e1:cc:5d:f3:b6:06:2c:
8c:ee:fe:fe:b3:03:f6:e0:7b:24:85:04:62:eb:6f:1f:4e:4c:
dc:83:b8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:00 2024 by rpki-client on console-ams.rpki-client.org