Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/3FQ1J9WWs7uuQ0KuoILCUdYVQBo.roa
File: 3FQ1J9WWs7uuQ0KuoILCUdYVQBo.roa (raw, json)
Hash identifier: GvvpLaabvHBKcVNE67HhsFn5m9utLUPu8s/McY7juFI=
Subject key identifier: DC:54:35:27:D5:96:B3:BB:AE:43:42:AE:A0:82:C2:51:D6:15:40:1A
Certificate issuer: /CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Certificate serial: 07145896
Authority key identifier: 4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/3FQ1J9WWs7uuQ0KuoILCUdYVQBo.roa
Signing time: Mon 10 Jan 2022 13:32:34 +0000
ROA not before: Mon 10 Jan 2022 13:32:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212123
IP address blocks: 2001:67c:2ea8::/48 maxlen: 48
2001:67c:2908::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118773910 (0x7145896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Validity
Not Before: Jan 10 13:32:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc543527d596b3bbae4342aea082c251d615401a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5d:ff:6a:aa:42:90:84:0f:2a:18:5e:4f:22:
3e:46:56:0b:df:87:43:34:be:b4:7c:1c:48:06:c8:
05:81:dd:01:32:bd:6c:12:13:9b:4c:d1:70:bb:aa:
86:5d:45:95:7f:1f:1f:f8:76:ec:da:5a:d6:4d:96:
c0:97:98:77:85:b0:6c:08:61:5c:f7:89:be:07:56:
70:30:62:fb:35:5a:4a:89:46:03:a8:3c:35:31:a8:
b4:d1:6a:4e:fd:e9:25:3b:82:05:38:82:ba:11:6b:
fa:e8:d4:4d:21:fc:27:82:06:29:60:3c:18:6b:f6:
9f:50:f5:12:de:f2:8d:ac:93:57:a8:45:b8:d2:dd:
6a:12:18:5a:01:17:50:a9:2b:31:e7:e9:54:48:f2:
dc:a9:f4:e2:f5:3c:bd:76:31:02:3a:a7:a0:20:f2:
7d:3e:69:12:bc:7e:a3:29:cc:ea:e2:a0:b0:c1:05:
e9:ff:52:07:49:d9:32:26:9a:62:fd:a3:f9:51:e4:
c5:6a:39:42:43:58:de:f7:74:ea:3e:d6:54:79:05:
81:f4:5d:ac:50:7d:23:67:0f:17:00:72:d9:33:c3:
04:a7:e1:94:b5:94:de:5b:0f:b6:99:d1:f4:54:13:
44:a5:c1:58:ae:27:ea:de:20:cb:e7:eb:c3:76:2d:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:54:35:27:D5:96:B3:BB:AE:43:42:AE:A0:82:C2:51:D6:15:40:1A
X509v3 Authority Key Identifier:
keyid:4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/3FQ1J9WWs7uuQ0KuoILCUdYVQBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2908::/48
2001:67c:2ea8::/48
Signature Algorithm: sha256WithRSAEncryption
79:6c:57:a8:9a:08:14:43:ca:01:b5:7b:86:38:d3:9b:cf:cd:
e8:53:d5:b7:af:62:73:6a:01:ad:4c:94:31:0d:b7:19:86:e6:
88:ea:4f:15:7c:b2:8b:45:3e:dd:e8:47:e3:e9:4b:c7:52:00:
12:93:5d:0e:32:00:56:c6:6d:dc:f3:ad:85:da:a2:0f:4d:f4:
f7:8d:3d:b8:be:fb:f1:20:a5:cf:57:c7:4a:d4:2e:dc:6e:14:
e8:b7:de:99:fe:41:e3:38:95:36:a5:bc:60:85:64:4e:fe:06:
bd:4b:e6:26:ef:57:25:7c:0c:2a:38:19:2a:fd:04:34:c5:24:
61:bb:64:82:90:f7:76:5e:36:fa:ad:92:a1:da:f9:cc:ac:47:
6f:1d:9f:1a:b8:64:8f:0b:c0:4c:32:c7:be:aa:07:e9:2a:8f:
7e:0e:08:47:7e:da:fc:28:39:05:9d:c0:28:ef:fa:ba:cd:0b:
a0:38:2f:4c:b1:19:e3:0d:bf:56:a5:3e:a3:b0:d6:96:98:f6:
5a:34:b5:48:ad:dc:a7:43:a1:36:65:35:0d:83:3d:52:ca:b9:
4e:c5:55:b0:9a:c0:c1:78:a0:3e:a1:38:44:11:87:d0:1b:2c:
9d:6f:a6:8e:ea:0d:f8:79:79:58:bd:3a:08:e5:ed:52:a0:6c:
29:e9:e5:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:42 2024 by rpki-client on console-ams.rpki-client.org