Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/EgiY5CmCm-kVP-4rcb29hPXTmQM.roa
File: EgiY5CmCm-kVP-4rcb29hPXTmQM.roa (raw, json)
Hash identifier: o/JekUYlEH6C3XFPgntmdpESi9bjUP+Hs1+gqSwg5Bk=
Subject key identifier: 12:08:98:E4:29:82:9B:E9:15:3F:EE:2B:71:BD:BD:84:F5:D3:99:03
Certificate issuer: /CN=59f2470c03a0f0bad00846b0f67c7a232d557288
Certificate serial: 027DE523
Authority key identifier: 59:F2:47:0C:03:A0:F0:BA:D0:08:46:B0:F6:7C:7A:23:2D:55:72:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/EgiY5CmCm-kVP-4rcb29hPXTmQM.roa
Signing time: Sat 01 Jan 2022 03:58:10 +0000
ROA not before: Sat 01 Jan 2022 03:58:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211595
IP address blocks: 2001:678:f10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41805091 (0x27de523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59f2470c03a0f0bad00846b0f67c7a232d557288
Validity
Not Before: Jan 1 03:58:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=120898e429829be9153fee2b71bdbd84f5d39903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:01:34:2e:5d:ba:15:76:29:aa:3b:7f:f9:4e:
79:a7:44:f3:c1:d8:79:ba:64:e1:8a:29:7c:45:b4:
92:73:1f:0c:75:18:18:02:a5:10:57:5c:a9:15:7e:
ad:87:b3:99:19:00:b1:ce:8c:7e:2e:fe:f1:7f:c5:
62:f5:b2:01:d0:07:26:9c:79:d5:1b:44:bc:2e:18:
69:c7:0e:4c:95:04:d9:ec:05:ae:c7:4d:86:82:8b:
5e:ec:eb:34:17:a3:59:0b:e7:fe:b9:1e:82:7d:1b:
f1:20:d1:fd:14:4e:0c:76:f2:39:a8:71:f4:06:2e:
72:39:0d:0c:0f:24:e7:19:c9:93:75:c5:b4:e3:81:
42:95:ba:16:7e:9a:b1:a8:d5:c7:ba:97:e4:e7:c9:
42:52:5e:88:ab:44:6d:dd:8b:b7:73:d0:9f:90:7e:
0b:f6:1e:f5:21:81:bb:48:e4:10:fe:76:33:2a:3e:
cd:2d:04:5d:5d:ed:d2:41:8c:b0:d1:76:12:fe:7b:
1c:43:c9:c7:75:e3:20:ef:fb:28:b1:7c:b8:28:33:
72:c6:5e:c7:ea:2a:1c:46:2c:8b:e8:3d:04:96:5c:
c0:ff:27:9e:b9:5a:a4:4f:05:48:0c:4d:d3:55:fe:
d4:22:7a:56:a4:44:22:58:94:c4:15:0b:e1:10:c7:
ce:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:08:98:E4:29:82:9B:E9:15:3F:EE:2B:71:BD:BD:84:F5:D3:99:03
X509v3 Authority Key Identifier:
keyid:59:F2:47:0C:03:A0:F0:BA:D0:08:46:B0:F6:7C:7A:23:2D:55:72:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/EgiY5CmCm-kVP-4rcb29hPXTmQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f10::/48
Signature Algorithm: sha256WithRSAEncryption
06:0d:eb:45:a3:39:87:58:97:e3:db:9c:da:c9:ee:c5:ff:46:
6e:7a:ae:6a:1f:65:b8:10:13:f8:f8:3d:6a:fb:0f:c3:0c:77:
de:64:a5:74:e9:25:30:47:cc:26:88:bd:7d:ab:20:8c:45:1e:
9f:b0:f3:18:93:75:00:41:de:d8:98:c4:c2:b7:c3:c2:ff:03:
d1:a5:0a:52:b9:2a:04:89:d7:2c:6e:71:5c:c6:3f:59:ab:ec:
5d:6a:5a:54:a8:ac:01:8a:5c:e6:d3:bc:42:4c:cf:3c:22:db:
e0:f2:74:d3:fd:46:12:b3:e0:3c:b4:c2:6e:46:79:f3:5d:d4:
7a:09:76:db:05:2f:ec:d0:d9:21:82:b8:1a:ac:b0:e8:16:d7:
e0:3b:ca:91:ad:21:9c:aa:18:ee:ac:55:a9:11:29:40:82:c6:
4a:7f:79:a4:28:95:a6:f7:3f:52:3f:80:e1:b9:e0:39:5b:02:
7d:a0:4c:be:aa:66:94:fc:1e:ea:9a:49:86:9e:91:e0:89:92:
83:b0:9d:39:d8:28:03:81:82:6b:d5:ca:95:0d:69:8a:66:62:
fa:ea:da:45:37:23:c6:83:e1:19:ba:f8:c8:87:71:eb:fb:88:
46:7d:d5:20:e5:b2:76:4c:4d:22:7a:f5:78:de:77:62:78:09:
0a:fc:69:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:18 2024 by rpki-client on console-ams.rpki-client.org