Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/f7eDguGZtbuEUXws0STwwINURz4.roa
File: f7eDguGZtbuEUXws0STwwINURz4.roa (raw, json)
Hash identifier: r8OD9lT76u76juOwPDDyolN8YnykWKMULVf1j/nMbMs=
Subject key identifier: 7F:B7:83:82:E1:99:B5:BB:84:51:7C:2C:D1:24:F0:C0:83:54:47:3E
Certificate issuer: /CN=3cfaa40f6263e00d1291698576a617a5b5d68a9c
Certificate serial: 021893
Authority key identifier: 3C:FA:A4:0F:62:63:E0:0D:12:91:69:85:76:A6:17:A5:B5:D6:8A:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PPqkD2Jj4A0SkWmFdqYXpbXWipw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/f7eDguGZtbuEUXws0STwwINURz4.roa
Signing time: Fri 25 Mar 2022 15:52:47 +0000
ROA not before: Fri 25 Mar 2022 15:52:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212377
IP address blocks: 2001:67c:98c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137363 (0x21893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cfaa40f6263e00d1291698576a617a5b5d68a9c
Validity
Not Before: Mar 25 15:52:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fb78382e199b5bb84517c2cd124f0c08354473e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cf:8f:41:15:f5:c4:f1:b8:bf:72:9e:a4:c6:
38:74:d1:f9:13:ea:93:ae:fb:71:17:df:0e:ee:f7:
c4:2f:50:21:e3:43:98:89:0c:26:b5:ff:56:e2:78:
04:d5:c0:f4:22:72:f9:53:47:86:7e:53:52:99:3b:
c5:97:6f:b4:dd:2e:ad:62:3b:82:fd:7b:5d:e9:8b:
c9:b9:56:de:80:44:71:4e:9b:29:c5:4d:54:1b:f0:
70:c0:31:35:e7:ae:c3:a9:99:d5:d2:e8:6c:69:2a:
a4:15:af:1f:3f:4b:dd:2a:a4:ae:ba:47:58:20:33:
e0:4e:27:2d:ad:ef:71:4b:36:ca:62:7d:f2:08:54:
9e:eb:bf:57:d7:73:50:00:04:36:89:0c:a4:46:5d:
e3:71:23:43:09:2b:2f:d7:92:a2:bc:07:c7:dd:54:
e3:53:5c:46:a4:88:b6:74:91:da:4d:dc:2c:b5:89:
2f:f7:ff:b1:a4:f7:83:00:7f:46:76:3d:19:90:f1:
e3:a1:b8:28:07:e1:c9:07:5d:c2:7a:ea:e7:64:15:
32:d5:ab:67:81:d2:5a:c5:e2:a8:fe:ea:9c:f3:75:
8f:10:b8:d8:a4:5d:f0:ab:4c:6f:73:43:c7:8d:b5:
8a:e5:00:5c:df:fa:02:5d:fb:09:81:c7:4c:ac:12:
9c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B7:83:82:E1:99:B5:BB:84:51:7C:2C:D1:24:F0:C0:83:54:47:3E
X509v3 Authority Key Identifier:
keyid:3C:FA:A4:0F:62:63:E0:0D:12:91:69:85:76:A6:17:A5:B5:D6:8A:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PPqkD2Jj4A0SkWmFdqYXpbXWipw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/f7eDguGZtbuEUXws0STwwINURz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/PPqkD2Jj4A0SkWmFdqYXpbXWipw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:98c::/48
Signature Algorithm: sha256WithRSAEncryption
43:59:de:a4:21:b0:0b:cd:61:6e:8e:08:12:1e:e2:10:7f:25:
3f:38:85:11:e5:e9:f8:38:11:09:91:21:eb:95:62:d8:85:19:
81:07:cc:83:b0:b2:c8:c8:07:01:0c:08:e5:13:6a:32:cc:3a:
1b:9d:bb:87:35:59:f6:23:d9:ea:c1:7a:b1:fb:de:e3:a2:7e:
c6:c4:77:fc:f9:66:da:b7:bc:4d:32:26:50:21:9d:5a:5c:d4:
b3:dc:cb:ed:e7:03:a2:a2:b3:46:8a:10:7a:48:39:87:ad:c5:
3e:aa:ba:b1:aa:1e:12:a1:fc:b7:3c:cd:21:7d:98:c8:c8:a6:
22:db:29:c0:dd:a1:c4:1a:10:50:28:82:98:a1:cf:d4:8a:81:
c3:67:70:8a:b3:b2:b4:50:0a:4e:34:ba:df:1a:59:b5:4b:88:
78:4a:d9:ed:b2:be:52:de:94:cf:d3:91:6e:34:1a:b1:81:ef:
8f:78:6b:2f:83:99:91:8e:2e:d8:b4:b1:53:b9:94:33:b1:6c:
85:a2:b6:26:df:10:76:86:51:a9:ea:cf:49:1b:d8:3a:e0:21:
9b:98:92:a1:62:08:85:df:d4:c2:9d:b7:07:92:7e:bd:be:e9:
ab:f1:87:57:6c:f4:c9:f6:f9:71:76:a0:a8:c5:97:1d:2f:3c:
e4:30:e8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:15 2024 by rpki-client on console-fra.rpki-client.org