Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e0c5b7-d2ac-4a5a-8098-60f9dea43899/1/WM5xuZf_QmMMDHaw-WuEmfIqP3Y.roa
File: WM5xuZf_QmMMDHaw-WuEmfIqP3Y.roa (raw, json)
Hash identifier: i2CpwHCO2t2WEGBjJxc6u3ljkwefJbf4DCcwomm6jBk=
Subject key identifier: 58:CE:71:B9:97:FF:42:63:0C:0C:76:B0:F9:6B:84:99:F2:2A:3F:76
Certificate issuer: /CN=4867d37b761cb7a05fc733e3db43366fa362536c
Certificate serial: 79C8BE
Authority key identifier: 48:67:D3:7B:76:1C:B7:A0:5F:C7:33:E3:DB:43:36:6F:A3:62:53:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SGfTe3Yct6BfxzPj20M2b6NiU2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e0c5b7-d2ac-4a5a-8098-60f9dea43899/1/WM5xuZf_QmMMDHaw-WuEmfIqP3Y.roa
Signing time: Sat 01 Jan 2022 03:51:42 +0000
ROA not before: Sat 01 Jan 2022 03:51:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50967
IP address blocks: 2001:67c:2140::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7981246 (0x79c8be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4867d37b761cb7a05fc733e3db43366fa362536c
Validity
Not Before: Jan 1 03:51:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58ce71b997ff42630c0c76b0f96b8499f22a3f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:13:41:d7:ee:74:76:13:d2:c6:64:e9:53:d5:
b0:6f:2d:0f:05:86:68:8a:a4:06:34:d1:0b:f2:2e:
be:e6:26:fd:f1:8b:56:08:77:f0:63:c0:11:40:15:
68:46:4a:93:a3:a9:db:88:91:c4:99:c6:85:ff:4b:
08:71:af:ed:8c:e8:f0:ba:47:a0:54:67:6e:2e:8b:
dc:aa:a5:bf:f3:72:fd:d4:9b:c3:1f:24:0b:0d:24:
29:27:4f:0e:76:c0:fe:0f:37:b2:04:f9:ae:02:fa:
f9:15:38:fb:2c:54:dd:ae:06:c1:d1:ac:57:03:a8:
e1:1c:1c:d0:a7:57:00:f3:5c:8b:b2:34:60:92:45:
3f:65:e1:2a:a0:0f:4f:07:9a:d5:73:d9:53:f4:5a:
0d:64:3e:1a:5f:4d:06:bf:38:ba:dc:05:26:fa:9c:
ba:ec:af:a4:8f:28:de:25:57:07:07:1a:5d:0f:30:
f8:5c:56:79:8f:43:2f:a2:dc:4c:66:3a:16:55:fe:
3c:2d:e2:e7:48:29:84:f1:c7:50:e9:4f:5f:74:e8:
05:c8:f1:05:2f:8d:1a:7e:16:dd:c2:92:1b:ce:4e:
45:25:58:d3:0b:d1:67:16:97:06:1a:7f:67:4b:90:
6b:fc:d9:70:66:66:e1:65:23:6f:64:c6:45:42:88:
bc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CE:71:B9:97:FF:42:63:0C:0C:76:B0:F9:6B:84:99:F2:2A:3F:76
X509v3 Authority Key Identifier:
keyid:48:67:D3:7B:76:1C:B7:A0:5F:C7:33:E3:DB:43:36:6F:A3:62:53:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SGfTe3Yct6BfxzPj20M2b6NiU2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e0c5b7-d2ac-4a5a-8098-60f9dea43899/1/WM5xuZf_QmMMDHaw-WuEmfIqP3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e0c5b7-d2ac-4a5a-8098-60f9dea43899/1/SGfTe3Yct6BfxzPj20M2b6NiU2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2140::/48
Signature Algorithm: sha256WithRSAEncryption
14:5c:9b:7b:4a:02:a0:01:3b:93:98:cb:a5:48:fd:17:48:61:
82:61:d6:3a:93:8b:6c:89:a4:4a:2d:f1:ae:eb:4e:ea:89:72:
10:94:3d:11:51:b0:ee:0f:50:d9:51:a5:63:a0:60:e5:00:6c:
fa:b1:57:8c:c0:0e:48:5a:45:2d:a0:6e:5c:37:46:d7:f7:60:
1a:76:bc:2f:f8:fa:2e:ee:35:2b:e2:d8:aa:84:9c:20:0e:4e:
04:25:57:b1:ab:fd:08:c0:a8:de:b2:b4:7e:b5:20:2b:67:6f:
80:03:45:d4:82:8c:96:91:92:66:8b:ea:c2:3d:b0:50:17:db:
af:49:0d:31:d9:c5:b7:b9:5c:e8:b7:76:23:cd:34:3a:6b:da:
21:9d:d8:59:73:0b:26:88:0e:46:ed:30:4d:df:6d:53:1e:73:
70:ac:ef:28:fc:71:97:4b:04:ec:61:44:cd:7e:e7:30:c2:af:
90:d1:f8:8a:50:01:3e:e4:99:f5:8e:a0:7e:10:10:07:e4:3e:
db:15:c7:82:f8:98:e0:6b:fe:0c:dc:2f:a4:69:57:a8:e5:ca:
7f:25:a4:d6:6e:74:33:77:58:48:15:f4:3f:66:40:68:5a:00:
19:88:2a:4f:4b:2c:25:22:37:4b:02:f1:cb:79:a9:fa:08:95:
60:fd:af:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:32 2024 by rpki-client on console-fra.rpki-client.org