Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/M49kzzVVd5RcCzrWsSlUMMAb0wA.roa
File: M49kzzVVd5RcCzrWsSlUMMAb0wA.roa (raw, json)
Hash identifier: z4be89Po1hgNP2MuPrP4gueXzKr5DENk9vvWRfB1dng=
Subject key identifier: 33:8F:64:CF:35:55:77:94:5C:0B:3A:D6:B1:29:54:30:C0:1B:D3:00
Certificate issuer: /CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Certificate serial: 07AB5523
Authority key identifier: 4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/M49kzzVVd5RcCzrWsSlUMMAb0wA.roa
Signing time: Fri 18 Mar 2022 13:03:24 +0000
ROA not before: Fri 18 Mar 2022 13:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212123
IP address blocks: 2001:678:c6c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128668963 (0x7ab5523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Validity
Not Before: Mar 18 13:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=338f64cf355577945c0b3ad6b1295430c01bd300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:14:2e:d0:8f:df:9b:79:16:27:25:fc:ad:79:
76:e9:ae:12:9a:69:31:b6:3b:4a:39:63:6d:3d:9a:
f9:bf:03:33:19:53:4f:25:6b:4f:67:bf:49:69:34:
18:4b:60:f6:80:82:0f:5b:55:85:92:ce:56:87:97:
99:78:d4:f5:09:7c:aa:94:c6:9a:c5:00:de:71:8f:
78:3a:01:1e:f8:79:64:89:8f:27:a0:7e:0e:d1:09:
ca:39:b7:b0:e7:64:1a:43:ca:20:8b:94:90:36:ce:
3f:70:5e:11:b5:68:2b:87:b8:b6:8e:8f:a2:b9:dc:
1f:41:87:69:b0:b9:f0:4c:06:ce:7d:b4:2e:37:a6:
9a:5e:e1:1f:ba:5f:b0:85:55:f8:5d:73:28:8b:2c:
06:ae:0b:17:fc:41:ce:99:d7:e0:ef:cb:c9:56:17:
0c:a3:db:69:a3:59:db:50:48:4a:04:38:a2:a9:7d:
01:6d:3f:96:5a:4f:70:ea:81:04:f3:c0:0f:46:e3:
eb:e8:ca:a7:c3:f2:5b:53:9b:20:7e:f8:18:1a:f5:
61:ff:64:06:50:d6:54:73:10:5d:65:3a:4b:00:88:
a0:a7:a2:49:e9:43:22:1b:43:c1:a0:cc:4c:16:85:
d1:0f:ee:e9:53:3a:35:e5:be:0f:41:d6:5c:d7:fb:
49:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:8F:64:CF:35:55:77:94:5C:0B:3A:D6:B1:29:54:30:C0:1B:D3:00
X509v3 Authority Key Identifier:
keyid:4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/M49kzzVVd5RcCzrWsSlUMMAb0wA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c6c::/48
Signature Algorithm: sha256WithRSAEncryption
72:7b:da:55:99:99:a4:84:5a:4a:e8:42:f1:6b:15:7e:76:9a:
40:e9:18:66:4f:9d:e8:86:34:7b:6b:af:73:ff:f4:6e:f3:f3:
fe:08:9f:32:1e:0d:ce:36:fb:95:36:bd:4c:5f:8b:2e:00:ec:
30:f0:c8:de:71:de:36:d3:0f:c6:13:02:e5:df:9b:c5:d4:6c:
5b:3f:72:4f:51:09:20:55:d8:60:dd:55:73:a5:7f:c6:12:7f:
2d:eb:81:91:e9:0a:a2:37:1e:85:96:28:f7:51:a0:37:b3:ed:
4f:c4:b4:26:61:9a:4f:ca:7c:4c:1c:1c:1a:49:49:ec:bb:fb:
63:58:47:74:3d:44:b6:c4:db:e4:3b:7a:9a:f4:dd:03:5d:61:
96:00:85:88:f0:c9:b8:68:e5:c2:92:27:8d:c2:05:57:34:93:
75:4b:0a:22:a1:d3:7d:6c:b5:22:34:ee:21:e2:36:13:5f:48:
9b:ad:f9:50:d2:b8:b7:34:50:64:4f:63:3c:f0:ab:7c:b2:73:
67:ff:30:09:2a:4a:d7:83:20:41:9d:34:7e:48:44:10:34:e4:
b9:29:d5:0b:e4:48:8b:78:50:70:cd:1a:38:c6:2b:dd:78:ab:
51:db:a1:19:36:21:3c:6a:e0:71:fa:04:85:0b:ba:3d:70:00:
d8:b6:a0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:18 2024 by rpki-client on console-fra.rpki-client.org