Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/S00g5q4Te0wJ5ZXsmUffC4TgblI.roa
File: S00g5q4Te0wJ5ZXsmUffC4TgblI.roa (raw, json)
Hash identifier: Dj6UMHBYP/wkMQLSy0REF+hRpTqtpN2hC4hYY5QXv88=
Subject key identifier: 4B:4D:20:E6:AE:13:7B:4C:09:E5:95:EC:99:47:DF:0B:84:E0:6E:52
Certificate issuer: /CN=d116835d037786620a9e9f7a0e360498bb654127
Certificate serial: 018552F89DC26099D5D548263A7646F20F23
Authority key identifier: D1:16:83:5D:03:77:86:62:0A:9E:9F:7A:0E:36:04:98:BB:65:41:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RaDXQN3hmIKnp96DjYEmLtlQSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/S00g5q4Te0wJ5ZXsmUffC4TgblI.roa
Signing time: Tue 27 Dec 2022 09:45:03 +0000
ROA not before: Tue 27 Dec 2022 09:45:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8881
IP address blocks: 2001:678:274::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:f8:9d:c2:60:99:d5:d5:48:26:3a:76:46:f2:0f:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d116835d037786620a9e9f7a0e360498bb654127
Validity
Not Before: Dec 27 09:45:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b4d20e6ae137b4c09e595ec9947df0b84e06e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3c:50:c9:25:83:68:d5:3e:4a:cc:4b:e9:32:
82:4e:9e:bf:af:1e:ec:82:2d:f7:7a:ea:1e:42:26:
33:8e:76:4d:3c:5d:3f:42:d1:07:37:cc:2f:9e:1f:
12:ee:c5:9b:22:75:52:ee:d3:21:1f:f9:f8:dc:e5:
3c:03:06:03:4a:6f:f0:f6:33:11:db:60:b6:04:f1:
95:a8:2a:d7:71:83:29:21:3f:c9:26:1b:2b:70:02:
7c:a4:d7:06:93:d8:b7:cc:ad:13:1c:4a:cb:22:e8:
b1:d8:b3:23:9b:62:62:23:66:3f:a3:39:c2:86:38:
f1:86:9c:23:2d:5a:e9:c6:68:37:af:c0:69:4b:d4:
fd:37:a5:13:3e:d5:ba:8a:98:32:d8:fc:58:d0:37:
85:91:6d:9b:34:28:f8:a7:85:f0:ff:99:dc:1c:60:
92:6f:f6:d6:1b:bf:d4:49:60:cf:30:a7:be:e3:dc:
0c:43:7c:4e:86:96:98:d1:9c:f6:b9:c4:7a:df:ff:
a0:7d:c8:21:cc:73:4a:b4:27:9e:af:a6:f2:6f:c8:
1c:be:67:3e:b8:eb:65:63:52:73:8b:63:30:e6:31:
20:a6:c6:48:34:22:ba:c9:4d:ed:3c:73:80:b5:de:
c1:7d:72:33:17:89:e5:20:c5:4e:95:78:47:07:7b:
42:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:4D:20:E6:AE:13:7B:4C:09:E5:95:EC:99:47:DF:0B:84:E0:6E:52
X509v3 Authority Key Identifier:
keyid:D1:16:83:5D:03:77:86:62:0A:9E:9F:7A:0E:36:04:98:BB:65:41:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RaDXQN3hmIKnp96DjYEmLtlQSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/S00g5q4Te0wJ5ZXsmUffC4TgblI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/0RaDXQN3hmIKnp96DjYEmLtlQSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:274::/48
Signature Algorithm: sha256WithRSAEncryption
67:52:03:00:c7:44:c7:69:ae:65:d3:ee:f7:ac:4d:50:9d:04:
60:0b:ae:49:41:31:10:4e:04:a3:d6:0e:81:4c:a5:15:69:7b:
30:14:ee:02:9a:74:d4:c3:ee:f4:c4:77:b3:54:e5:96:81:cb:
95:b7:7b:74:8d:89:5e:1d:a9:da:68:1b:d7:92:e7:0b:a7:85:
a3:d7:2d:57:ee:15:4f:8c:bc:eb:33:d0:89:d5:3b:08:87:0d:
6b:45:bc:a5:1e:01:27:8d:d2:63:ca:f9:6e:16:c1:ce:9b:a4:
9e:71:8b:54:80:a0:59:bc:57:63:4c:de:be:5d:a6:55:d3:a6:
6d:a8:52:5a:19:1a:a0:58:be:f4:ca:13:7c:e3:01:80:b0:1d:
95:96:e5:3c:3a:0a:77:2e:ac:a7:ca:bc:9d:c6:fd:d0:db:67:
3d:6b:d3:b0:19:56:e3:fe:7d:1d:4c:86:4d:e4:d7:09:78:11:
cf:df:c3:f2:6d:94:7c:82:ff:0d:4e:98:b2:19:59:92:bf:ad:
f1:60:ad:f1:8c:f0:29:3b:5d:b7:b3:21:4b:fa:4d:89:a6:d8:
8c:a8:b5:92:e1:70:e1:e0:32:20:92:55:ce:94:c0:bf:25:a1:
61:dd:b0:c8:9b:38:1d:c5:ca:8a:bf:5c:ac:31:bf:34:93:c5:
d1:c4:db:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:59 2023 by rpki-client on console-ams.rpki-client.org