Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/Ah7P_kgd7k6AHVwUkqSYy_0i1cY.roa
File: Ah7P_kgd7k6AHVwUkqSYy_0i1cY.roa (raw, json)
Hash identifier: qJKOifCBrw1krlG9fm7DZKDzT6d67Wc3ZrWL0PO/yR8=
Subject key identifier: 02:1E:CF:FE:48:1D:EE:4E:80:1D:5C:14:92:A4:98:CB:FD:22:D5:C6
Certificate issuer: /CN=977bfd99d35116f9c644194c36d9b646f73127c6
Certificate serial: 0425CA55
Authority key identifier: 97:7B:FD:99:D3:51:16:F9:C6:44:19:4C:36:D9:B6:46:F7:31:27:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3v9mdNRFvnGRBlMNtm2RvcxJ8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/Ah7P_kgd7k6AHVwUkqSYy_0i1cY.roa
Signing time: Sat 01 Jan 2022 15:01:01 +0000
ROA not before: Sat 01 Jan 2022 15:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8820
IP address blocks: 2001:67c:1758::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69585493 (0x425ca55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977bfd99d35116f9c644194c36d9b646f73127c6
Validity
Not Before: Jan 1 15:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=021ecffe481dee4e801d5c1492a498cbfd22d5c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ae:52:be:df:74:80:08:68:9e:73:e5:ac:7a:
9c:9f:8f:cb:a9:0b:cd:9d:a9:21:dc:95:aa:ac:e3:
4f:d6:5c:6b:b3:98:a9:d4:c7:0b:41:da:6c:e7:0d:
b4:4d:9d:38:3d:44:c9:21:70:8f:04:7d:11:d7:51:
e9:db:e4:ea:00:4a:a2:7e:41:69:5c:41:06:5a:3b:
f4:3b:b8:ea:69:0e:4f:3f:8e:cb:95:4d:f4:bb:88:
65:c9:f8:24:f6:1d:b6:d2:14:f5:3f:66:f8:80:b4:
76:78:6c:11:82:f7:3a:2d:3b:21:d1:cc:a7:f4:2f:
b4:bd:b7:10:87:47:f5:9a:60:1b:76:20:0d:ef:e7:
6b:cf:19:7f:a5:3f:77:1a:6b:2d:8d:3a:0f:42:03:
e7:a7:bc:e0:cb:a9:fa:4f:49:67:5d:e4:8f:08:ad:
06:54:ea:8e:17:56:29:53:c9:e3:f2:82:bc:f2:79:
a0:3a:1c:e9:77:b4:18:e5:93:cb:37:f2:42:de:5a:
c5:df:ed:3a:e0:da:fc:d8:22:64:58:c0:b5:cb:42:
70:d9:30:ef:f0:d8:32:de:be:98:b0:fd:fa:10:a5:
e9:4e:00:b6:94:8b:8f:c5:6f:29:fd:55:dd:ee:c1:
a4:9c:43:81:6b:25:99:2a:b3:01:0f:24:35:db:57:
bb:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1E:CF:FE:48:1D:EE:4E:80:1D:5C:14:92:A4:98:CB:FD:22:D5:C6
X509v3 Authority Key Identifier:
keyid:97:7B:FD:99:D3:51:16:F9:C6:44:19:4C:36:D9:B6:46:F7:31:27:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3v9mdNRFvnGRBlMNtm2RvcxJ8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/Ah7P_kgd7k6AHVwUkqSYy_0i1cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/l3v9mdNRFvnGRBlMNtm2RvcxJ8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1758::/48
Signature Algorithm: sha256WithRSAEncryption
21:85:c0:53:39:d8:6a:ab:19:d2:46:7e:5f:59:0f:b1:e9:07:
76:ff:27:e5:c3:0c:63:84:2d:80:ee:a0:64:fe:a0:e6:cd:e2:
27:46:fb:21:2e:be:84:01:81:04:cd:20:b4:95:54:7c:46:11:
7f:82:b1:9c:f4:2f:91:94:58:0e:9a:53:de:01:5c:16:49:12:
95:8b:19:c1:44:d3:4b:f0:b9:31:0d:f3:e9:64:97:f5:0a:1a:
37:6b:df:92:b7:d3:d5:2a:0e:f2:c0:ae:88:f5:d7:a3:42:d6:
c0:ac:ef:d8:12:9e:20:02:93:60:29:d5:8f:2b:e1:ca:9a:c7:
bd:70:b5:bb:a9:7d:8d:1f:2e:d1:6f:df:1d:4e:a5:d1:2b:2d:
47:9b:6e:79:5a:55:08:80:d5:cf:6a:fb:29:12:62:89:18:b5:
43:e4:e5:c2:71:b7:b8:d6:29:ea:16:d7:c7:7c:bd:b2:62:e8:
87:5d:47:5a:06:1a:67:ef:99:aa:01:9c:6d:9b:65:8c:42:27:
82:9a:a1:04:59:e3:48:4c:64:a1:8a:e0:d6:86:5e:c9:77:6b:
d1:bc:22:20:a3:77:bd:2f:05:7f:ba:c8:49:91:a3:6b:ca:4c:
eb:9f:48:d0:94:6e:e5:e2:19:d7:c2:3d:b4:a1:ca:f3:68:e7:
72:3f:70:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:50 2024 by rpki-client on console-fra.rpki-client.org