Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7cf42e-2ae8-4f13-a0c4-4e1fb76c847a/1/7kTr0AnH9vhhmW-d_mvt8BPhk4Y.roa
File: 7kTr0AnH9vhhmW-d_mvt8BPhk4Y.roa (raw, json)
Hash identifier: QNOouYAYeRrQ02wlIIkS9VNso0XOObls7UmMC5eYyJY=
Subject key identifier: EE:44:EB:D0:09:C7:F6:F8:61:99:6F:9D:FE:6B:ED:F0:13:E1:93:86
Certificate issuer: /CN=4a6376ce92087e4c7ce536686537769e2cc34059
Certificate serial: 08F3EF27
Authority key identifier: 4A:63:76:CE:92:08:7E:4C:7C:E5:36:68:65:37:76:9E:2C:C3:40:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmN2zpIIfkx85TZoZTd2nizDQFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7cf42e-2ae8-4f13-a0c4-4e1fb76c847a/1/7kTr0AnH9vhhmW-d_mvt8BPhk4Y.roa
Signing time: Sat 01 Jan 2022 06:53:44 +0000
ROA not before: Sat 01 Jan 2022 06:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12843
IP address blocks: 2001:678:490::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150204199 (0x8f3ef27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6376ce92087e4c7ce536686537769e2cc34059
Validity
Not Before: Jan 1 06:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee44ebd009c7f6f861996f9dfe6bedf013e19386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ae:4b:86:b4:86:bc:67:03:52:38:41:33:3d:
1f:3e:31:9b:13:68:07:df:06:8d:ef:da:63:dd:cd:
23:9a:14:f4:15:d5:ab:3e:a3:13:7d:66:49:3a:63:
5a:b6:3b:c9:92:7a:2b:c1:15:32:45:13:6a:8a:b5:
d0:fc:58:61:69:fa:c6:cb:57:c9:ef:1a:ce:5e:c1:
af:58:69:af:62:7d:b2:d5:91:e9:f1:59:98:f2:bb:
8d:79:28:00:06:cc:4d:35:5d:b4:b2:56:20:8c:24:
e1:7c:cd:0d:9c:4b:54:db:74:08:55:27:cc:2a:4c:
d9:e6:0e:eb:95:b4:2a:d7:de:85:b2:b9:a5:05:da:
fe:26:f9:01:ac:fa:2c:f7:02:73:1a:ae:fa:65:06:
62:ae:ba:05:e1:bd:29:4c:79:0f:48:aa:e9:9b:f7:
75:ea:04:c0:64:f3:46:53:2f:0a:c7:23:d5:33:74:
5d:1b:69:1d:fd:f0:ca:2f:3c:b2:8c:cf:a9:ca:ca:
54:36:1e:59:f2:da:92:4d:13:3e:e4:33:29:7a:b1:
37:60:75:17:3f:16:75:9f:a5:9b:00:c3:2b:66:03:
16:e6:d5:d9:a6:3d:85:8c:6e:2c:af:f9:d2:ba:e1:
57:48:3e:01:ba:08:79:2f:ae:73:fb:a8:b5:e4:16:
b7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:44:EB:D0:09:C7:F6:F8:61:99:6F:9D:FE:6B:ED:F0:13:E1:93:86
X509v3 Authority Key Identifier:
keyid:4A:63:76:CE:92:08:7E:4C:7C:E5:36:68:65:37:76:9E:2C:C3:40:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmN2zpIIfkx85TZoZTd2nizDQFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7cf42e-2ae8-4f13-a0c4-4e1fb76c847a/1/7kTr0AnH9vhhmW-d_mvt8BPhk4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7cf42e-2ae8-4f13-a0c4-4e1fb76c847a/1/SmN2zpIIfkx85TZoZTd2nizDQFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:490::/48
Signature Algorithm: sha256WithRSAEncryption
3c:91:1e:d5:bf:e4:02:c1:a6:7b:f8:41:cd:1a:55:ad:ee:b2:
a4:1d:ca:8e:dc:08:12:ee:f1:e2:fd:c9:c6:46:12:a6:7d:e2:
4a:53:f3:ea:c7:0c:c2:66:a7:3f:2f:78:62:71:c6:e2:b9:b4:
ef:3a:d6:9f:20:ec:a0:83:71:d6:18:cd:44:59:9e:25:f0:1c:
05:26:3a:40:9a:fc:47:53:01:75:e1:dd:d6:86:ad:4a:a7:3c:
79:1c:d1:92:0e:d6:e8:7a:f0:2f:c9:c6:2d:2d:97:5f:e0:6d:
de:6e:02:4d:8a:1f:5d:18:7d:f2:4b:27:c7:01:bf:50:3f:f7:
9d:5f:9d:9e:d2:03:76:92:f2:b1:f7:66:16:91:be:e2:2b:c6:
6b:d9:e1:e7:a1:a2:93:2a:a2:53:34:c4:43:a9:74:67:29:1e:
0d:47:f2:68:e7:73:a2:cb:d1:80:f3:0d:cc:c9:6f:f2:db:0a:
a4:ee:3f:4e:1b:c9:20:f4:ea:d4:46:d2:6d:57:de:41:6d:7d:
aa:84:45:c3:af:21:c8:91:d5:e3:e3:2f:1a:e8:e0:63:0d:53:
63:a2:8b:60:34:70:74:9f:98:59:ad:29:8f:9c:ed:8f:d5:72:
83:3e:90:50:25:da:d3:e7:68:c5:e3:a5:a1:11:91:43:ec:c1:
0b:70:67:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org