Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/4b911c-3d4d-42d5-9234-f288137cb500/1/jS54Q1j9rGaBwEcmLc3eeF26vmc.roa
File: jS54Q1j9rGaBwEcmLc3eeF26vmc.roa (raw, json)
Hash identifier: CytCQJhq0BMzxKGFC6ZVwjBmYi+Kk28oKyFa9QD7dEg=
Subject key identifier: 8D:2E:78:43:58:FD:AC:66:81:C0:47:26:2D:CD:DE:78:5D:BA:BE:67
Certificate issuer: /CN=42b4c79a22a3fe987ef31908cd44ff81e9b1acf4
Certificate serial: 08FB170C
Authority key identifier: 42:B4:C7:9A:22:A3:FE:98:7E:F3:19:08:CD:44:FF:81:E9:B1:AC:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QrTHmiKj_ph-8xkIzUT_gemxrPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/4b911c-3d4d-42d5-9234-f288137cb500/1/jS54Q1j9rGaBwEcmLc3eeF26vmc.roa
Signing time: Thu 31 Mar 2022 10:13:13 +0000
ROA not before: Thu 31 Mar 2022 10:13:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43595
IP address blocks: 2a06:4180:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150673164 (0x8fb170c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42b4c79a22a3fe987ef31908cd44ff81e9b1acf4
Validity
Not Before: Mar 31 10:13:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d2e784358fdac6681c047262dcdde785dbabe67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:79:30:bf:ee:dd:a6:e7:74:95:18:b4:b2:f5:
f1:5b:0b:e5:0b:a4:be:b9:aa:b1:79:a5:a7:ca:a2:
1b:bf:b4:4d:97:7a:3e:8a:bd:ab:65:7f:2c:5b:06:
6d:60:82:72:fd:9e:e5:72:6e:f8:87:fc:2d:c7:5b:
66:e4:3e:fb:dc:e4:35:1e:19:e9:a8:5f:46:5c:02:
a1:5e:9d:87:91:d6:75:d0:38:fe:4a:8f:1f:c9:ad:
77:db:60:7b:7f:94:8b:65:23:5e:30:f8:ca:4d:ce:
e8:7f:1b:f1:7e:d0:04:32:99:5c:e2:2a:48:50:7f:
9b:bc:d8:bb:2c:66:e5:de:18:74:74:26:7e:10:e2:
75:1d:d4:20:3f:7e:20:19:c2:d9:46:8b:8d:63:22:
ee:cd:36:26:6d:26:ef:93:5d:7e:86:02:78:f9:1f:
37:bf:71:a5:7d:0c:c1:37:88:df:57:0a:15:ed:a8:
69:84:60:96:a3:b8:ec:0f:71:cd:b4:47:d6:c1:0f:
97:a4:a7:d5:88:7c:8b:38:e7:a0:b3:75:52:76:f4:
0c:7a:75:b1:1a:50:9c:f9:48:53:55:d3:aa:47:ee:
19:1a:1d:83:7c:02:49:9e:45:6f:83:72:ff:ba:fa:
5e:20:ff:f2:0d:ad:f6:ec:f3:04:dd:e2:b3:75:cb:
69:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2E:78:43:58:FD:AC:66:81:C0:47:26:2D:CD:DE:78:5D:BA:BE:67
X509v3 Authority Key Identifier:
keyid:42:B4:C7:9A:22:A3:FE:98:7E:F3:19:08:CD:44:FF:81:E9:B1:AC:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QrTHmiKj_ph-8xkIzUT_gemxrPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/4b911c-3d4d-42d5-9234-f288137cb500/1/jS54Q1j9rGaBwEcmLc3eeF26vmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/4b911c-3d4d-42d5-9234-f288137cb500/1/QrTHmiKj_ph-8xkIzUT_gemxrPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:4180:1::/48
Signature Algorithm: sha256WithRSAEncryption
89:44:d0:e0:d2:00:18:1a:7d:74:8b:2b:82:75:10:04:cb:1a:
b8:77:7f:bf:43:4c:10:54:25:a8:f4:6f:cc:a2:b0:d3:d7:ac:
a0:bb:97:b1:c5:0e:9f:14:8d:ae:4b:1c:11:4c:6d:fe:30:7c:
2d:0b:2d:04:38:74:2a:af:c6:d4:ec:39:ee:ed:07:7d:d6:e9:
e4:8f:1c:af:ee:d7:47:81:58:48:e8:36:52:73:7b:9b:44:4e:
2a:3a:9a:2f:90:05:4e:f6:6b:3f:63:4a:13:bf:16:2e:52:75:
9d:91:b1:21:32:20:69:97:8b:15:86:3c:75:c6:af:95:0d:ab:
28:d1:ef:33:6b:bb:ef:bb:55:51:c9:07:d9:35:41:2f:66:75:
08:59:b3:05:19:f0:d6:08:98:36:cb:b6:13:17:c5:b0:09:e4:
0a:a6:d3:f6:5a:13:7b:1c:9a:82:c4:a4:84:17:1b:3e:4c:36:
b2:e0:87:fc:3b:37:b4:0e:2f:2b:86:00:e6:eb:12:07:e3:c7:
04:8b:5f:f4:17:22:01:5a:c0:76:ae:ec:21:50:62:16:96:67:
82:d4:d3:ec:95:ad:b4:ff:1c:48:05:a0:a7:6c:6e:94:67:d8:
2d:48:e8:d2:60:62:d4:4a:ed:de:fe:17:9c:31:7b:19:2d:20:
52:8a:f1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:05 2024 by rpki-client on console-fra.rpki-client.org