Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/7vuofhAnevDesnRqLylzEWDmZ8E.roa
File: 7vuofhAnevDesnRqLylzEWDmZ8E.roa (raw, json)
Hash identifier: HySiZKVBSSiaiYaSjrCoVxAHZkAgrdzVOLuIYEV8nVc=
Subject key identifier: EE:FB:A8:7E:10:27:7A:F0:DE:B2:74:6A:2F:29:73:11:60:E6:67:C1
Certificate issuer: /CN=c5471397cf5ec399aa0eec5c3173b1f3040723a9
Certificate serial: 0189AB18581D73E53A16668BA874A7947164
Authority key identifier: C5:47:13:97:CF:5E:C3:99:AA:0E:EC:5C:31:73:B1:F3:04:07:23:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xUcTl89ew5mqDuxcMXOx8wQHI6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/7vuofhAnevDesnRqLylzEWDmZ8E.roa
Signing time: Mon 31 Jul 2023 08:37:26 +0000
ROA not before: Mon 31 Jul 2023 08:37:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212170
IP address blocks: 2001:678:ba8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:18:58:1d:73:e5:3a:16:66:8b:a8:74:a7:94:71:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5471397cf5ec399aa0eec5c3173b1f3040723a9
Validity
Not Before: Jul 31 08:37:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eefba87e10277af0deb2746a2f29731160e667c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6b:28:c7:81:63:f9:fa:3c:e9:60:6f:5b:85:
32:3f:b8:43:a7:3a:31:08:f0:57:97:ef:ba:7a:6c:
c0:fc:bf:0e:93:32:02:45:6e:1d:2e:a3:81:f3:cd:
c5:c8:d4:6a:c9:76:b1:f6:d6:75:66:d0:f1:ce:41:
17:95:5b:35:e0:48:5b:23:63:b6:71:46:36:4e:2f:
0c:61:32:73:49:ed:2a:92:a9:58:a7:a8:94:68:c9:
62:b7:39:b7:f5:0a:82:2e:6f:b2:a8:3d:ac:4d:2c:
1e:94:24:32:be:c0:7a:f4:66:19:ad:9d:09:e8:a0:
75:22:6a:75:ee:3f:67:40:61:53:00:9a:ad:b0:c2:
7a:30:79:d5:51:09:00:8e:c3:75:bc:bc:75:4a:fb:
c3:63:a3:20:30:2c:0c:6c:c5:f5:a0:6c:7b:fc:a3:
97:e0:45:a8:61:b1:fb:9b:5d:39:af:12:a1:32:a0:
3d:d8:e6:e1:f1:fa:18:a4:9e:ae:c5:02:80:86:3e:
c1:fd:8a:8a:0b:7d:0d:3e:8b:c2:44:7b:08:23:8b:
82:b1:e1:ca:98:35:8d:56:40:a0:8b:bf:fb:f1:10:
cd:e2:dd:fc:f8:07:76:ac:49:38:68:66:6f:e1:7a:
b1:19:6d:ad:cc:fa:b8:77:9e:6a:39:22:ad:bd:0e:
56:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FB:A8:7E:10:27:7A:F0:DE:B2:74:6A:2F:29:73:11:60:E6:67:C1
X509v3 Authority Key Identifier:
keyid:C5:47:13:97:CF:5E:C3:99:AA:0E:EC:5C:31:73:B1:F3:04:07:23:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xUcTl89ew5mqDuxcMXOx8wQHI6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/7vuofhAnevDesnRqLylzEWDmZ8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/xUcTl89ew5mqDuxcMXOx8wQHI6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ba8::/48
Signature Algorithm: sha256WithRSAEncryption
8e:a2:a8:e3:f0:40:fa:7b:4d:24:2b:d7:dd:b6:a6:96:83:cd:
e7:a2:f7:ea:38:67:2f:fd:f0:80:cc:b1:7a:02:fd:c7:ad:6a:
f6:de:3a:2f:ea:8e:f6:4b:4c:11:c3:11:0e:07:06:59:a1:95:
31:c5:0c:fa:90:11:64:c2:16:04:92:85:0b:d0:72:b4:8c:36:
86:64:56:bc:70:cf:1d:20:b9:74:f7:9f:eb:fc:5a:78:36:41:
fd:48:93:8b:50:a6:ed:48:5d:bf:df:29:11:8e:0a:bb:89:7c:
93:6e:a3:69:4c:b3:cb:cb:28:52:34:08:84:b7:3a:48:ad:23:
c8:ae:04:3f:f1:e8:ae:ad:9a:f9:94:5f:82:57:d9:04:8e:2c:
7f:cc:7b:2a:bb:c7:c8:33:e5:56:d9:c1:25:4d:cd:0f:19:88:
17:3c:6b:2a:6b:8f:40:5a:7c:4d:c8:ec:18:4a:b8:3f:e8:c5:
7a:03:66:a6:ee:0e:b6:b1:8b:59:f4:70:43:5f:57:68:f4:5e:
dd:00:fa:4a:cb:55:4e:1d:5d:98:c4:42:60:30:90:4f:50:4c:
ec:ea:15:1e:b0:9d:d1:39:13:d1:53:d1:0b:4d:d1:54:f8:5b:
4b:ed:ee:a1:9e:e7:d7:de:22:31:01:1d:18:bd:8d:d9:15:c0:
ae:e7:e9:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:42 2025 by rpki-client