Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/08c4a7-4d2a-4d1c-8b8e-56c5d76ddcd8/1/1-4Dd4ewjKmCiFMR-2YUrHbFru88.roa
File: 1-4Dd4ewjKmCiFMR-2YUrHbFru88.roa (raw, json)
Hash identifier: O4CsGK6DjDSw9EWx/SWWHIwu/FVsqDXG09/vJ/mzEMI=
Subject key identifier: FB:80:DD:E1:EC:23:2A:60:A2:14:C4:7E:D9:85:2B:1D:B1:6B:BB:CF
Certificate issuer: /CN=c8e90b172f88be21bb99d573fd75b27f5bf745c2
Certificate serial: 03067C87
Authority key identifier: C8:E9:0B:17:2F:88:BE:21:BB:99:D5:73:FD:75:B2:7F:5B:F7:45:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yOkLFy-IviG7mdVz_XWyf1v3RcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/08c4a7-4d2a-4d1c-8b8e-56c5d76ddcd8/1/1-4Dd4ewjKmCiFMR-2YUrHbFru88.roa
Signing time: Sat 01 Jan 2022 09:01:55 +0000
ROA not before: Sat 01 Jan 2022 09:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212002
IP address blocks: 2001:67c:229c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50756743 (0x3067c87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8e90b172f88be21bb99d573fd75b27f5bf745c2
Validity
Not Before: Jan 1 09:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb80dde1ec232a60a214c47ed9852b1db16bbbcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:57:f1:44:5b:8f:e4:16:20:e2:cb:19:5f:c5:
b9:23:e5:ac:22:38:2b:95:a1:1a:fc:cd:f1:7c:d3:
89:3c:d1:18:9c:52:90:5e:34:21:12:51:b7:b8:65:
d3:84:53:16:4e:96:f4:04:2c:0b:c8:d7:f9:25:58:
b1:82:85:95:4f:b5:48:47:15:b2:d5:a0:49:07:a1:
af:12:a3:ab:62:6d:12:df:f6:71:f6:9e:bf:75:4e:
af:21:d0:22:be:c7:1c:30:20:d8:f4:11:f7:fc:68:
35:87:48:0f:78:3d:15:f4:00:0b:28:f5:d9:b2:f3:
39:df:a9:a9:d3:76:50:a7:b1:3f:d0:87:3a:c2:61:
b5:79:3f:f7:51:cd:ad:47:17:19:c4:9e:ea:e3:3d:
0c:d9:e6:2b:ab:9b:4d:04:e9:c1:06:01:fb:5c:83:
03:34:bd:bc:9f:d3:19:62:cd:47:3b:38:b1:ee:f5:
99:b3:57:cd:58:ec:32:06:97:4d:4d:5c:c9:a7:28:
ec:12:e3:bf:b2:11:bf:f8:e7:4d:6a:07:9d:42:76:
0e:ba:a6:f9:79:e7:47:6b:43:9b:35:d3:ef:51:7f:
a6:76:56:84:eb:84:bc:c7:f4:58:b1:b8:01:a0:ac:
d1:ef:4d:a5:2e:ff:3d:c8:73:f3:a0:6f:39:d0:a0:
e3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:80:DD:E1:EC:23:2A:60:A2:14:C4:7E:D9:85:2B:1D:B1:6B:BB:CF
X509v3 Authority Key Identifier:
keyid:C8:E9:0B:17:2F:88:BE:21:BB:99:D5:73:FD:75:B2:7F:5B:F7:45:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yOkLFy-IviG7mdVz_XWyf1v3RcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/08c4a7-4d2a-4d1c-8b8e-56c5d76ddcd8/1/1-4Dd4ewjKmCiFMR-2YUrHbFru88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/08c4a7-4d2a-4d1c-8b8e-56c5d76ddcd8/1/yOkLFy-IviG7mdVz_XWyf1v3RcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:229c::/48
Signature Algorithm: sha256WithRSAEncryption
58:bc:49:18:17:ed:f2:2e:c1:9a:5c:e5:6d:a0:0e:94:50:4b:
0d:61:44:d4:56:02:e4:6d:56:77:70:07:18:dc:98:9f:32:7e:
94:3f:0f:85:4d:81:97:b0:16:59:ef:0c:ea:0a:64:b3:cb:e3:
42:96:8d:9c:a0:6f:fe:d9:18:d0:94:81:67:d5:05:57:9c:a7:
36:bb:1a:4e:2d:fe:b9:79:92:ef:da:45:14:50:2a:17:e5:4f:
f6:3b:56:a4:da:8e:95:7c:7e:cf:de:e8:e5:fc:4e:2a:e7:9f:
be:08:71:8a:f4:87:bf:80:36:6c:9e:d3:2a:a4:2b:2d:43:a4:
c3:85:4b:08:ec:40:77:a0:4d:92:86:5c:c3:53:cc:a1:5d:e4:
cf:e2:ae:6c:af:50:42:a0:6f:b8:44:d4:d6:6b:14:6c:17:ec:
16:3e:da:d5:95:4e:52:50:98:d7:a5:8f:49:56:0d:88:dc:ad:
ad:ab:4e:8c:40:d4:4e:72:71:96:34:8b:98:e3:61:1b:d3:f1:
83:d0:b7:03:f5:b5:d5:c7:ba:bd:65:58:e8:35:24:f0:10:75:
fc:1a:69:1e:62:41:37:ce:e3:bc:17:85:ac:92:9f:c2:3c:a9:
98:b5:26:14:02:e7:0b:01:fa:3c:44:a3:85:ef:30:27:a2:c8:
bb:8d:d0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:57 2024 by rpki-client on console-fra.rpki-client.org