Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/4a9224-37d4-4b23-a427-271362e3f25a/1/jdoYta3jUCz6d2YajQuEyB9Jpy8.roa
File: jdoYta3jUCz6d2YajQuEyB9Jpy8.roa (raw, json)
Hash identifier: QMSGisW5ND4UOWxHqXr4DYt+aIY7nketrco3HRLba3Y=
Subject key identifier: 8D:DA:18:B5:AD:E3:50:2C:FA:77:66:1A:8D:0B:84:C8:1F:49:A7:2F
Certificate issuer: /CN=ef31a054fc9fb4b147e8a98bda7e71c81af0bcfd
Certificate serial: 1213FBDB
Authority key identifier: EF:31:A0:54:FC:9F:B4:B1:47:E8:A9:8B:DA:7E:71:C8:1A:F0:BC:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7zGgVPyftLFH6KmL2n5xyBrwvP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/4a9224-37d4-4b23-a427-271362e3f25a/1/jdoYta3jUCz6d2YajQuEyB9Jpy8.roa
Signing time: Sat 01 Jan 2022 15:58:12 +0000
ROA not before: Sat 01 Jan 2022 15:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31451
IP address blocks: 2001:67c:1550::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 303299547 (0x1213fbdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef31a054fc9fb4b147e8a98bda7e71c81af0bcfd
Validity
Not Before: Jan 1 15:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dda18b5ade3502cfa77661a8d0b84c81f49a72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c0:2a:8c:0b:26:c2:31:93:16:3d:9a:25:a4:
c5:b0:1e:39:f8:7e:64:e0:94:bf:9b:16:d1:dc:2d:
7b:1d:ad:97:88:90:e0:50:8e:02:fb:e4:7a:81:80:
7c:5c:a7:9b:f8:1a:1a:12:4f:69:79:8a:c9:da:c0:
e0:92:24:da:e3:af:77:46:19:7a:f7:de:f0:70:d1:
20:ab:57:77:a8:c1:b1:d0:77:3e:a4:32:83:1b:30:
0c:df:37:ea:07:fd:58:3e:c3:af:cf:80:0d:c6:e6:
9e:65:ac:34:bd:a1:65:f6:8a:86:0c:3e:32:2d:d4:
a6:d4:9d:8b:5a:8b:69:23:bb:9b:0f:09:d4:5a:00:
ab:a2:de:a4:ee:69:fe:38:ab:b5:30:a5:06:e0:8a:
0b:cc:a7:00:b5:f0:07:5d:49:98:ea:d5:7e:92:40:
1d:4c:52:fe:29:01:50:5e:af:d7:28:ea:e3:3e:cd:
4e:42:99:55:17:5a:3e:81:fb:42:69:e9:77:da:5c:
b7:32:32:08:06:aa:58:4f:57:15:4b:14:fc:93:ee:
b0:76:4b:0f:a4:09:72:9d:b9:61:96:c8:63:7d:0f:
99:6f:32:03:ca:6f:dd:30:5e:58:c2:4a:ed:ae:b0:
fa:f5:df:e8:64:23:88:f2:6b:4d:61:3b:12:e3:16:
be:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DA:18:B5:AD:E3:50:2C:FA:77:66:1A:8D:0B:84:C8:1F:49:A7:2F
X509v3 Authority Key Identifier:
keyid:EF:31:A0:54:FC:9F:B4:B1:47:E8:A9:8B:DA:7E:71:C8:1A:F0:BC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7zGgVPyftLFH6KmL2n5xyBrwvP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4a9224-37d4-4b23-a427-271362e3f25a/1/jdoYta3jUCz6d2YajQuEyB9Jpy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4a9224-37d4-4b23-a427-271362e3f25a/1/7zGgVPyftLFH6KmL2n5xyBrwvP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1550::/48
Signature Algorithm: sha256WithRSAEncryption
35:d2:5d:15:9b:2e:36:18:33:f8:1c:78:cc:d7:5c:ce:80:82:
1b:67:e6:cb:c3:4d:ef:67:e0:e7:df:51:b4:29:43:c7:14:fe:
c5:88:e1:f3:3c:ab:c7:a7:33:92:c3:b2:a5:4f:dc:85:b6:9f:
dd:da:92:a0:f2:e8:f5:59:f0:69:ea:66:a8:dc:ab:41:68:7e:
05:05:51:02:15:f5:7a:d0:5e:5c:57:db:aa:b4:de:b6:4d:fc:
ad:8d:e1:3d:3d:ff:98:6d:2b:3e:ea:34:f0:16:dd:18:3a:93:
77:26:37:1c:32:e2:0b:0e:4b:c7:a2:9e:3a:67:4b:d8:27:18:
39:ed:b5:00:f8:76:87:f4:38:67:d1:3d:a6:a0:9b:8b:ff:98:
69:e1:1e:26:42:cb:84:43:b9:bb:e0:a2:7d:82:02:06:f5:02:
5e:d7:63:4e:f7:fb:f3:24:ac:c5:e5:34:fe:0e:95:93:d2:d1:
8a:ca:6f:2e:6f:8a:86:a0:0d:52:4c:fc:4a:c2:0c:33:6f:f4:
18:c4:45:0c:bd:47:4e:ab:59:b7:7e:a7:e0:67:7d:70:cc:1c:
ae:a9:97:fe:47:9f:da:37:65:22:17:40:fe:80:f5:2f:b3:00:
94:5a:cf:54:ab:31:52:d5:6a:be:ec:d3:e7:11:ec:c8:72:5d:
7d:ec:ff:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:52 2023 by rpki-client on console-fra.rpki-client.org