Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/EnqiuYbMx56bQbJBvGBEtdsQprI.roa
File: EnqiuYbMx56bQbJBvGBEtdsQprI.roa (raw, json)
Hash identifier: lAjioRNJlZjZ9Eiu8kMcM4GRmzHKI8487jGTFcZyjQM=
Subject key identifier: 12:7A:A2:B9:86:CC:C7:9E:9B:41:B2:41:BC:60:44:B5:DB:10:A6:B2
Certificate issuer: /CN=0ba068483acbc96a31e28bcda54bbeafe3482d19
Certificate serial: 0BFFAC5A
Authority key identifier: 0B:A0:68:48:3A:CB:C9:6A:31:E2:8B:CD:A5:4B:BE:AF:E3:48:2D:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6BoSDrLyWox4ovNpUu-r-NILRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/EnqiuYbMx56bQbJBvGBEtdsQprI.roa
Signing time: Sat 01 Jan 2022 10:53:49 +0000
ROA not before: Sat 01 Jan 2022 10:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204345
IP address blocks: 2001:678:634::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201305178 (0xbffac5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ba068483acbc96a31e28bcda54bbeafe3482d19
Validity
Not Before: Jan 1 10:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=127aa2b986ccc79e9b41b241bc6044b5db10a6b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:85:28:c7:99:0c:01:54:35:f2:a9:e5:4d:86:
d0:ad:7e:18:39:1b:37:f9:ba:7a:5f:b6:f7:fc:03:
12:b5:73:87:e5:7d:d7:2b:75:a1:d4:9d:3f:c6:a4:
b0:3e:19:db:f5:2a:c8:ab:c8:70:bd:42:4d:2c:1f:
02:25:d5:53:8c:ea:54:31:2a:96:96:ac:f7:f4:42:
ea:9e:5f:fd:c6:28:f3:19:4b:c8:b4:00:33:8f:3a:
5d:d7:ed:26:2b:0f:4e:46:09:e2:f5:c6:51:65:79:
02:5f:16:26:53:5b:22:4b:96:da:01:32:4c:4e:d8:
df:c6:c4:29:68:1b:a2:98:5d:1e:0f:c9:3e:45:fa:
b6:d2:12:de:a9:dd:d0:92:d2:e4:3f:33:57:d6:ef:
2a:e5:b2:7f:b1:94:7a:ac:39:1c:1a:20:e2:05:bc:
58:7e:0e:ff:2b:59:d3:cc:15:8a:be:04:d7:15:72:
c3:37:3a:7f:87:48:0d:7a:9f:94:ab:97:fa:1a:38:
dc:72:ba:4d:ed:2b:3c:1a:f7:a6:a7:a0:29:06:e6:
60:37:53:37:42:26:f8:43:16:6e:7e:10:09:c5:88:
f4:ac:32:62:d0:89:8e:1e:5a:d4:ce:65:9a:a9:12:
19:00:0e:08:ab:de:3d:6e:a9:ad:df:fa:a3:a3:73:
58:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7A:A2:B9:86:CC:C7:9E:9B:41:B2:41:BC:60:44:B5:DB:10:A6:B2
X509v3 Authority Key Identifier:
keyid:0B:A0:68:48:3A:CB:C9:6A:31:E2:8B:CD:A5:4B:BE:AF:E3:48:2D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6BoSDrLyWox4ovNpUu-r-NILRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/EnqiuYbMx56bQbJBvGBEtdsQprI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/C6BoSDrLyWox4ovNpUu-r-NILRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:634::/48
Signature Algorithm: sha256WithRSAEncryption
92:1f:c8:84:3a:c0:dc:95:98:44:38:76:c3:b3:b0:28:2e:95:
6f:6e:1d:b4:ae:b6:ad:c2:6d:d9:fe:12:de:17:15:62:1f:a5:
4c:de:94:b1:27:ab:a0:34:a1:d3:4f:77:c8:e4:b3:57:b0:d8:
8f:23:6c:2e:3e:ef:d1:34:a2:4f:ff:5a:76:ee:27:22:bb:86:
3b:b0:e2:74:b4:df:f2:ae:d5:ca:be:d0:03:45:bf:d8:8f:03:
26:76:de:6b:1d:9e:66:7f:71:50:62:e8:d4:a1:fa:54:fb:e7:
86:d3:66:ca:e7:87:75:73:a9:ea:7b:37:d1:9f:10:71:86:47:
fa:a5:71:05:f7:11:ba:4a:03:3f:1b:2c:87:df:63:a5:bd:c4:
bc:19:bb:93:f9:9e:df:fe:74:ff:be:b7:85:b8:55:cc:29:16:
71:48:65:70:48:65:10:dc:15:b1:f7:c3:7e:f2:ba:f7:63:47:
d8:5e:c6:48:1c:7b:c4:8d:82:35:c6:b5:29:8a:8d:29:97:b1:
f0:9e:36:55:e0:a3:a0:6c:bb:ea:a8:90:41:5f:24:bb:60:88:
bd:42:bf:eb:c1:ce:9a:5f:25:93:68:eb:5a:33:55:7b:59:b2:
e3:6e:c9:f4:20:dc:44:c7:b6:cb:5a:e6:06:d9:6b:e1:c6:73:
30:b0:96:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:39 2024 by rpki-client on console-ams.rpki-client.org