Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/b4DiQ5NopVZvOVbfckqcD9yInfg.roa
File: b4DiQ5NopVZvOVbfckqcD9yInfg.roa (raw, json)
Hash identifier: 8qdPZQcL5CrB35KDwQCtBLs1WgBofk1OFfYkrgngRT0=
Subject key identifier: 6F:80:E2:43:93:68:A5:56:6F:39:56:DF:72:4A:9C:0F:DC:88:9D:F8
Certificate issuer: /CN=40f75d327761b90c0899638f430eb614c87c3106
Certificate serial: 02330015
Authority key identifier: 40:F7:5D:32:77:61:B9:0C:08:99:63:8F:43:0E:B6:14:C8:7C:31:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPddMndhuQwImWOPQw62FMh8MQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/b4DiQ5NopVZvOVbfckqcD9yInfg.roa
Signing time: Sat 01 Jan 2022 09:59:44 +0000
ROA not before: Sat 01 Jan 2022 09:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2001:678:2cc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36896789 (0x2330015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40f75d327761b90c0899638f430eb614c87c3106
Validity
Not Before: Jan 1 09:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f80e2439368a5566f3956df724a9c0fdc889df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:68:3b:3c:03:5b:53:b4:be:cd:f4:1a:c2:5e:
b5:c0:7f:64:36:1c:f9:34:79:76:1c:ae:5e:45:ca:
34:b1:21:b3:ba:40:1a:a2:2b:49:1f:c3:44:63:8c:
d4:fd:2f:4e:98:e1:f4:df:79:45:c4:bf:9b:2d:ce:
82:d7:24:8f:e9:5f:66:88:b8:89:6f:4c:78:fc:6b:
3e:98:bb:97:69:b9:8a:c5:5d:88:99:26:50:99:8a:
73:42:b7:56:1a:d4:e4:bb:34:f8:f0:4f:37:58:36:
b8:23:0b:cd:b4:34:84:80:3c:be:f6:24:0b:ef:e7:
e7:14:61:a1:b7:40:7c:f4:d3:76:87:64:b1:fe:ef:
2b:99:a3:af:30:bb:86:94:2c:4e:ca:ab:57:f3:e2:
2c:07:42:92:52:1f:50:c8:7d:1e:38:f6:2e:87:4c:
c1:b5:9b:cb:53:dc:37:ae:d1:6b:54:0f:6d:e8:af:
84:98:9f:7f:db:b5:cc:1e:7b:01:28:94:94:45:a9:
55:51:18:82:69:75:08:09:53:d4:e6:99:e5:40:3a:
e6:2b:b3:cb:96:45:cd:2d:aa:d3:2d:5a:ac:ef:13:
af:c3:4d:36:da:6c:a0:68:10:5a:81:26:93:7d:f8:
ed:e8:9d:4c:74:ba:05:65:fe:fc:a3:c2:14:e7:96:
a8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:80:E2:43:93:68:A5:56:6F:39:56:DF:72:4A:9C:0F:DC:88:9D:F8
X509v3 Authority Key Identifier:
keyid:40:F7:5D:32:77:61:B9:0C:08:99:63:8F:43:0E:B6:14:C8:7C:31:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPddMndhuQwImWOPQw62FMh8MQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/b4DiQ5NopVZvOVbfckqcD9yInfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/QPddMndhuQwImWOPQw62FMh8MQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:2cc::/48
Signature Algorithm: sha256WithRSAEncryption
58:d2:de:88:44:f7:49:5e:4a:c7:bf:07:4f:9e:f6:5e:4b:ff:
4f:8b:42:c6:3c:04:a0:ea:ed:db:8b:fd:6b:82:f1:59:18:71:
3b:1d:92:fa:21:e6:b4:8f:c9:8f:43:ea:8e:a8:18:01:56:c5:
86:2b:ed:78:42:fa:89:04:9b:95:94:e2:a2:a6:26:77:43:fc:
09:a0:e5:b6:b8:b6:fc:05:e7:ec:49:51:b3:b3:b5:72:dc:bd:
2f:0e:4d:3d:5d:c2:5b:19:3e:06:41:d1:b6:78:a4:1a:37:82:
51:85:e0:ac:76:e4:43:45:46:12:45:d3:0d:39:4e:83:af:9b:
00:0c:c1:8d:ab:6b:bb:5b:95:7b:e5:aa:d6:2a:bd:8a:da:ca:
d4:0c:a9:6d:f9:0f:8c:a1:19:e1:9b:d5:fb:63:16:83:7c:35:
24:ce:79:37:d1:0e:7d:23:8a:05:db:96:1b:a9:f1:50:f3:da:
fa:fd:f7:73:f8:0d:03:c7:59:9d:66:03:25:ee:61:90:9f:4f:
b1:84:57:8a:03:81:51:da:cb:f0:c7:4e:1c:cb:0e:97:ec:21:
f7:dc:d1:4d:39:b9:bb:16:5a:7b:77:ff:69:67:96:e7:45:d2:
e7:92:9b:ae:38:a5:28:9e:92:ea:53:67:24:a2:dc:e9:ec:80:
5b:36:42:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:58 2024 by rpki-client on console-ams.rpki-client.org