Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/dJJ412JjtMJ7VljvbTkJD5SkanI.roa
File: dJJ412JjtMJ7VljvbTkJD5SkanI.roa (raw, json)
Hash identifier: wejOdc3OAGBYHSr0kN2PdBRI0UV+gQAViVcetK6Zk7o=
Subject key identifier: 74:92:78:D7:62:63:B4:C2:7B:56:58:EF:6D:39:09:0F:94:A4:6A:72
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 4325071F
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/dJJ412JjtMJ7VljvbTkJD5SkanI.roa
Signing time: Wed 25 May 2022 06:22:14 +0000
ROA not before: Wed 25 May 2022 06:22:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56417
IP address blocks: 128.0.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126500127 (0x4325071f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 25 06:22:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=749278d76263b4c27b5658ef6d39090f94a46a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:ff:a1:22:11:a1:92:20:3f:c6:cd:68:a6:
56:a0:cc:11:b0:9b:d4:d1:72:e5:00:6b:54:d5:0f:
5d:bf:25:de:95:00:88:37:e0:cd:7c:4f:40:4d:bc:
58:47:6c:f5:71:90:8d:31:31:fb:50:82:f7:a3:c5:
c5:dd:0a:34:17:e9:6d:a7:b9:c9:df:7c:50:eb:bc:
e7:c1:20:5c:bb:5b:5d:d0:40:fb:1e:02:e7:94:67:
c6:c2:35:5f:b5:36:e0:2a:69:22:89:ae:63:7f:80:
97:d7:3d:d3:90:c5:47:1f:f4:28:63:21:31:4c:97:
99:4c:4d:af:28:d2:5d:14:62:cf:b2:2d:a1:70:3b:
85:ae:84:91:c5:19:46:71:a2:a0:9d:89:e6:18:d0:
38:0d:f1:04:21:14:29:1b:c8:fb:c8:89:61:42:37:
51:6e:1f:87:79:fe:ba:9e:03:8e:fe:19:5a:a9:91:
6c:5d:ef:97:0f:51:12:6e:6c:b3:b7:68:7e:16:20:
59:1e:8e:81:99:c8:21:3f:41:0f:00:cc:83:d0:0f:
fb:33:5c:7a:ef:7d:86:fe:a7:3b:7b:f3:8c:44:90:
a4:a2:5e:17:fa:b4:42:e2:46:2f:a1:69:9c:80:8c:
74:7c:ef:30:df:bb:44:85:8a:b9:61:14:fb:59:09:
52:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:92:78:D7:62:63:B4:C2:7B:56:58:EF:6D:39:09:0F:94:A4:6A:72
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/dJJ412JjtMJ7VljvbTkJD5SkanI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.2.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d5:2e:c9:67:0f:1d:5e:e3:13:d2:71:7e:d0:e9:ff:10:1e:
97:31:30:64:19:aa:43:1e:88:14:b8:ea:08:c9:e0:ac:2d:2c:
9f:dc:59:c0:33:35:d9:e3:46:82:32:2b:6e:6c:cf:b3:65:60:
ed:f5:21:f2:71:16:ee:65:9d:b9:d1:14:01:03:7d:2d:c8:d3:
b2:90:42:94:bd:28:35:7e:01:83:9c:54:8b:c9:72:07:3a:62:
ec:ad:ef:9a:dd:a8:3f:ea:1d:e1:29:d3:18:5d:70:e5:07:30:
ff:a3:59:cf:9f:8d:b9:5f:fe:ef:25:05:00:ed:bc:85:42:8f:
a7:13:ef:18:9b:0c:2a:57:b9:9e:b3:56:9e:b6:76:a2:21:67:
68:4b:d2:b2:d8:21:5c:f0:ee:d8:b3:6b:18:77:f0:f2:2c:27:
f8:4e:73:e2:c6:44:28:9f:f3:04:95:03:a1:c9:a5:fa:55:1f:
65:5e:5a:1c:3e:31:17:62:d1:b6:ec:da:a7:80:29:82:81:0d:
c7:91:8c:bb:ab:df:55:7c:8a:ab:c9:08:92:c8:10:42:a4:00:
6b:7d:c3:bb:21:c8:c5:8c:fe:6e:87:e2:ef:28:8c:97:75:07:
60:fd:2c:fd:11:9d:d0:5d:d7:53:73:3a:ae:8d:47:69:66:60:
a0:1d:91:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-ams.rpki-client.org