Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/p1gmZeaL4qpOgdWXHLXeIpF8GA8.roa
File: p1gmZeaL4qpOgdWXHLXeIpF8GA8.roa (raw, json)
Hash identifier: b5F06budtZcZDZoMLY1LiL/s5fl+Ank+j9SwbJXoMjE=
Subject key identifier: A7:58:26:65:E6:8B:E2:AA:4E:81:D5:97:1C:B5:DE:22:91:7C:18:0F
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0E2AFC34
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/p1gmZeaL4qpOgdWXHLXeIpF8GA8.roa
Signing time: Mon 16 May 2022 19:15:29 +0000
ROA not before: Mon 16 May 2022 19:15:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64487
IP address blocks: 2a0d:2406:2000::/39 maxlen: 39
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237698100 (0xe2afc34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: May 16 19:15:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7582665e68be2aa4e81d5971cb5de22917c180f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:42:ea:29:dd:58:d5:83:28:6b:07:71:b8:08:
0d:70:74:09:a6:f7:0e:2b:d8:6f:60:44:fd:1d:96:
9d:ca:10:cd:ad:ca:df:57:82:be:fd:f3:cd:c6:29:
e0:66:1f:33:dc:6c:55:d3:ba:fb:51:22:33:d8:b1:
21:08:10:42:fd:be:d8:fe:94:12:43:5c:3e:9f:33:
71:0c:02:7b:5e:70:76:ff:8e:b0:c2:09:2f:5f:0e:
0b:af:7a:ed:c5:0d:fa:73:26:ba:13:b2:4f:d5:9d:
34:41:21:e6:73:1c:91:c9:e8:1e:ef:75:ca:79:2a:
f8:91:4f:d4:3d:c7:31:ac:9e:97:7a:d6:cb:67:29:
f4:d2:48:b2:3f:a7:ba:0e:18:50:ba:04:ff:19:ef:
41:3e:ea:f7:bd:0c:39:35:ae:f3:34:7a:43:93:d8:
1c:bc:96:34:c8:43:d6:5d:03:be:b9:c3:53:37:19:
2b:fb:e0:32:32:e2:7f:c6:66:f9:0a:d9:1a:b0:d6:
14:d6:3b:fb:3e:be:56:c8:52:37:1d:0c:99:23:26:
93:75:d0:e2:f0:c2:dd:1c:81:8d:68:4a:3c:08:d8:
e3:5e:87:ed:8c:b3:66:25:16:df:8b:5a:f2:5b:6e:
e3:d8:9b:3d:af:6d:69:e7:f3:bb:84:8c:14:5b:61:
47:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:58:26:65:E6:8B:E2:AA:4E:81:D5:97:1C:B5:DE:22:91:7C:18:0F
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/p1gmZeaL4qpOgdWXHLXeIpF8GA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2406:2000::/39
Signature Algorithm: sha256WithRSAEncryption
82:52:ad:bd:11:23:17:30:cc:43:2a:a1:04:b8:11:a3:c3:ab:
63:11:7b:0f:ae:4f:ea:c7:11:6b:99:70:45:c9:8d:79:44:10:
d5:95:2e:85:eb:82:f1:f2:28:d8:61:70:f0:b2:ff:75:25:97:
b5:ee:f8:3e:55:94:ff:d4:e7:52:ca:1a:cc:db:64:b6:34:34:
ff:4e:88:7c:eb:d1:3d:03:4e:03:52:5c:a6:ef:89:95:f3:33:
76:89:03:66:fc:ac:27:ea:74:72:8c:ae:46:7b:e0:a5:dc:43:
8f:1b:f2:1a:c7:93:1a:90:84:98:9d:b6:1d:59:d8:f7:83:2f:
7b:dc:35:08:c1:39:ae:92:87:4f:b9:90:15:da:bc:ea:58:7a:
de:d5:62:5d:0c:28:44:8a:1e:75:21:2e:32:ce:48:e5:75:b1:
dc:a0:2e:ae:37:21:29:72:8e:87:13:c1:ec:00:1b:22:f9:64:
06:d0:74:46:9a:4f:e0:cb:a4:0f:b3:ec:68:b5:e2:ef:d1:4b:
06:33:4f:9b:0b:1b:e0:38:32:d7:cb:17:ed:da:9c:95:20:d0:
3e:62:50:d8:ab:95:8b:f4:74:01:39:1f:b3:83:27:be:27:4c:
b2:10:c0:2d:0e:cd:92:fe:3a:f6:7b:19:c8:e1:ae:39:c1:f9:
73:82:60:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:00 2024 by rpki-client on console-ams.rpki-client.org