Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/EGNyiUr7GWbI06usTmKL04UbvOk.roa
File: EGNyiUr7GWbI06usTmKL04UbvOk.roa (raw, json)
Hash identifier: MRg5K/3OSMN5dXCq1RQ1eLrDxXgClrNj03mYUIvUGQM=
Subject key identifier: 10:63:72:89:4A:FB:19:66:C8:D3:AB:AC:4E:62:8B:D3:85:1B:BC:E9
Certificate issuer: /CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Certificate serial: 0B4B3D81
Authority key identifier: D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/EGNyiUr7GWbI06usTmKL04UbvOk.roa
Signing time: Sat 01 Jan 2022 03:59:06 +0000
ROA not before: Sat 01 Jan 2022 03:59:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5606
IP address blocks: 2a07:4ec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189480321 (0xb4b3d81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Validity
Not Before: Jan 1 03:59:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=106372894afb1966c8d3abac4e628bd3851bbce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b9:3d:6f:65:e9:47:ec:03:04:cd:9d:07:fc:
ea:da:64:c5:58:40:64:a7:d8:60:cb:aa:86:43:28:
4c:0f:4a:b1:97:43:34:38:b7:02:03:05:2e:8a:d1:
dd:dc:9b:22:03:ce:f7:77:99:ca:78:43:08:f3:b2:
02:c0:25:c9:18:72:8d:37:6b:ee:ba:52:c5:96:09:
de:8a:3f:af:de:0d:b3:75:95:67:db:99:64:8e:c0:
a5:6b:82:8f:93:69:d9:09:29:66:cb:f1:8b:e8:75:
5e:26:22:a5:7d:64:20:eb:9f:49:2d:6f:89:22:3b:
97:e6:02:d0:f1:6b:22:42:77:e2:1f:65:49:c1:1e:
59:37:5a:fc:dd:2e:ac:12:5c:c4:2e:36:9f:1e:d6:
23:ac:80:13:00:27:eb:c0:b1:02:a5:f4:29:26:48:
01:d4:be:22:b1:4b:07:2d:58:69:a7:ea:bb:6c:f1:
9a:92:b9:d9:74:fe:51:9d:7e:4f:a8:ef:63:99:ff:
8b:e2:6b:10:0d:df:14:4b:39:06:a1:f3:b0:2a:77:
c3:dd:86:5b:44:49:b5:a6:94:fa:c3:cd:ce:54:3c:
98:a8:87:26:99:35:72:8e:a5:cc:81:9d:7b:0f:2b:
bf:f4:d6:57:fe:d8:f4:73:fa:d1:68:38:33:45:6f:
28:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:63:72:89:4A:FB:19:66:C8:D3:AB:AC:4E:62:8B:D3:85:1B:BC:E9
X509v3 Authority Key Identifier:
keyid:D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/EGNyiUr7GWbI06usTmKL04UbvOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/0FXguG8_USUFSGPPkmTmNG4Ju7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:4ec0::/29
Signature Algorithm: sha256WithRSAEncryption
21:ac:6a:23:a0:5f:1a:00:06:8d:c1:ce:a3:9c:99:aa:fa:5f:
41:27:c6:b8:62:4d:ee:3e:08:4f:77:de:ce:90:fe:27:5e:3c:
46:92:e0:c5:31:18:67:c3:de:6f:6e:95:2e:78:8c:4c:d7:95:
30:9d:ce:61:28:c5:79:84:28:88:2a:35:0c:7a:23:d6:df:bf:
9b:a3:b6:d7:ea:de:2f:39:11:4d:5a:82:08:d8:66:b1:84:26:
53:f7:82:21:e4:5e:7b:40:c1:bb:a1:6d:08:01:3a:19:47:a2:
94:b2:bb:88:d5:0e:e8:6d:70:e7:31:0a:b8:5e:2f:f2:a0:7c:
64:61:de:d7:93:ad:83:20:3f:b3:2c:e3:b0:16:d0:3c:f4:39:
08:c8:6c:f3:40:4f:6b:b2:f8:87:a1:42:d6:4f:67:eb:1e:31:
23:07:00:a7:5d:2f:04:4c:a9:e8:e0:d5:90:5b:60:31:6e:c9:
1d:a8:e0:6a:4d:d8:fb:53:12:1c:03:1f:3e:8f:44:95:58:81:
ef:35:5a:d0:41:ee:0f:91:22:b5:0f:02:54:d9:43:d9:fb:dd:
df:ec:64:06:82:d0:a5:8c:9e:24:f0:3f:8b:36:79:f7:99:7d:
fd:82:07:13:56:ec:69:83:6b:90:34:9a:2d:3e:c1:d2:07:07:
6c:f0:6e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org