Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/1a44b7-9c4b-40b9-b6ac-d6930c97e967/1/wekuQ6nSBkE6_rrSf7bVV0YLcew.roa
File: wekuQ6nSBkE6_rrSf7bVV0YLcew.roa (raw, json)
Hash identifier: QcqEt/x7VdNkvE1q0M8IpL1lu9P0+rZwEAndQhorU9o=
Subject key identifier: C1:E9:2E:43:A9:D2:06:41:3A:FE:BA:D2:7F:B6:D5:57:46:0B:71:EC
Certificate issuer: /CN=0ded20e5cfea0d796ab3f73b98cd24bef1c5cc9a
Certificate serial: 0705A370
Authority key identifier: 0D:ED:20:E5:CF:EA:0D:79:6A:B3:F7:3B:98:CD:24:BE:F1:C5:CC:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/De0g5c_qDXlqs_c7mM0kvvHFzJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/1a44b7-9c4b-40b9-b6ac-d6930c97e967/1/wekuQ6nSBkE6_rrSf7bVV0YLcew.roa
Signing time: Sat 01 Jan 2022 15:58:05 +0000
ROA not before: Sat 01 Jan 2022 15:58:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208113
IP address blocks: 2001:678:b24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117810032 (0x705a370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ded20e5cfea0d796ab3f73b98cd24bef1c5cc9a
Validity
Not Before: Jan 1 15:58:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1e92e43a9d206413afebad27fb6d557460b71ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:6d:a6:76:65:4b:d1:17:20:f6:60:5b:3e:
d7:64:61:ad:77:41:06:42:98:92:29:15:cf:4c:4a:
8f:9d:46:04:a9:85:84:1d:b7:d1:cd:00:40:74:b2:
cd:34:a7:62:9d:93:3d:83:2f:55:17:1d:30:0d:18:
40:3b:aa:25:d1:da:0d:78:1b:cf:3b:05:34:fc:08:
d4:ea:ad:d2:61:3d:ae:db:fd:4e:d0:93:73:82:c6:
e4:99:52:c8:a3:e9:7e:12:56:7d:c2:1a:f3:24:62:
2c:22:eb:57:e7:ae:f6:97:46:73:b0:cb:fa:54:e8:
6f:bd:70:52:76:fa:17:0d:d9:f1:27:5a:c2:ef:6a:
bd:58:d3:14:44:fd:52:74:07:3d:f3:fb:5c:77:27:
07:9c:f5:49:14:af:df:9d:3c:c0:0c:2c:9b:b6:c4:
d9:be:f5:1b:e1:a4:32:a6:f7:9b:39:99:03:98:07:
24:e4:13:e4:3d:8d:0e:61:b5:8d:9f:0f:0a:20:f0:
e4:83:06:8e:b6:c4:8c:06:bf:b0:dd:be:ff:98:38:
73:02:af:df:8d:a9:f8:c3:9f:37:65:a6:14:1a:b5:
c5:89:63:ca:a6:1d:77:6a:52:02:28:f0:09:f5:87:
4d:84:be:f3:14:21:df:e4:85:26:c9:ec:8b:5b:14:
27:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E9:2E:43:A9:D2:06:41:3A:FE:BA:D2:7F:B6:D5:57:46:0B:71:EC
X509v3 Authority Key Identifier:
keyid:0D:ED:20:E5:CF:EA:0D:79:6A:B3:F7:3B:98:CD:24:BE:F1:C5:CC:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/De0g5c_qDXlqs_c7mM0kvvHFzJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/1a44b7-9c4b-40b9-b6ac-d6930c97e967/1/wekuQ6nSBkE6_rrSf7bVV0YLcew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/1a44b7-9c4b-40b9-b6ac-d6930c97e967/1/De0g5c_qDXlqs_c7mM0kvvHFzJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b24::/48
Signature Algorithm: sha256WithRSAEncryption
35:77:fa:31:65:f4:9f:73:55:c9:e3:e8:83:26:b0:be:08:23:
27:df:52:d9:3a:51:da:48:82:42:99:ac:2b:ce:f5:89:14:53:
1c:7b:da:f0:ec:79:ee:ae:8e:3e:23:f3:f5:30:12:31:45:e3:
da:56:47:84:e1:5c:2e:df:32:f2:50:d2:4b:12:57:aa:94:d8:
54:bf:e5:79:cc:0d:f5:8a:9f:30:a0:20:e1:91:ca:f1:1a:92:
5f:d2:97:11:af:16:51:0e:4e:d8:7e:9a:4c:d9:fe:90:5c:af:
b7:92:03:24:a5:43:09:40:c4:ed:7d:7a:4b:f7:8f:04:80:14:
c1:92:71:b5:53:59:10:52:97:33:c5:5c:e4:23:5d:63:43:29:
67:e6:c7:d9:96:7d:51:8a:b2:98:84:ba:81:2d:21:c9:46:1c:
8d:24:d9:af:43:07:97:c8:3a:d3:13:a3:6e:26:1d:33:e5:64:
bf:ec:03:72:53:9c:9f:68:2b:80:70:1f:7e:6b:66:be:49:4b:
35:2d:a3:90:99:15:a0:8d:a8:e2:de:2d:ca:dd:7f:33:1a:cb:
be:91:d4:95:d7:af:f6:dd:a1:7e:41:b8:5c:7d:33:de:e8:ee:
ea:3f:6a:e9:d6:f5:2f:14:ca:2d:e2:e5:b0:4b:cd:bf:48:31:
80:ac:48:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:48 2023 by rpki-client on console-ams.rpki-client.org