Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26bc06-393e-441d-8bc0-b292cf4ae080/1/uvBjMYo9kvZfvvEYVH0Qwre3zIQ.roa
File: uvBjMYo9kvZfvvEYVH0Qwre3zIQ.roa (raw, json)
Hash identifier: WpuOku+QFarn/gzcQ2sa8Xano3ZD5oteP0aoPp1sAOE=
Subject key identifier: BA:F0:63:31:8A:3D:92:F6:5F:BE:F1:18:54:7D:10:C2:B7:B7:CC:84
Certificate issuer: /CN=5792df61399569f74fb77b6311b7d921ba949825
Certificate serial: 0BCCF8
Authority key identifier: 57:92:DF:61:39:95:69:F7:4F:B7:7B:63:11:B7:D9:21:BA:94:98:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5LfYTmVafdPt3tjEbfZIbqUmCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/26bc06-393e-441d-8bc0-b292cf4ae080/1/uvBjMYo9kvZfvvEYVH0Qwre3zIQ.roa
Signing time: Sat 04 Jun 2022 12:04:20 +0000
ROA not before: Sat 04 Jun 2022 12:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204931
IP address blocks: 2001:678:cb0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 773368 (0xbccf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5792df61399569f74fb77b6311b7d921ba949825
Validity
Not Before: Jun 4 12:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=baf063318a3d92f65fbef118547d10c2b7b7cc84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2c:d6:ca:99:27:01:3e:48:e5:19:fa:ad:be:
52:bd:bd:d1:64:e2:a1:e3:a2:28:7d:30:79:af:86:
a9:8a:f9:af:9e:78:3b:2f:84:59:62:32:a9:9d:f7:
88:0b:4d:4c:97:2d:e3:cb:45:02:c4:5c:8f:02:22:
9d:de:c9:e5:0c:bd:bd:c2:8b:99:5f:16:11:93:63:
fc:f6:a0:ec:3c:34:1f:fe:d1:a1:66:e6:79:44:90:
db:64:a9:a5:36:fb:0c:a0:8e:63:2f:48:59:0c:d6:
c8:dc:d2:2a:0c:b5:3e:b1:cd:f3:bf:0e:03:a1:2c:
ca:ef:bc:27:05:ea:f4:6d:93:da:8b:a4:b7:60:22:
83:ee:b5:ee:cc:1c:5a:de:fd:e0:49:64:3b:cb:ec:
ad:fe:23:b7:91:15:ce:3f:aa:ff:39:f4:23:24:99:
c7:5a:ba:7d:9f:c8:ce:1a:c8:ba:b4:a1:43:57:c0:
f4:3f:c2:31:c1:91:08:9d:d9:8b:92:fd:9c:35:76:
67:0c:9f:a6:59:9c:53:aa:d6:72:11:a1:4e:57:df:
6b:1c:48:b9:5d:80:3e:8f:fb:6e:87:d4:f7:a8:f7:
f2:2d:45:05:eb:d8:19:e2:51:34:cc:39:57:3f:b2:
63:b2:c0:13:9a:87:96:2c:6f:d4:e7:eb:57:a1:de:
fb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F0:63:31:8A:3D:92:F6:5F:BE:F1:18:54:7D:10:C2:B7:B7:CC:84
X509v3 Authority Key Identifier:
keyid:57:92:DF:61:39:95:69:F7:4F:B7:7B:63:11:B7:D9:21:BA:94:98:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5LfYTmVafdPt3tjEbfZIbqUmCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26bc06-393e-441d-8bc0-b292cf4ae080/1/uvBjMYo9kvZfvvEYVH0Qwre3zIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26bc06-393e-441d-8bc0-b292cf4ae080/1/V5LfYTmVafdPt3tjEbfZIbqUmCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:cb0::/48
Signature Algorithm: sha256WithRSAEncryption
22:7e:db:93:d9:14:f5:fd:db:fa:65:b3:cf:62:26:e8:91:19:
c4:1c:ea:fa:11:74:27:80:31:52:c9:13:5c:0d:d3:1b:2f:b5:
84:eb:94:8f:aa:af:c9:e6:75:39:6a:f0:4c:33:69:59:1f:2e:
6b:ac:c4:0f:67:b0:64:63:c0:bc:e0:76:b5:c2:da:ad:84:d9:
f0:c3:47:e3:70:6e:b0:7c:0c:2a:18:f2:be:0f:82:d8:b4:54:
c8:df:33:32:b9:71:ba:ad:bd:ea:ce:4f:83:96:16:a3:7b:b4:
11:4b:f3:dd:12:58:e4:2b:ff:4a:50:c6:78:6f:01:79:76:0c:
f4:28:fa:e0:c8:5a:c3:6b:d3:48:d3:18:be:e8:1b:0e:a5:18:
6d:5d:b7:42:3a:5b:e5:5d:26:ac:89:c2:1f:fa:83:33:32:35:
9f:cd:6b:b1:1f:6f:27:50:59:eb:cd:5f:ff:38:06:e5:5a:c5:
02:14:32:46:b2:4b:28:d3:9b:02:e8:3b:fe:f3:4d:e9:82:33:
df:7a:99:6c:1c:f3:56:20:c6:48:dd:b1:78:7f:83:8f:95:63:
f3:11:d0:2f:d7:6f:6f:eb:a3:76:f5:70:46:d2:af:0f:c2:81:
35:3c:01:45:6a:c5:8e:6c:c1:a0:71:54:b5:92:66:6b:2a:55:
6e:79:62:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:32 2023 by rpki-client on console-fra.rpki-client.org