Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/eVMeWzPhdlkOkor-OZ2Qt-BDSqY.roa
File: eVMeWzPhdlkOkor-OZ2Qt-BDSqY.roa (raw, json)
Hash identifier: sML/S5eWZKZD44wKyU4kjNSfzD62TnyWzFxgAW+nrtg=
Subject key identifier: 79:53:1E:5B:33:E1:76:59:0E:92:8A:FE:39:9D:90:B7:E0:43:4A:A6
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 01843D1188D043284E3062F66C6380B94BB2
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/eVMeWzPhdlkOkor-OZ2Qt-BDSqY.roa
Signing time: Thu 03 Nov 2022 10:37:50 +0000
ROA not before: Thu 03 Nov 2022 10:37:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141180
IP address blocks: 2a02:e0:3138::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3d:11:88:d0:43:28:4e:30:62:f6:6c:63:80:b9:4b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Nov 3 10:37:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79531e5b33e176590e928afe399d90b7e0434aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7e:7e:f9:28:1e:28:52:59:45:cd:df:d1:f1:
11:02:73:aa:51:15:9c:39:0f:4e:e7:95:91:96:6e:
b2:aa:17:e1:f4:11:78:42:15:1c:67:6b:9b:89:0c:
8a:20:dd:3d:53:a4:f3:10:8d:69:f0:ff:fa:f2:b4:
7f:28:e2:88:c8:66:e4:34:cc:79:66:3a:5e:0c:3a:
64:c1:4d:40:dd:f4:14:8a:a3:ca:ec:c8:86:62:8e:
55:7a:97:ae:b8:fe:46:3a:0a:dd:ff:b5:63:a1:56:
8c:c4:93:17:f0:48:66:23:25:d9:f0:68:87:b6:a1:
02:79:7c:1d:57:28:7b:41:44:f2:6c:93:b4:a8:f4:
65:69:57:f0:8a:a4:93:a1:4e:d3:ec:af:15:18:23:
0b:cd:e5:6b:15:e2:91:c8:2a:b5:4f:f6:73:b7:ad:
86:20:5a:ad:4c:81:21:f1:26:b3:cc:12:1a:ab:61:
7e:e7:fe:d3:4d:ec:2b:29:7b:0e:50:f3:41:61:6b:
6f:db:35:f5:f1:b4:88:a9:02:1f:f0:31:43:d2:ba:
37:f6:2d:0d:34:27:07:9b:60:f5:32:ed:8b:b3:5c:
32:4f:e7:4c:6b:22:b3:4e:69:88:a5:b4:85:ee:4d:
21:12:f4:6e:3b:cf:40:b6:e3:33:76:7a:12:3a:b3:
b4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:53:1E:5B:33:E1:76:59:0E:92:8A:FE:39:9D:90:B7:E0:43:4A:A6
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/eVMeWzPhdlkOkor-OZ2Qt-BDSqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e0:3138::/48
Signature Algorithm: sha256WithRSAEncryption
8d:4e:1d:3a:c0:a4:5f:e4:80:3e:a9:ff:3d:04:39:d7:80:aa:
8a:49:d6:9a:f0:52:0e:41:c7:93:bf:64:7c:e8:82:af:31:27:
a2:42:7f:63:c3:9c:6a:fe:82:2a:62:de:ed:7a:af:6b:e6:ac:
18:5d:e7:26:97:60:00:23:a6:63:d2:02:51:aa:1e:ac:3a:eb:
1c:62:f6:f5:82:50:e5:05:1e:b0:dc:52:f6:ff:c3:16:99:71:
28:92:72:df:48:80:21:05:41:eb:d2:38:1f:9a:8d:5e:fc:fb:
d6:66:a2:00:19:fd:f8:e3:18:76:f5:b5:41:13:92:21:1f:b0:
c1:ba:e1:df:ee:01:ec:4d:be:ee:b0:df:e4:0d:90:7e:50:9d:
07:08:f0:e1:b3:9f:ff:89:5c:ec:5c:f0:13:69:9e:3b:07:1c:
11:67:00:ed:9d:35:e1:78:50:46:36:b2:00:48:37:0a:ec:e2:
7c:37:d3:13:33:82:9c:d5:13:45:d4:a5:23:3d:c2:d1:f8:38:
51:d3:38:7d:b5:4a:e7:20:d4:57:ad:69:4e:3e:b1:33:84:43:
0a:f5:e3:ec:40:cd:3a:0b:9b:5a:9d:32:aa:44:a4:45:fa:13:
e1:de:3b:dc:10:cf:63:60:b6:2c:d3:70:b2:73:e0:84:19:04:
48:e9:ec:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org