Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/JSljxKjuzs2rfe9tZF9NWxqvJZU.roa
File: JSljxKjuzs2rfe9tZF9NWxqvJZU.roa (raw, json)
Hash identifier: ZL6ll/cXP8qcKJL1vQfbb0Asx8PchTPAqwzsk8jV0Ag=
Subject key identifier: 25:29:63:C4:A8:EE:CE:CD:AB:7D:EF:6D:64:5F:4D:5B:1A:AF:25:95
Certificate issuer: /CN=317bf260bcda302be2c207628cfb164478614fe5
Certificate serial: 21BC79
Authority key identifier: 31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/JSljxKjuzs2rfe9tZF9NWxqvJZU.roa
Signing time: Fri 25 Mar 2022 16:24:25 +0000
ROA not before: Fri 25 Mar 2022 16:24:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207716
IP address blocks: 2001:67c:988::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2210937 (0x21bc79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317bf260bcda302be2c207628cfb164478614fe5
Validity
Not Before: Mar 25 16:24:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=252963c4a8eececdab7def6d645f4d5b1aaf2595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:30:89:de:36:3d:c8:6c:36:ed:7f:23:ea:40:
5a:8e:2b:d0:ee:3f:c2:1b:8e:d8:9e:38:bc:3b:22:
b3:5f:0e:4d:a5:73:7c:a1:9d:4c:f4:e1:2c:3e:de:
78:1b:e1:63:76:cf:4f:0f:0b:8e:ae:49:ca:fe:ba:
f8:b5:d5:98:c2:e3:c4:2e:89:0a:4f:cf:b3:6e:5c:
34:8f:fd:38:58:b8:0e:f8:ae:35:52:bf:b3:99:b5:
37:83:09:75:e4:5f:9b:c0:71:45:68:97:a6:0a:7e:
a2:28:0e:6a:d0:b2:99:78:87:cb:8b:10:5a:25:8c:
df:7d:24:a2:db:e3:d7:b2:c8:c4:67:8f:5c:94:4d:
0c:d2:20:98:06:d2:06:34:0a:40:13:09:4e:7b:a9:
4c:35:ba:c1:4d:98:5a:eb:42:62:51:50:09:f4:ba:
74:cc:44:4f:04:8f:e1:d9:39:54:76:fe:8d:c2:69:
92:c1:6f:78:27:57:e8:df:b0:0d:b2:62:a1:f4:41:
1c:e1:e8:07:a8:d6:e7:0e:9d:30:d5:62:15:bc:d5:
53:10:67:5f:1c:9b:64:1d:8d:f3:f1:c4:40:45:03:
ae:84:31:b0:d2:bc:57:ca:5f:a1:60:dc:fd:05:23:
b4:36:f0:a9:07:d2:7d:01:27:b5:ca:91:61:89:70:
f1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:29:63:C4:A8:EE:CE:CD:AB:7D:EF:6D:64:5F:4D:5B:1A:AF:25:95
X509v3 Authority Key Identifier:
keyid:31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/JSljxKjuzs2rfe9tZF9NWxqvJZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:988::/48
Signature Algorithm: sha256WithRSAEncryption
42:20:32:7d:32:f5:51:20:59:ba:8f:36:a4:14:c4:cc:49:9a:
72:27:4b:75:6e:7a:d4:55:74:67:a9:bf:18:fb:23:84:50:49:
d1:00:ec:27:42:47:32:f9:58:d7:47:90:af:85:d2:2f:37:95:
ef:a5:11:72:a1:fa:5b:bd:05:09:b6:d9:88:a8:cc:6a:16:1e:
ba:19:0d:fc:9b:8a:0e:0c:36:30:66:9b:e8:e5:ee:2e:12:ee:
b2:dc:b6:25:2b:f2:98:53:e3:89:5e:f9:ce:74:25:37:00:fd:
76:d7:57:f0:7b:0d:9b:bb:c5:63:09:73:cb:d0:e9:82:6f:8b:
3c:70:53:da:f0:f4:ab:06:b2:32:9c:e0:be:8e:19:ef:cd:3e:
a5:50:85:eb:78:7f:19:06:49:e2:98:db:69:ec:7c:f4:ac:39:
45:61:35:f1:ae:dd:8e:a1:2b:0f:84:69:72:e5:17:34:85:60:
55:d6:0e:1d:64:9d:3b:26:c7:85:5a:f6:b0:44:e3:0c:83:db:
61:b8:4c:70:6a:88:cc:5b:b9:4d:a3:a1:04:fe:73:63:1d:a4:
10:55:a7:7b:e1:2f:05:81:8f:7e:6f:82:81:0f:fd:07:82:a2:
19:f8:11:88:3b:fe:7e:f5:90:6e:b4:f9:a8:1c:30:73:04:45:
46:60:a3:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:51 2024 by rpki-client on console-fra.rpki-client.org