Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/439a10-60c4-4c28-91bf-88d2df10d15b/1/7jcYC3qUIE8XEMzT4sw-Af39T-s.roa
File: 7jcYC3qUIE8XEMzT4sw-Af39T-s.roa (raw, json)
Hash identifier: hFuLmHIauC6KUcjjge1nkm65SBnRVyx9xw80zjoMTTc=
Subject key identifier: EE:37:18:0B:7A:94:20:4F:17:10:CC:D3:E2:CC:3E:01:FD:FD:4F:EB
Certificate issuer: /CN=c45c683cb1eb9c0f49b967e3bd9b8b84cf099bb8
Certificate serial: 0F250DB1
Authority key identifier: C4:5C:68:3C:B1:EB:9C:0F:49:B9:67:E3:BD:9B:8B:84:CF:09:9B:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFxoPLHrnA9JuWfjvZuLhM8Jm7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/439a10-60c4-4c28-91bf-88d2df10d15b/1/7jcYC3qUIE8XEMzT4sw-Af39T-s.roa
Signing time: Sat 01 Jan 2022 12:57:33 +0000
ROA not before: Sat 01 Jan 2022 12:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60115
IP address blocks: 2a07:2918:6000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254086577 (0xf250db1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45c683cb1eb9c0f49b967e3bd9b8b84cf099bb8
Validity
Not Before: Jan 1 12:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee37180b7a94204f1710ccd3e2cc3e01fdfd4feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cb:2c:17:84:3b:7b:f0:de:24:c9:62:69:92:
10:cb:c3:ef:df:17:df:60:c0:42:f0:a4:5c:10:99:
b9:e4:a2:9e:66:21:1a:75:51:3d:ee:ec:d1:82:81:
72:91:ce:e3:1c:19:4c:2d:40:da:97:d9:e2:7b:7a:
5e:aa:da:9c:25:c9:f9:e2:ab:c9:a0:c3:26:be:17:
7a:b7:cb:17:a0:e6:25:1a:a2:ce:29:ca:2a:05:41:
a3:6f:cf:aa:83:7c:5d:ac:6d:45:9c:e1:c4:27:2a:
e6:15:af:27:ea:7d:a4:65:61:6d:de:7e:ef:24:d0:
cc:79:06:35:bd:41:8e:36:cd:2d:ef:17:f7:e2:af:
ba:ae:59:25:f0:6e:9a:13:5e:95:14:cc:df:e0:1b:
c3:e0:cc:7a:ad:7b:4b:4d:01:8e:de:ce:69:6d:ff:
09:f5:3f:55:59:49:5b:9e:8f:b1:76:de:dc:e3:c5:
b8:47:da:02:55:78:b5:43:09:7b:17:93:ec:a9:8e:
9e:6b:39:0b:23:29:1b:6b:d2:b2:93:13:00:fd:68:
43:6e:7c:ca:03:4f:8b:fd:48:8b:33:3f:f3:59:98:
c5:34:6b:6f:3a:70:38:71:bf:23:75:15:77:3c:42:
da:a6:35:05:3f:35:32:7b:27:45:0e:2b:21:6b:00:
36:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:37:18:0B:7A:94:20:4F:17:10:CC:D3:E2:CC:3E:01:FD:FD:4F:EB
X509v3 Authority Key Identifier:
keyid:C4:5C:68:3C:B1:EB:9C:0F:49:B9:67:E3:BD:9B:8B:84:CF:09:9B:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFxoPLHrnA9JuWfjvZuLhM8Jm7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/439a10-60c4-4c28-91bf-88d2df10d15b/1/7jcYC3qUIE8XEMzT4sw-Af39T-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/439a10-60c4-4c28-91bf-88d2df10d15b/1/xFxoPLHrnA9JuWfjvZuLhM8Jm7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2918:6000::/36
Signature Algorithm: sha256WithRSAEncryption
42:f6:c3:fd:45:d8:ee:08:c2:f1:b1:0f:d1:36:8f:b7:0d:46:
d0:dd:9c:e1:5e:ba:1f:01:bf:ae:a4:55:27:a6:2d:44:af:86:
37:13:e7:0d:ec:d5:a1:5c:97:11:39:4c:27:3d:a2:8f:42:14:
96:58:f2:48:8a:ae:e6:e2:26:99:07:2c:10:45:da:2a:cc:19:
3e:9e:d7:b7:fa:b4:e8:05:f0:68:b6:b0:e6:56:65:74:fd:fc:
37:c3:13:7d:55:83:28:6d:19:37:67:0c:ec:6c:cb:07:31:cf:
56:e0:78:7d:9f:f9:20:23:86:b0:3c:27:81:0c:c9:d1:db:29:
4a:35:aa:b0:3c:77:a5:c9:19:33:61:ec:0d:df:6c:fa:bf:dc:
93:22:6b:b0:04:bf:ca:cd:d0:74:88:60:17:2b:52:01:02:c6:
39:c2:a3:9f:99:59:da:63:c8:4e:d3:ca:cf:6a:df:b5:22:4d:
d7:ba:26:32:ea:07:c2:29:c5:62:3e:7e:7e:a6:21:b2:c6:e0:
33:6e:cb:82:bd:34:1c:06:8b:bc:05:50:41:98:17:a8:ac:c2:
bf:04:13:69:35:e7:22:0f:3e:a7:ef:22:18:f3:b3:6e:74:8f:
a6:b2:ce:f6:89:98:1b:a0:23:6c:6f:42:6b:bb:b4:d0:9f:c2:
26:0a:24:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:54 2024 by rpki-client on console-ams.rpki-client.org