Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/dxO9USuevKJJPnBD0uZyIjsbIiE.roa
File: dxO9USuevKJJPnBD0uZyIjsbIiE.roa (raw, json)
Hash identifier: +feu8IL5X/xDeZClZcYWPgxIGX2m4x9R0WEtG/DePm8=
Subject key identifier: 77:13:BD:51:2B:9E:BC:A2:49:3E:70:43:D2:E6:72:22:3B:1B:22:21
Certificate issuer: /CN=1db93b83bafad7bfd94f676c021baab5187007f0
Certificate serial: 5410
Authority key identifier: 1D:B9:3B:83:BA:FA:D7:BF:D9:4F:67:6C:02:1B:AA:B5:18:70:07:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hbk7g7r617_ZT2dsAhuqtRhwB_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/dxO9USuevKJJPnBD0uZyIjsbIiE.roa
Signing time: Thu 10 Feb 2022 08:12:24 +0000
ROA not before: Thu 10 Feb 2022 08:12:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29014
IP address blocks: 2001:678:df0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21520 (0x5410)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db93b83bafad7bfd94f676c021baab5187007f0
Validity
Not Before: Feb 10 08:12:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7713bd512b9ebca2493e7043d2e672223b1b2221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b1:cf:45:56:5f:18:a4:23:d8:22:4c:2a:66:
5b:ff:44:23:23:95:e6:d4:7b:ed:0d:96:1a:46:6c:
6f:2b:7b:48:62:f5:82:5c:16:2c:18:1a:54:5a:d4:
5b:be:97:0d:4f:a7:aa:c4:fb:9a:23:c7:d8:aa:28:
92:21:71:2c:10:a3:da:99:cc:0e:0c:ad:8b:a8:3b:
10:e0:3b:78:95:91:e0:c6:8e:7b:c5:36:5c:36:44:
0e:a7:51:6a:11:6b:45:97:78:e2:69:ed:31:8e:fb:
f2:e2:70:a4:c5:c1:db:a3:fb:8f:bd:6c:64:e7:9b:
94:b6:f0:a5:60:9a:f6:3c:2c:df:dd:7a:20:53:ca:
9a:c5:2d:67:09:b8:8b:d1:88:32:ea:5b:55:4a:0a:
b2:a3:01:55:5a:ce:35:c4:9c:c1:bc:bd:96:63:7e:
b1:6d:ad:1d:cd:f6:4e:6d:84:9d:7b:76:86:a7:8a:
a3:87:2d:c5:02:7c:ab:e1:ae:63:f6:2a:76:76:b4:
18:2d:17:c5:cc:e8:b2:23:da:a7:b0:36:fa:b6:91:
02:97:f6:7f:ba:2f:10:ee:0e:86:41:48:3c:6b:ba:
f0:ad:16:1b:93:48:54:6f:f9:cf:b1:1c:93:af:76:
2e:69:6c:0a:f4:aa:38:2a:cc:e8:45:fc:7b:59:d5:
16:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:13:BD:51:2B:9E:BC:A2:49:3E:70:43:D2:E6:72:22:3B:1B:22:21
X509v3 Authority Key Identifier:
keyid:1D:B9:3B:83:BA:FA:D7:BF:D9:4F:67:6C:02:1B:AA:B5:18:70:07:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hbk7g7r617_ZT2dsAhuqtRhwB_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/dxO9USuevKJJPnBD0uZyIjsbIiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/Hbk7g7r617_ZT2dsAhuqtRhwB_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:df0::/48
Signature Algorithm: sha256WithRSAEncryption
73:32:3b:30:b2:ac:2f:f3:5b:b2:15:a4:d6:f4:01:61:e7:ee:
19:77:fa:f9:59:46:bd:01:83:f3:8e:4d:d0:d6:49:95:9e:d0:
a9:dc:12:ba:31:33:f0:a3:ec:dc:60:e3:87:92:49:34:cd:c1:
e2:4c:31:72:81:f0:f1:ed:cd:15:ba:3b:d7:f3:2e:30:f2:a1:
ea:4e:01:92:2f:40:eb:76:a0:d9:b5:47:73:20:df:e7:96:78:
0a:cb:8e:89:bb:1f:24:ca:7c:4d:23:42:77:25:76:6c:5d:88:
37:d3:59:fe:f6:76:8e:5a:7a:ba:9e:18:e0:82:85:c5:9b:b6:
45:ff:5c:c0:11:51:a6:8d:1d:1e:62:65:71:82:3d:77:db:b4:
8d:7e:48:21:f5:2c:66:f6:fb:37:a2:02:4a:b0:a2:b9:c5:dd:
99:40:56:80:25:6d:2d:b6:9e:ad:71:ec:f5:49:85:06:96:20:
02:b0:bb:e1:b2:34:57:b1:c8:3e:d5:06:4f:b7:2e:77:fa:e0:
67:84:32:c9:f8:c5:8b:69:8e:13:82:35:08:9b:ca:78:44:4d:
1e:c4:1c:c4:bd:b8:4d:54:ec:f2:25:98:de:2a:7b:64:c8:ea:
60:20:7d:7a:09:a8:96:95:eb:07:54:8e:42:90:ef:1e:80:07:
d6:de:4a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:05 2023 by rpki-client on console-fra.rpki-client.org