Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/pYcM77Xy6Os-aqcjDNI3LQ_Ht1A.roa
File: pYcM77Xy6Os-aqcjDNI3LQ_Ht1A.roa (raw, json)
Hash identifier: W8W8W5jHKM/Me3Se7cKZrvOmAGMt7i4HGs0wvV6g5Y0=
Subject key identifier: A5:87:0C:EF:B5:F2:E8:EB:3E:6A:A7:23:0C:D2:37:2D:0F:C7:B7:50
Certificate issuer: /CN=d116835d037786620a9e9f7a0e360498bb654127
Certificate serial: 018552F89D136B073D35709DB27A74D6612C
Authority key identifier: D1:16:83:5D:03:77:86:62:0A:9E:9F:7A:0E:36:04:98:BB:65:41:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RaDXQN3hmIKnp96DjYEmLtlQSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/pYcM77Xy6Os-aqcjDNI3LQ_Ht1A.roa
Signing time: Tue 27 Dec 2022 09:45:02 +0000
ROA not before: Tue 27 Dec 2022 09:45:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 2001:678:274::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:f8:9d:13:6b:07:3d:35:70:9d:b2:7a:74:d6:61:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d116835d037786620a9e9f7a0e360498bb654127
Validity
Not Before: Dec 27 09:45:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5870cefb5f2e8eb3e6aa7230cd2372d0fc7b750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:61:3e:13:3e:91:cb:f3:d0:ca:ea:16:eb:0a:
7f:05:55:a0:65:ca:54:86:84:69:32:13:19:43:00:
5e:ff:be:5f:55:0a:9e:b2:1c:e3:8d:ac:d4:0f:02:
d0:69:3d:11:91:25:99:f5:4d:17:7c:21:86:41:58:
19:35:2f:27:c2:3a:51:66:6b:64:e8:6a:cb:4f:30:
09:6c:75:2d:8b:4e:17:dc:c8:b6:34:43:87:05:d8:
29:dc:45:f8:71:ce:af:ee:05:5f:bb:7a:f6:c1:e9:
1b:3f:a4:99:5f:fc:6b:55:ec:c9:92:1e:6d:45:f7:
b4:1d:e9:83:01:ae:62:0f:84:65:2f:d3:9d:5a:2c:
f0:b2:2c:da:63:99:37:10:6d:cc:fb:95:35:f0:a7:
12:85:c9:d7:a0:81:d5:c4:d5:d1:f8:32:37:21:e7:
71:42:c8:b8:eb:ce:cf:e0:a3:20:08:c1:e4:d8:bf:
0d:a7:42:37:39:49:d2:bd:27:ef:90:08:f4:73:fa:
df:ce:32:3c:3f:eb:94:37:99:fc:22:a1:ff:a2:60:
d8:8f:d2:31:a2:c3:c5:35:d5:9c:7e:25:b9:00:09:
6d:9c:c0:c4:6b:ee:20:6f:53:aa:64:39:c1:08:37:
41:8a:82:74:31:f5:cd:45:a6:3e:ea:43:c6:c8:7d:
ae:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:87:0C:EF:B5:F2:E8:EB:3E:6A:A7:23:0C:D2:37:2D:0F:C7:B7:50
X509v3 Authority Key Identifier:
keyid:D1:16:83:5D:03:77:86:62:0A:9E:9F:7A:0E:36:04:98:BB:65:41:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RaDXQN3hmIKnp96DjYEmLtlQSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/pYcM77Xy6Os-aqcjDNI3LQ_Ht1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/0RaDXQN3hmIKnp96DjYEmLtlQSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:274::/48
Signature Algorithm: sha256WithRSAEncryption
5c:2c:8a:de:4f:e6:b4:9e:8b:68:4a:92:6b:a4:bc:cd:3e:6d:
3a:89:13:fa:4c:a8:7e:e6:ec:83:d6:b9:0f:ad:e6:54:ba:a2:
f5:68:21:18:2e:08:42:40:9f:eb:43:2e:a8:f8:15:b8:fd:2d:
98:30:f1:f2:e9:24:11:2c:a1:74:46:53:ed:36:0b:ea:a6:28:
91:02:50:67:0d:19:b0:bf:14:07:fb:c7:64:e6:d4:6e:de:cf:
45:04:72:aa:cc:3b:ec:06:7b:76:29:84:98:6c:f7:a7:27:c9:
79:5e:18:b3:ef:8d:c2:c5:7e:cb:af:fa:ee:e1:03:65:1b:da:
f2:17:4c:29:cb:7a:df:f0:14:b2:45:18:06:1c:97:9d:86:96:
94:97:b3:0b:ac:7f:63:1e:e3:fd:00:79:cd:fd:82:a8:2e:3c:
e3:d2:cc:d6:3d:0a:ab:04:ec:22:94:1c:9d:c7:46:59:f7:fa:
6d:00:ff:61:99:8e:6d:d9:5c:8a:e3:2d:89:8f:b2:a1:fb:a3:
c5:02:ce:c1:f7:40:5b:e7:fe:7d:96:fe:8f:31:76:b2:c6:e0:
7b:34:f4:ff:01:fc:dd:de:da:0c:f1:bf:a8:e8:4a:a7:04:4f:
54:b3:32:20:9c:b7:c6:77:f4:88:df:aa:40:71:ad:67:92:aa:
aa:f7:a6:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:23 2024 by rpki-client on console-fra.rpki-client.org