Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/3vZHrcbnoiM_Gwv15DbpsRpvkuM.roa
File: 3vZHrcbnoiM_Gwv15DbpsRpvkuM.roa (raw, json)
Hash identifier: 2kFgP1E9i4qdoj7m+pn1mpxj+oDM48LwKshkyZfe8X4=
Subject key identifier: DE:F6:47:AD:C6:E7:A2:23:3F:1B:0B:F5:E4:36:E9:B1:1A:6F:92:E3
Certificate issuer: /CN=d36be6f075400d305a16dde690e25cbd94645cbe
Certificate serial: 056D073D
Authority key identifier: D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/3vZHrcbnoiM_Gwv15DbpsRpvkuM.roa
Signing time: Sat 01 Jan 2022 09:06:40 +0000
ROA not before: Sat 01 Jan 2022 09:06:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213330
IP address blocks: 2001:678:d20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91031357 (0x56d073d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d36be6f075400d305a16dde690e25cbd94645cbe
Validity
Not Before: Jan 1 09:06:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=def647adc6e7a2233f1b0bf5e436e9b11a6f92e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5c:83:e2:cf:b4:99:e2:3f:b4:ae:85:e7:36:
58:6d:8d:88:92:9d:9c:55:b4:6e:fa:15:3a:a2:ee:
3a:57:ad:6c:c2:a0:24:45:12:1f:ed:70:ae:b3:b9:
65:a6:16:2b:04:f6:50:a6:b0:41:8e:41:e6:7e:f9:
0e:f7:e6:b8:47:7f:05:b4:47:1e:a3:18:67:3e:01:
8e:dd:05:fe:0c:eb:77:d7:aa:53:49:3d:44:f0:0c:
ae:bc:c0:5c:90:02:22:34:a8:31:0d:8a:ad:4f:7c:
fc:df:2c:b4:69:d5:ec:42:98:9e:bd:52:33:b8:c2:
6f:97:ac:e3:87:4a:a5:06:1e:16:f3:7b:98:92:c0:
84:7a:8f:e2:bf:b5:0f:5e:39:11:c4:d7:11:f0:47:
ca:3a:a3:ac:ee:00:8f:ed:c6:58:10:08:a9:cf:b6:
6e:37:c0:18:6b:bd:0e:5d:82:5f:a4:11:b7:17:b2:
61:4d:e7:56:48:a6:82:7c:ca:c2:e1:5b:e3:9c:43:
de:b2:96:14:ea:c8:bd:bf:00:6e:62:0c:84:81:9e:
6a:eb:d0:44:9f:43:9e:27:14:f8:1d:f2:25:39:de:
22:47:b1:46:bb:4a:9a:94:67:01:fb:a0:ed:9d:00:
b8:30:3b:da:65:ce:b0:2d:2e:f7:dc:c7:fa:2e:f6:
5b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F6:47:AD:C6:E7:A2:23:3F:1B:0B:F5:E4:36:E9:B1:1A:6F:92:E3
X509v3 Authority Key Identifier:
keyid:D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/3vZHrcbnoiM_Gwv15DbpsRpvkuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d20::/48
Signature Algorithm: sha256WithRSAEncryption
55:02:dc:05:70:8e:d5:b1:1b:b4:74:a4:e6:f9:05:56:e9:2c:
1f:9b:28:79:d7:77:2c:ef:23:c0:4d:1b:fa:6d:40:a1:b8:12:
65:89:3e:8a:ba:2c:8a:af:ea:9a:b5:ac:8c:8d:96:dd:ef:ac:
83:fa:ad:6c:90:af:8a:4d:c9:78:85:d3:0d:d4:f9:eb:a2:f3:
ea:0c:f8:61:e3:b5:71:e4:2d:b0:23:5c:c0:31:fc:ae:59:73:
1a:4f:5d:e7:4a:cc:bc:a0:1e:08:e8:39:d7:09:7f:eb:5c:86:
d0:45:9b:5d:3b:7c:01:67:25:ea:d3:5c:be:09:dc:51:71:67:
ce:7b:47:e0:b6:d4:47:3b:90:8a:01:b3:b9:32:41:41:52:5c:
4a:ad:cf:6e:fa:ef:c4:3b:6c:a5:a2:63:2d:ed:47:7b:b9:8e:
9c:23:2a:e1:b9:1f:27:12:46:ec:b6:bb:a5:0a:ff:3b:42:03:
a8:b0:fb:04:46:5f:35:c1:1e:05:a5:b0:51:3c:d0:a2:cd:8d:
4f:88:92:d3:0f:ce:ab:ee:e1:b5:62:ef:00:d8:09:94:ad:b2:
cb:63:8c:0f:bd:00:24:34:13:23:77:a3:92:e3:aa:e8:53:4f:
7d:05:d6:79:05:f9:58:14:d8:2f:eb:04:33:80:04:f0:7f:51:
f0:68:84:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:35 2023 by rpki-client on console-fra.rpki-client.org