Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/1Jg1QBVNWFp0KVdd9iWmk1mOwE0.roa
File: 1Jg1QBVNWFp0KVdd9iWmk1mOwE0.roa (raw, json)
Hash identifier: hTksBS9F0q2/hTpxkQiuNaDTa4KEfbD1NTT3DxyE0fg=
Subject key identifier: D4:98:35:40:15:4D:58:5A:74:29:57:5D:F6:25:A6:93:59:8E:C0:4D
Certificate issuer: /CN=f76be99e8be2c5400d010542bf2058bdbb88502d
Certificate serial: 07A80F
Authority key identifier: F7:6B:E9:9E:8B:E2:C5:40:0D:01:05:42:BF:20:58:BD:BB:88:50:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92vpnovixUANAQVCvyBYvbuIUC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/1Jg1QBVNWFp0KVdd9iWmk1mOwE0.roa
Signing time: Sat 15 Jan 2022 11:50:49 +0000
ROA not before: Sat 15 Jan 2022 11:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212925
IP address blocks: 2001:67c:8fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 501775 (0x7a80f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f76be99e8be2c5400d010542bf2058bdbb88502d
Validity
Not Before: Jan 15 11:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4983540154d585a7429575df625a693598ec04d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c1:7d:fa:cb:39:cd:bb:a4:f2:e4:02:5f:4b:
0b:e0:fd:4f:27:de:76:3f:42:55:1e:92:01:6d:e1:
1d:34:8f:28:2f:ef:47:73:92:65:e2:8d:9a:87:f2:
ae:88:82:17:3f:df:2d:be:c9:f1:cc:c5:1e:1f:f8:
00:a0:0f:b9:f2:16:ee:74:3e:1d:e8:52:47:64:82:
96:3f:1a:ab:5e:c1:a6:7a:ba:5d:bf:16:1a:e1:53:
d9:3b:a6:80:1d:ca:5b:43:ae:6a:80:24:e0:5b:68:
b4:dc:27:73:ed:f3:1c:1e:83:fc:18:ef:53:01:2e:
53:fe:71:d7:7c:0d:ae:6e:58:a1:57:06:35:a7:fc:
13:da:3d:33:cf:57:a9:b8:48:4c:97:3b:06:71:76:
a2:69:91:95:38:8c:9e:dc:f5:45:48:f5:fb:ff:bd:
b8:30:2c:a8:42:12:24:c0:3b:11:c4:48:0e:f6:c9:
87:d5:a2:4d:ce:da:af:4f:3c:35:2c:9d:e9:cf:9a:
26:ea:7f:db:ee:7b:a2:20:1a:84:3c:a3:64:0e:ac:
39:be:3d:d4:57:f2:13:4d:a4:a7:81:a0:56:da:94:
41:ea:22:bc:fe:f7:46:c0:90:ec:5f:50:aa:29:3b:
0f:78:0e:ce:17:76:fe:18:aa:72:8b:a3:41:b9:db:
9d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:98:35:40:15:4D:58:5A:74:29:57:5D:F6:25:A6:93:59:8E:C0:4D
X509v3 Authority Key Identifier:
keyid:F7:6B:E9:9E:8B:E2:C5:40:0D:01:05:42:BF:20:58:BD:BB:88:50:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92vpnovixUANAQVCvyBYvbuIUC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/1Jg1QBVNWFp0KVdd9iWmk1mOwE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/92vpnovixUANAQVCvyBYvbuIUC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:8fc::/48
Signature Algorithm: sha256WithRSAEncryption
6e:8b:1b:e4:f4:5f:2f:74:7e:3f:38:0f:77:79:e3:86:71:74:
4a:78:ce:b5:e8:0a:47:4e:1d:c9:69:79:ee:19:2e:c8:5a:42:
27:45:eb:38:ad:2d:c8:8d:fb:f6:1e:f4:0b:d4:df:15:c6:e9:
aa:cd:82:b3:29:9e:d6:27:ed:b0:a4:98:ad:7f:de:20:f8:d4:
2c:a8:90:21:c0:f6:8c:9f:c0:44:af:5c:09:3b:a0:09:67:45:
75:c1:00:dc:c7:dc:c2:4a:f6:84:d2:cd:42:7b:ff:82:6d:fb:
dc:8c:dd:a1:4f:5a:ba:1e:8d:e5:ed:9d:fc:1d:53:e3:ec:86:
5f:89:cb:c7:38:fe:c7:d6:e8:83:eb:05:66:f4:1b:ad:ae:00:
e7:3a:2c:a5:06:73:79:36:ef:09:31:1f:44:d6:9d:23:8c:60:
02:ab:83:5a:42:3c:c0:db:85:a0:ea:7c:d9:f0:74:27:0c:9b:
1f:43:87:70:58:f1:db:86:7e:a2:e3:9f:8e:dc:58:d3:d8:32:
a2:16:10:6a:69:a6:cf:8e:6a:88:14:08:d9:b9:b7:c2:92:09:
57:b0:66:1f:d0:d5:fd:df:0a:5e:e0:a5:9a:f5:3f:1e:fe:e2:
a6:e7:77:64:24:09:a6:0e:c8:88:6c:a0:1e:f6:1b:d1:ad:de:
2b:f0:b0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:42 2024 by rpki-client on console-fra.rpki-client.org