Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/748741-870d-4770-83e5-1af3965717f7/1/qEf7sz8o1lrxv-_Tw3EbtykSGrI.roa
File: qEf7sz8o1lrxv-_Tw3EbtykSGrI.roa (raw, json)
Hash identifier: wBs15hkNHfWvCYbgVzPxmAH3/2xMYtsabuwW3/10x/s=
Subject key identifier: A8:47:FB:B3:3F:28:D6:5A:F1:BF:EF:D3:C3:71:1B:B7:29:12:1A:B2
Certificate issuer: /CN=59ec8a5afa3ed8ebb856d4d821f696d157f8a757
Certificate serial: 104978C7
Authority key identifier: 59:EC:8A:5A:FA:3E:D8:EB:B8:56:D4:D8:21:F6:96:D1:57:F8:A7:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WeyKWvo-2Ou4VtTYIfaW0Vf4p1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/748741-870d-4770-83e5-1af3965717f7/1/qEf7sz8o1lrxv-_Tw3EbtykSGrI.roa
Signing time: Sat 01 Jan 2022 01:53:25 +0000
ROA not before: Sat 01 Jan 2022 01:53:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 129.247.0.0/16 maxlen: 16
192.108.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273250503 (0x104978c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59ec8a5afa3ed8ebb856d4d821f696d157f8a757
Validity
Not Before: Jan 1 01:53:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a847fbb33f28d65af1bfefd3c3711bb729121ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e6:30:7a:c3:1c:ad:de:af:22:74:61:aa:98:
51:30:91:f2:2a:f3:9d:a2:6b:cd:b3:26:2e:3c:f1:
ee:5b:f3:63:61:91:59:3f:03:54:cd:d6:6f:f1:a0:
c1:62:71:2c:6f:48:20:04:5c:30:95:ba:b4:74:32:
10:45:4f:5d:74:fb:55:ea:b0:af:d0:3d:56:57:1f:
03:bc:1d:99:17:60:38:29:b9:68:5f:dd:df:36:16:
55:92:18:ae:a8:b4:e3:ca:5c:af:a1:18:27:78:a8:
87:28:32:3f:4f:62:ef:39:a9:d3:4f:b1:a6:41:77:
9f:14:9b:7f:fb:2b:9e:cf:48:16:cb:d1:01:2c:9e:
20:c7:70:b7:52:77:77:bb:7b:d2:1e:d5:f4:8a:71:
a3:dc:e6:a9:57:18:87:21:a9:a6:e8:08:4d:f1:40:
fe:22:a7:93:c6:10:6e:c3:35:ec:9a:2d:80:0f:78:
52:93:8b:3a:65:69:d3:33:b5:96:d3:1e:ad:de:be:
b3:4a:ab:1f:85:02:53:3d:ef:3e:11:d6:c6:96:39:
db:63:19:6d:07:90:ce:b6:6e:d8:4b:54:73:5c:4a:
57:56:ae:ff:ba:10:87:ce:cc:c1:2a:01:b8:cb:26:
ec:15:3e:49:97:2a:26:4c:78:ea:1a:17:99:f0:73:
73:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:47:FB:B3:3F:28:D6:5A:F1:BF:EF:D3:C3:71:1B:B7:29:12:1A:B2
X509v3 Authority Key Identifier:
keyid:59:EC:8A:5A:FA:3E:D8:EB:B8:56:D4:D8:21:F6:96:D1:57:F8:A7:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WeyKWvo-2Ou4VtTYIfaW0Vf4p1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/748741-870d-4770-83e5-1af3965717f7/1/qEf7sz8o1lrxv-_Tw3EbtykSGrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/748741-870d-4770-83e5-1af3965717f7/1/WeyKWvo-2Ou4VtTYIfaW0Vf4p1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.247.0.0/16
192.108.54.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a8:88:7e:19:b2:41:ba:86:3d:b0:41:2a:81:13:ca:0a:d3:
d5:54:cf:0c:86:2d:9b:56:11:a5:da:40:8e:41:9e:3a:b1:f7:
1f:82:42:fb:3c:1b:4f:72:2a:f0:a6:dd:ec:9c:b9:5a:da:b9:
12:f3:b1:d7:6c:83:05:34:58:94:32:7b:8b:c8:a2:fc:d0:2b:
90:89:45:f5:e6:ea:58:be:11:a7:3f:25:60:ef:23:27:b9:d3:
3b:f1:49:ea:f1:52:c6:e4:93:03:ed:af:9a:bd:04:1a:86:2b:
cd:30:e3:8e:0a:ba:cb:32:5e:77:f6:75:1c:ef:38:08:34:f1:
84:85:fd:91:af:14:49:da:a4:23:de:10:13:a1:5f:c5:4b:4f:
c8:0f:e5:6d:36:32:d7:6d:10:b2:48:8c:c7:62:a4:1e:ad:12:
cd:fe:a7:b7:e2:63:e8:1c:88:d9:02:de:91:8e:1b:ae:33:8e:
78:23:7c:a3:88:ee:58:f8:1c:96:15:9d:cf:45:98:21:9b:c6:
01:9c:47:7f:cc:38:ea:fa:b6:20:66:ab:e1:57:a0:24:3a:72:
16:5d:02:b6:03:72:f8:60:88:24:fd:a6:80:6c:75:b2:41:57:
16:b3:1f:2b:62:89:ff:43:3b:23:0a:da:b2:20:25:e2:c4:2b:
c6:9a:62:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:00 2024 by rpki-client on console-fra.rpki-client.org