Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/UlNv5hOfEh7lNncRDue31lHdvb4.roa
File: UlNv5hOfEh7lNncRDue31lHdvb4.roa (raw, json)
Hash identifier: tfX85iI9eDOXvYCoVpyW6x9QAQsKcGnVgHYSRTiNKCg=
Subject key identifier: 52:53:6F:E6:13:9F:12:1E:E5:36:77:11:0E:E7:B7:D6:51:DD:BD:BE
Certificate issuer: /CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Certificate serial: 073F63BF
Authority key identifier: 4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/UlNv5hOfEh7lNncRDue31lHdvb4.roa
Signing time: Mon 31 Jan 2022 08:16:21 +0000
ROA not before: Mon 31 Jan 2022 08:16:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212123
IP address blocks: 2001:678:c6c::/48 maxlen: 48
2001:678:c44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121594815 (0x73f63bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Validity
Not Before: Jan 31 08:16:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52536fe6139f121ee53677110ee7b7d651ddbdbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e4:a6:e3:71:74:48:ab:17:5c:2b:92:21:a7:
24:95:18:a3:40:71:31:5a:b4:35:1a:1e:83:b5:ba:
9d:4e:65:97:03:7b:53:ab:a2:7a:f6:f9:fa:f5:6e:
4b:04:af:23:05:7e:eb:7e:fa:87:bc:a9:5b:bf:61:
49:a2:6d:08:a1:53:2f:9e:6b:9c:d1:af:15:dc:cc:
3b:39:81:fd:ff:32:e3:0d:32:a8:f7:3b:5d:c3:df:
c6:67:f7:86:19:67:96:1b:8a:a7:a0:21:5c:52:18:
a7:a2:0d:c8:dc:ef:17:68:c4:ff:76:10:9b:d9:ee:
75:6e:dd:12:37:84:c4:79:7b:ec:54:a3:64:16:2d:
4a:8c:9a:a4:1a:8e:7b:2d:c0:cd:04:a1:0f:ff:6e:
a5:30:75:81:11:50:bd:ff:82:7b:30:f1:8e:5a:11:
70:1d:7c:ad:94:88:11:d8:b8:8e:ac:22:15:66:46:
78:18:d6:4e:a9:93:52:7d:4f:89:73:ba:ae:e9:4f:
bb:a4:bd:28:33:5f:14:2a:c7:6b:bf:30:2a:1a:85:
78:92:aa:95:e3:7b:9f:02:8a:12:ac:9a:e7:cc:ed:
99:1a:83:e6:de:7f:bf:fc:65:06:ac:1a:0e:b7:29:
6d:38:af:12:c7:b9:83:e5:a3:c5:51:18:95:e0:2b:
a9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:53:6F:E6:13:9F:12:1E:E5:36:77:11:0E:E7:B7:D6:51:DD:BD:BE
X509v3 Authority Key Identifier:
keyid:4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/UlNv5hOfEh7lNncRDue31lHdvb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c44::/48
2001:678:c6c::/48
Signature Algorithm: sha256WithRSAEncryption
83:3e:cc:19:ee:01:d3:79:b3:a2:54:18:e4:53:61:c1:06:84:
c4:d0:9d:72:dd:1f:be:0f:e7:63:7d:f8:91:d5:7a:85:0e:86:
a0:97:e7:7e:51:e2:7d:92:79:ae:8b:f5:31:57:80:61:65:59:
5b:58:88:3a:52:0e:e7:16:90:41:99:1a:24:cf:3a:80:e7:0e:
8d:0e:76:97:54:43:2d:86:f9:6d:02:cd:7c:ef:45:6f:09:14:
16:f3:3b:a1:50:c5:57:9f:32:00:77:e2:ff:d8:01:c7:4c:7d:
49:c3:8e:4b:d7:53:1e:d5:59:9f:bf:b8:42:b7:f7:09:e2:9c:
f0:d8:78:b0:e9:c1:e5:52:53:41:ca:5a:19:92:f3:75:14:a8:
fd:54:b8:f2:4e:f5:36:fa:2e:d6:fe:0c:78:7e:66:f8:26:aa:
72:02:d1:6c:70:f2:a7:0d:77:39:68:c3:92:5b:c0:e4:3c:61:
7c:ac:56:0d:a4:a7:16:b3:fd:51:32:0c:a8:f9:b0:0b:6e:56:
f0:d5:b3:74:5c:8d:ed:6f:01:c0:18:1f:02:90:a0:d4:ee:0e:
8b:08:cb:98:1f:67:ee:39:d6:c8:e8:90:03:19:cf:e0:ea:bc:
94:34:0f:86:3d:54:59:6e:d7:b8:6a:19:00:a9:23:bf:94:65:
6a:59:e9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:18 2024 by rpki-client on console-fra.rpki-client.org