Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/066da9-995e-48f2-b9f1-801cab720edb/1/uhzpxMsP3F26fsVZUYXvCiV4aCc.roa
File: uhzpxMsP3F26fsVZUYXvCiV4aCc.roa (raw, json)
Hash identifier: RbwtCsKyIL9c3TQM67gsk9uGjfR7BgwKnxDjPaUSatQ=
Subject key identifier: BA:1C:E9:C4:CB:0F:DC:5D:BA:7E:C5:59:51:85:EF:0A:25:78:68:27
Certificate issuer: /CN=efa4772463cdbe12b73b16ad0d2516f07d63830d
Certificate serial: 0969ECD0
Authority key identifier: EF:A4:77:24:63:CD:BE:12:B7:3B:16:AD:0D:25:16:F0:7D:63:83:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/76R3JGPNvhK3OxatDSUW8H1jgw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/066da9-995e-48f2-b9f1-801cab720edb/1/uhzpxMsP3F26fsVZUYXvCiV4aCc.roa
Signing time: Mon 11 Apr 2022 14:02:46 +0000
ROA not before: Mon 11 Apr 2022 14:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 2001:67c:2ea0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157936848 (0x969ecd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efa4772463cdbe12b73b16ad0d2516f07d63830d
Validity
Not Before: Apr 11 14:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba1ce9c4cb0fdc5dba7ec5595185ef0a25786827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:82:44:1a:07:7b:f6:d0:17:29:82:9b:03:50:
98:7f:4c:63:de:f8:f2:be:5d:6c:7e:0b:80:d2:9a:
34:f7:56:77:34:6c:47:c3:70:e7:ca:ee:87:08:8f:
66:2b:b7:1e:ad:af:18:50:44:6d:54:ee:e9:74:01:
36:f9:a2:9b:29:93:bf:3a:2c:2d:54:5f:ca:4e:ce:
49:41:5b:99:87:45:f6:70:0a:e3:8e:b8:2c:41:64:
2b:b0:a8:b8:99:67:47:22:2e:98:cf:f6:4f:6a:35:
eb:85:53:d1:2e:cf:ac:7c:cb:42:8c:a4:25:17:b4:
7f:a6:5f:f7:e3:b4:4f:1e:37:8f:5f:73:57:42:97:
88:b7:b2:2e:bf:18:3e:3d:64:86:f6:43:3b:70:e2:
05:21:ee:a8:29:2c:08:8d:4d:fe:48:3e:33:3e:48:
d1:c9:fb:90:e0:c7:ba:d0:d8:e9:52:54:eb:18:0f:
72:3c:aa:f5:ea:28:65:3d:2f:c5:0f:e0:2f:7f:d2:
c1:29:b0:de:66:87:47:d3:83:32:e9:a3:f6:f9:13:
bf:6f:86:9b:fc:b9:ea:bd:71:39:d1:25:9d:f0:f0:
cc:03:15:b2:cd:61:33:ec:c8:50:74:e5:57:a9:70:
db:f2:dc:4e:65:15:ea:9f:a4:f3:fd:3c:b1:3f:4a:
65:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1C:E9:C4:CB:0F:DC:5D:BA:7E:C5:59:51:85:EF:0A:25:78:68:27
X509v3 Authority Key Identifier:
keyid:EF:A4:77:24:63:CD:BE:12:B7:3B:16:AD:0D:25:16:F0:7D:63:83:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76R3JGPNvhK3OxatDSUW8H1jgw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/066da9-995e-48f2-b9f1-801cab720edb/1/uhzpxMsP3F26fsVZUYXvCiV4aCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/066da9-995e-48f2-b9f1-801cab720edb/1/76R3JGPNvhK3OxatDSUW8H1jgw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ea0::/48
Signature Algorithm: sha256WithRSAEncryption
85:59:97:4b:15:f0:f0:5b:49:ad:e4:51:9c:f0:a6:f1:99:fa:
bd:e9:d0:38:b9:5b:5a:c5:1d:e6:06:18:69:e1:b6:b7:3e:59:
8a:ab:95:5d:ff:18:8f:65:ab:a4:ec:b7:e6:2d:3b:5e:7f:1d:
d3:84:5f:7b:26:80:56:02:d6:45:66:35:fe:eb:f1:57:70:83:
85:42:82:7d:c0:b1:3e:9f:34:ce:06:8e:87:dd:0c:83:a1:51:
91:f6:62:b3:b3:4f:55:fe:c6:df:ac:b4:0b:1b:11:0f:71:20:
39:e8:6e:15:c2:b2:a3:8d:62:11:6e:45:5f:7a:d1:46:7a:a2:
d2:9d:9b:99:5a:6a:f7:a9:4b:4e:37:93:1f:d5:23:0c:5c:68:
3f:84:0a:b3:52:54:bc:8b:25:64:f4:84:a4:43:35:40:63:1e:
2f:80:8e:50:16:f5:c9:9d:4c:4a:c8:3d:a5:ef:3c:26:8d:ee:
34:6e:85:d1:5e:0a:cb:68:cd:ce:86:58:de:8d:6d:05:c0:b7:
a5:53:10:ff:f6:d3:9e:13:4c:71:9c:37:d9:a5:89:f4:a4:38:
5c:7e:f7:ee:a8:5e:30:60:30:0c:d2:09:e3:b8:d6:cf:7c:be:
f0:3e:7f:11:27:51:5a:67:54:37:3e:5a:f8:9b:86:63:d2:81:
c6:ab:56:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org