Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/7drqns0DRBMek9j2kvuT6DWrsQk.roa
File: 7drqns0DRBMek9j2kvuT6DWrsQk.roa (raw, json)
Hash identifier: ZOgapkkmf4dED0rI7L4JQRmsBDNTp1v8l2Vc22IqMHo=
Subject key identifier: ED:DA:EA:9E:CD:03:44:13:1E:93:D8:F6:92:FB:93:E8:35:AB:B1:09
Certificate issuer: /CN=71601c0b8b13cc121017f6d25117ac1fd0664344
Certificate serial: 1536BCD4
Authority key identifier: 71:60:1C:0B:8B:13:CC:12:10:17:F6:D2:51:17:AC:1F:D0:66:43:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cWAcC4sTzBIQF_bSUResH9BmQ0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/7drqns0DRBMek9j2kvuT6DWrsQk.roa
Signing time: Sat 01 Jan 2022 00:55:16 +0000
ROA not before: Sat 01 Jan 2022 00:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15557
IP address blocks: 2a00:b180::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355908820 (0x1536bcd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71601c0b8b13cc121017f6d25117ac1fd0664344
Validity
Not Before: Jan 1 00:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eddaea9ecd0344131e93d8f692fb93e835abb109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f3:2f:38:34:16:09:b6:cf:0e:7a:63:18:b3:
ed:4c:d6:6f:08:81:ba:6d:e2:02:b9:44:d5:e1:fe:
04:14:10:dc:62:7e:1c:f6:9b:06:6e:ee:8e:80:f0:
12:58:7e:93:f5:9c:e7:81:ff:b3:57:34:01:cc:fd:
67:4f:59:f7:35:e1:7b:64:a2:22:da:73:e9:3f:4d:
45:30:64:c4:8f:32:42:47:6b:c8:40:4d:60:b0:14:
01:67:88:d0:f5:c3:61:34:72:85:67:73:85:32:df:
9f:81:01:7e:96:8a:18:68:f7:86:b4:99:fb:6e:f3:
43:c1:e4:ef:65:9d:91:b4:94:db:72:8b:e8:e5:ca:
08:d8:4c:72:96:d3:a5:5a:42:63:70:09:9a:81:da:
d7:4b:66:13:89:34:b1:a6:f4:2c:c7:1a:87:1e:06:
6e:6b:2b:62:e0:d3:00:e2:eb:77:46:b6:ac:00:73:
1f:2c:b9:67:df:16:f8:ae:02:e3:f4:04:d0:13:f3:
c5:60:97:d3:48:4f:8d:e3:a2:5a:01:d1:43:1d:76:
72:6a:e6:08:e5:6f:cd:90:84:81:af:e7:bd:fc:44:
5d:ba:39:36:f3:62:8f:89:65:38:8c:e1:c7:f5:59:
91:fc:66:63:ff:ea:8c:73:eb:8a:a8:ea:70:b6:11:
d4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:DA:EA:9E:CD:03:44:13:1E:93:D8:F6:92:FB:93:E8:35:AB:B1:09
X509v3 Authority Key Identifier:
keyid:71:60:1C:0B:8B:13:CC:12:10:17:F6:D2:51:17:AC:1F:D0:66:43:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cWAcC4sTzBIQF_bSUResH9BmQ0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/7drqns0DRBMek9j2kvuT6DWrsQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/cWAcC4sTzBIQF_bSUResH9BmQ0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:b180::/32
Signature Algorithm: sha256WithRSAEncryption
87:72:27:41:29:0f:1e:a4:17:81:0c:ff:ba:aa:e7:58:c2:f5:
f5:85:54:d7:7c:e5:86:ef:c9:d0:2d:c0:42:38:c5:b5:b1:08:
1a:6e:d5:2c:b9:15:2b:94:2e:5b:c3:5f:06:57:7b:71:56:d7:
cf:55:7e:6e:5e:d1:7c:2f:ef:c0:8b:c2:f5:e5:a1:db:00:85:
08:1f:d6:b6:67:4c:ad:3c:57:d4:56:87:e7:1b:bd:42:b5:6a:
bd:e8:31:b1:46:46:fd:a4:37:89:34:00:df:fe:e4:0e:40:d4:
f7:70:18:92:ea:c6:99:86:5c:16:35:62:8d:c0:2c:0a:20:17:
68:eb:c2:00:e2:a8:6b:e9:d0:3c:dd:65:c2:47:84:61:df:6d:
e0:66:4d:3d:55:9a:a4:60:53:b3:fe:08:f4:cc:e2:96:e9:35:
d7:f8:6c:eb:6d:24:82:ab:54:90:22:b7:a6:f6:d9:ed:60:d2:
3a:bd:35:04:47:1b:19:75:3a:df:fb:7a:e2:5b:c5:65:c4:7d:
6f:0f:fe:39:79:a6:cc:42:7e:75:4f:77:e3:27:12:0e:d9:8a:
04:75:6b:bd:fc:3b:53:7d:bf:71:66:eb:90:ce:c0:21:ec:6a:
52:5f:ba:aa:73:f9:5e:80:44:29:04:8d:be:da:75:0d:b7:e7:
b0:cb:67:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:27 2023 by rpki-client on console-fra.rpki-client.org