Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/7-e1cEOdB_PNBXY_L9cxdr3zAbQ.roa
File: 7-e1cEOdB_PNBXY_L9cxdr3zAbQ.roa (raw, json)
Hash identifier: xWw95koNeIefFWaq2rFbnNTMNRBO7rmdECleLi5p2RY=
Subject key identifier: EF:E7:B5:70:43:9D:07:F3:CD:05:76:3F:2F:D7:31:76:BD:F3:01:B4
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01855D3F105745D7D207DC19EDE50086EF9A
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/7-e1cEOdB_PNBXY_L9cxdr3zAbQ.roa
Signing time: Thu 29 Dec 2022 09:38:11 +0000
ROA not before: Thu 29 Dec 2022 09:38:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57080
IP address blocks: 2a10:4646:1c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:3f:10:57:45:d7:d2:07:dc:19:ed:e5:00:86:ef:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Dec 29 09:38:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efe7b570439d07f3cd05763f2fd73176bdf301b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ea:fd:09:07:13:cf:5e:36:74:a9:b8:df:48:
81:20:fa:fe:d2:1c:af:b6:af:c5:cd:58:94:ac:b0:
5f:d2:48:09:a5:9b:b8:1a:3d:34:6d:a7:1c:06:0d:
4d:95:87:5c:ed:4f:47:08:92:fd:65:b1:c1:5b:7b:
53:9c:0f:35:45:c2:89:08:5a:e4:4e:9c:c6:d5:1d:
ff:17:a5:45:2b:e9:bd:5a:05:bb:7e:3a:46:07:98:
7e:6f:13:5a:b8:b6:4b:df:a8:f8:be:a0:a3:67:fc:
b2:65:75:8c:45:9d:1b:d2:23:97:51:0b:2e:9a:67:
f6:6c:cd:40:3a:28:f9:a7:78:17:51:e5:42:7a:6b:
55:01:41:c3:54:3e:c8:5c:b2:8d:0c:e0:21:f4:08:
de:ce:7e:06:96:ae:89:dd:92:b7:55:aa:79:9f:56:
9e:b3:83:7b:b2:be:0c:4e:d2:89:b2:4e:6a:1a:90:
08:4d:50:2c:59:7f:db:c8:ac:1c:b8:b5:3c:ee:ad:
e3:ee:97:11:cd:3e:d6:aa:27:1c:d0:ac:0d:82:af:
e4:b7:25:6b:a0:cd:6d:14:fe:50:97:4c:25:9a:81:
b3:a8:2d:be:d9:a1:c4:c0:9f:4b:88:52:d2:4c:83:
ce:d6:fd:6f:c6:a3:d5:90:cf:a5:94:92:f2:16:6e:
f5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E7:B5:70:43:9D:07:F3:CD:05:76:3F:2F:D7:31:76:BD:F3:01:B4
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/7-e1cEOdB_PNBXY_L9cxdr3zAbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:1c0::/48
Signature Algorithm: sha256WithRSAEncryption
7d:11:0e:10:e1:4c:67:54:69:5a:e1:c5:23:7f:e2:50:1d:23:
8a:38:4e:ee:94:6a:03:96:96:98:7c:91:99:7d:d1:fc:1a:99:
1f:65:a2:70:fc:2b:0d:8a:e9:e3:ff:c4:10:bd:1b:3a:55:ee:
5a:05:5e:fd:8f:af:a8:86:2f:5b:f9:3a:10:a7:25:79:bc:91:
6a:74:a6:72:75:74:9a:82:20:8e:94:8c:03:08:7a:7c:f3:66:
c8:f9:14:20:82:42:f0:4e:ed:81:c1:6f:a8:40:08:33:5b:95:
a3:7f:b0:97:31:28:d8:a8:f3:4e:0d:19:94:65:0a:25:97:df:
61:69:10:6d:b0:8d:14:1c:33:40:52:45:4c:bc:83:80:55:ec:
18:a5:b9:55:5e:5c:86:d9:96:4f:ad:20:51:a4:3d:0d:5b:55:
c4:0a:a5:a8:dd:ef:39:61:a3:3d:0a:d1:f7:53:6d:4b:a3:6b:
d9:86:d5:84:5e:d8:71:ba:9c:4a:78:1c:1e:3c:2c:3f:9c:81:
30:32:7c:69:c2:d1:4a:e7:5c:c0:67:d4:0a:12:17:f8:fb:53:
46:c3:2c:0f:7d:f8:0f:46:db:a3:a7:bf:03:89:a5:56:e3:32:
bd:c8:19:1e:cb:e2:73:41:5a:07:e3:6b:ce:d0:3e:77:5d:14:
50:57:ec:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org