Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/e4Bq_3g4ItMJ8WA2BF60RWPrBd4.roa
File: e4Bq_3g4ItMJ8WA2BF60RWPrBd4.roa (raw, json)
Hash identifier: XZ8gvLLMP50wGhSyQZBPoYjZnmSKSiwX4gY5FloZ8RM=
Subject key identifier: 7B:80:6A:FF:78:38:22:D3:09:F1:60:36:04:5E:B4:45:63:EB:05:DE
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0CF0F5A0
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/e4Bq_3g4ItMJ8WA2BF60RWPrBd4.roa
Signing time: Sat 01 Jan 2022 12:57:58 +0000
ROA not before: Sat 01 Jan 2022 12:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49133
IP address blocks: 2a0d:2406:babe::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217118112 (0xcf0f5a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Jan 1 12:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b806aff783822d309f16036045eb44563eb05de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:64:18:fd:2e:17:80:1b:a2:67:44:09:fc:fe:
08:2b:04:dc:9a:f7:b9:06:ef:40:99:ed:18:f3:2d:
8c:17:57:ef:bc:a1:34:91:ce:07:a9:12:a0:a8:0e:
cc:e6:94:b8:79:fb:f2:8a:61:ef:d3:b6:bc:f9:01:
b0:6e:d9:1e:ee:41:8c:90:15:60:25:b6:4c:7a:ac:
d3:ee:50:d8:3f:c4:84:30:0c:44:cd:5d:d4:a7:43:
95:b5:6d:c6:54:0e:0d:70:2f:7c:5b:3f:34:18:cb:
a8:fa:7e:b8:e5:14:8c:fc:17:d9:37:6f:02:41:9a:
d0:a4:8d:54:8a:ca:fe:32:50:34:45:9e:33:d2:0f:
03:6b:87:31:ec:4f:3a:22:5b:93:63:27:d5:cc:d6:
9d:ec:b1:71:7c:79:d5:2a:24:d9:17:d5:8f:2d:3a:
f3:d7:9a:a0:7c:e8:0d:90:d2:f2:ef:ba:2c:8e:a5:
93:1a:17:da:ec:b4:07:19:6c:d7:66:d6:a6:49:81:
bc:8a:35:2b:42:83:49:2a:51:ef:38:d8:a0:17:e0:
26:71:25:31:61:e9:b2:c7:ed:bb:cf:9a:f9:20:58:
4a:af:68:42:2b:91:17:2e:2d:9f:1c:6f:46:5f:25:
bb:23:74:69:5d:2b:cf:75:ba:c2:c0:3b:0a:c5:5d:
99:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:80:6A:FF:78:38:22:D3:09:F1:60:36:04:5E:B4:45:63:EB:05:DE
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/e4Bq_3g4ItMJ8WA2BF60RWPrBd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2406:babe::/48
Signature Algorithm: sha256WithRSAEncryption
45:c6:0c:57:7b:ad:42:4a:48:8b:60:5a:47:fd:cd:b1:19:7c:
3e:da:1e:a4:4f:f2:55:91:9e:44:79:bf:86:f0:b6:29:63:ca:
39:9b:eb:24:b2:8c:10:96:09:18:dd:29:fa:c7:4c:b8:c7:74:
90:31:eb:18:46:98:49:7d:8e:98:fb:bb:24:24:a5:e8:3c:44:
11:9f:87:6c:48:8f:52:c5:bb:ec:3b:a3:20:6e:c9:7a:50:ec:
09:43:d0:b6:d4:e8:db:58:7c:76:b3:3e:a0:65:07:79:32:7b:
4d:77:c2:32:c0:16:cb:6d:16:d4:47:5f:f7:63:02:cc:bf:d8:
ed:aa:2d:26:3f:fb:0d:41:07:30:a4:61:28:64:f5:23:a1:c3:
e5:67:16:34:2b:ee:2c:f3:6e:e2:a6:30:fc:be:f3:82:74:f4:
37:49:7c:5f:51:d2:0c:ce:01:7f:25:bd:7b:bd:5c:f6:59:dd:
59:35:76:59:3a:8d:60:d7:72:bc:6a:4e:20:36:5e:e9:6a:a1:
75:e9:2c:5e:9e:27:60:f0:cb:d6:fd:4d:0f:b2:bb:b1:82:57:
60:ce:25:1b:4d:d7:7e:59:01:26:c6:12:c7:dd:93:eb:69:e8:
f6:75:19:6f:3e:af:3b:4f:3d:2e:4e:50:2d:26:8c:4a:a5:d2:
14:7a:2f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:00 2024 by rpki-client on console-ams.rpki-client.org