Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/542SU0qBeVntJrWWvvgbMDBIFZA.roa
File: 542SU0qBeVntJrWWvvgbMDBIFZA.roa (raw, json)
Hash identifier: go0Zjm9yqhjHh9b3zrCqgkbUpe6Nq/EZ8Gm2Ybpew1s=
Subject key identifier: E7:8D:92:53:4A:81:79:59:ED:26:B5:96:BE:F8:1B:30:30:48:15:90
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 07E38B03
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/542SU0qBeVntJrWWvvgbMDBIFZA.roa
Signing time: Sat 01 Jan 2022 07:53:42 +0000
ROA not before: Sat 01 Jan 2022 07:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208584
IP address blocks: 2001:678:ab4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132352771 (0x7e38b03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Jan 1 07:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e78d92534a817959ed26b596bef81b3030481590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:03:ae:fa:63:a1:61:18:99:76:89:de:37:de:
7d:53:51:96:7e:1f:11:05:58:49:18:22:55:f2:9a:
bf:79:c3:2d:ab:05:74:76:69:64:34:e9:2f:7f:59:
44:ea:b4:aa:1a:14:16:4a:a1:7c:87:90:03:39:eb:
a0:81:72:51:d6:ff:c3:5e:e5:65:b2:f4:95:2a:1c:
ab:a5:b8:30:26:27:68:b2:be:0c:57:e2:f8:e6:1f:
94:02:2c:07:ab:4b:5b:ae:73:1d:31:e5:6f:3a:0a:
46:cf:32:63:dd:70:e9:d7:c9:15:26:35:25:00:c7:
01:d8:6c:95:d9:32:68:5f:8f:02:9e:9b:9b:48:fe:
77:2a:89:51:29:2b:5f:fc:bb:9c:86:1e:86:69:4b:
0f:8a:c2:2f:1f:bc:96:ab:f1:b9:d9:1f:e6:a2:2c:
4c:87:46:b6:ef:5f:6c:79:70:51:76:a7:df:36:ed:
1d:0a:3f:b0:22:06:e5:b2:0d:a9:69:66:34:a9:a9:
cd:84:0c:4f:0e:a4:27:fb:e1:bb:a0:c3:6c:4f:1b:
3d:71:f4:7e:8f:dc:2f:49:68:e5:c9:da:c7:aa:83:
5b:f9:f8:ba:60:6d:c5:72:38:3f:dd:30:6b:8a:09:
ed:6d:55:21:18:d1:38:3b:df:e0:23:03:cf:84:27:
bb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8D:92:53:4A:81:79:59:ED:26:B5:96:BE:F8:1B:30:30:48:15:90
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/542SU0qBeVntJrWWvvgbMDBIFZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ab4::/48
Signature Algorithm: sha256WithRSAEncryption
8d:19:0a:b0:0a:74:0c:e8:ea:78:af:5c:0f:e7:6f:89:83:6f:
8c:f6:ef:8d:01:03:bc:c4:87:0b:9a:9f:9e:46:b5:55:92:be:
e8:f4:df:dd:d3:08:23:6f:e7:59:b2:d4:a9:3c:c2:22:8c:f3:
90:ca:28:0d:28:f2:0c:a5:aa:47:27:6f:09:89:32:28:fe:db:
8d:55:4b:aa:69:5f:98:75:b3:f4:75:ef:7f:e6:c2:fd:1b:50:
b2:36:82:ac:42:f8:b1:0a:67:eb:40:3f:f6:ed:20:b9:bb:3b:
13:f8:18:da:09:fd:1e:16:7e:43:97:17:96:9e:df:45:40:b8:
48:6a:c9:55:22:0f:08:3f:7e:c5:2e:bc:8f:62:f1:9f:04:bb:
f5:4c:31:e3:17:20:b2:81:43:ac:f3:67:f9:78:78:9e:a3:a1:
82:b2:c9:d7:40:d2:14:e2:1f:f3:8a:c0:d8:7c:cd:6e:1d:45:
72:53:f3:6a:8f:db:9b:c3:02:ef:3a:00:44:18:6a:7d:0a:11:
ce:1c:8e:c9:03:69:43:20:4c:41:58:00:be:f3:dd:62:55:e4:
54:52:05:3d:4b:c4:6d:df:23:3e:6a:62:c4:81:ab:75:88:70:
36:31:ef:b8:03:1e:5d:d9:62:d4:4b:d3:fb:b5:c7:41:ca:a0:
3f:60:32:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-ams.rpki-client.org