Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/4883d4-8479-4447-af67-1e6ca2f0d155/1/sch4sKLKBsxu9tymDnw2KSwZSQo.roa
File: sch4sKLKBsxu9tymDnw2KSwZSQo.roa (raw, json)
Hash identifier: 5aZpmZsLlA0zJwR5Owx37CdwoiFbzvHqSTeIfQLYAqI=
Subject key identifier: B1:C8:78:B0:A2:CA:06:CC:6E:F6:DC:A6:0E:7C:36:29:2C:19:49:0A
Certificate issuer: /CN=cc9fa0b30d5455ad67fb07e099f0fa95f8b6c19e
Certificate serial: FE2E8A
Authority key identifier: CC:9F:A0:B3:0D:54:55:AD:67:FB:07:E0:99:F0:FA:95:F8:B6:C1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zJ-gsw1UVa1n-wfgmfD6lfi2wZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/4883d4-8479-4447-af67-1e6ca2f0d155/1/sch4sKLKBsxu9tymDnw2KSwZSQo.roa
Signing time: Sat 01 Jan 2022 08:04:13 +0000
ROA not before: Sat 01 Jan 2022 08:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206253
IP address blocks: 2001:678:968::/48 maxlen: 48
2001:678:968::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16658058 (0xfe2e8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc9fa0b30d5455ad67fb07e099f0fa95f8b6c19e
Validity
Not Before: Jan 1 08:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1c878b0a2ca06cc6ef6dca60e7c36292c19490a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:86:33:cf:af:2d:d4:08:93:9c:65:f2:fa:e6:
ea:ce:00:ac:31:7c:d6:57:e7:77:e5:94:7d:12:62:
84:ee:33:4d:f5:b8:65:fa:e9:9f:6c:5a:a0:ca:c4:
fe:a8:8a:d7:91:75:67:fd:51:e5:77:13:ed:d4:a6:
50:3a:12:dc:a4:61:2b:25:33:c9:bd:f0:e7:57:4f:
6c:92:47:20:69:38:4b:97:05:7b:8c:80:01:9c:05:
fb:bf:6f:0b:69:de:b3:58:55:1e:84:5d:f8:da:23:
83:df:37:98:26:f7:90:23:16:28:23:81:95:09:22:
fd:5e:b1:5d:f4:99:1e:34:f9:9e:de:79:e2:61:9d:
c2:e6:be:72:95:53:45:52:b7:47:fc:1c:12:80:c2:
fa:6a:0c:c9:1f:2f:bb:b9:58:99:f7:f1:cd:67:0b:
35:14:74:a3:f8:23:06:3c:e1:8f:a7:98:ef:6e:70:
b2:56:88:5d:ce:47:a6:a3:a7:d9:9e:21:62:33:a3:
f6:23:8a:72:8f:8e:f2:0a:de:fb:2c:c4:57:b3:85:
1e:a8:40:a6:9b:78:12:f6:89:d3:39:1a:8e:98:b2:
e1:e5:a7:17:13:98:a6:cb:8e:7a:24:64:df:4d:d2:
ec:10:63:ec:35:9e:e8:fd:cf:83:d4:de:ec:29:2a:
a5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C8:78:B0:A2:CA:06:CC:6E:F6:DC:A6:0E:7C:36:29:2C:19:49:0A
X509v3 Authority Key Identifier:
keyid:CC:9F:A0:B3:0D:54:55:AD:67:FB:07:E0:99:F0:FA:95:F8:B6:C1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zJ-gsw1UVa1n-wfgmfD6lfi2wZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/4883d4-8479-4447-af67-1e6ca2f0d155/1/sch4sKLKBsxu9tymDnw2KSwZSQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/4883d4-8479-4447-af67-1e6ca2f0d155/1/zJ-gsw1UVa1n-wfgmfD6lfi2wZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:968::/48
Signature Algorithm: sha256WithRSAEncryption
63:76:f3:b3:52:c9:85:f3:a3:17:aa:50:62:c1:5f:12:9c:ac:
aa:6c:b2:24:b9:05:69:55:26:0f:8a:fe:61:b4:6b:6f:fb:8f:
e1:a5:5b:a2:a1:9d:8b:1d:6c:dd:71:65:6b:cb:6a:77:d8:04:
5d:f1:9b:ca:04:cb:48:40:75:79:dc:75:c4:b0:24:fa:d2:00:
d3:75:6e:8d:84:11:5c:29:f0:a0:b1:69:a1:40:01:d6:41:6a:
64:a5:99:01:78:56:24:67:9a:bb:99:3b:43:d2:51:ad:e8:ad:
62:da:bc:50:bf:29:7c:84:5d:2d:38:ba:d0:4c:7a:b1:5a:6a:
b5:23:78:f6:14:f5:d7:4e:79:59:be:42:04:8c:30:97:01:04:
08:85:f6:01:70:bd:af:db:4b:a6:1b:85:a7:bc:39:c3:32:c2:
6f:0f:48:6b:ac:95:dc:64:19:bc:7f:03:2d:fd:8d:5a:fe:87:
65:9a:15:f3:d0:04:d8:c6:b3:bd:4a:d3:41:89:78:5a:5a:ee:
90:33:e5:e1:24:f0:a7:4b:a9:f7:df:79:2b:d6:79:ac:f3:9b:
e3:06:36:08:32:ec:0b:d2:be:f8:d8:8e:4f:b7:be:92:e0:47:
ba:59:77:bc:bd:67:7a:fc:c0:36:b0:92:d6:bd:6f:f7:c9:ca:
e3:9e:28:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:24 2024 by rpki-client on console-fra.rpki-client.org