Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/e76701-9873-4fe0-9b71-f89bcff6959f/1/myGn0O7hsG0-iW4NoHuHcB4bhc8.roa
File: myGn0O7hsG0-iW4NoHuHcB4bhc8.roa (raw, json)
Hash identifier: t8dRzXMr3TDfGxi0OuCarzyDXG2+VH/suPuaxS4nNFg=
Subject key identifier: 9B:21:A7:D0:EE:E1:B0:6D:3E:89:6E:0D:A0:7B:87:70:1E:1B:85:CF
Certificate issuer: /CN=e738a5f93064239ab4ff793df8a879e1baa8e1c7
Certificate serial: 038C7FC8
Authority key identifier: E7:38:A5:F9:30:64:23:9A:B4:FF:79:3D:F8:A8:79:E1:BA:A8:E1:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zil-TBkI5q0_3k9-Kh54bqo4cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/e76701-9873-4fe0-9b71-f89bcff6959f/1/myGn0O7hsG0-iW4NoHuHcB4bhc8.roa
Signing time: Sat 01 Jan 2022 10:59:39 +0000
ROA not before: Sat 01 Jan 2022 10:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212596
IP address blocks: 2001:678:e60::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59539400 (0x38c7fc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e738a5f93064239ab4ff793df8a879e1baa8e1c7
Validity
Not Before: Jan 1 10:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b21a7d0eee1b06d3e896e0da07b87701e1b85cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:63:92:71:6b:57:ba:31:bf:a3:a6:78:85:04:
82:6b:84:f8:f8:a7:df:e3:62:5e:9a:cd:95:9e:30:
a5:66:3c:e4:b3:8a:27:dc:78:d1:ac:b9:d1:54:97:
0c:a8:49:77:fa:10:c6:ab:f8:ba:09:bf:24:53:94:
e1:5e:5e:58:b7:f0:85:2b:0c:a9:30:fa:8a:b1:6d:
e4:84:af:3d:52:5b:e9:8a:d5:03:35:fb:b4:9f:9d:
38:3e:aa:0a:0d:0f:e1:37:42:74:13:0c:4b:55:c4:
10:b8:dc:fc:2e:d9:7e:6c:d9:3f:da:b5:fe:36:d6:
d7:44:a9:99:38:3f:6d:4c:49:ed:ed:b4:de:3d:b4:
b0:7d:bf:a6:de:fe:87:54:79:94:eb:cf:07:4d:d0:
a7:28:7f:80:44:22:cf:7f:e2:ee:4b:e1:10:a7:32:
09:20:bf:de:39:9e:dc:83:68:c8:06:44:bf:6a:59:
21:d8:4c:a6:c8:07:c9:56:a1:f5:1d:ed:6f:f6:a7:
80:b3:24:a4:17:bb:7c:d4:2f:b1:91:b8:33:41:73:
64:ae:73:29:7f:da:cb:ce:90:7b:22:2e:8c:f0:9e:
b7:31:df:70:95:9b:c4:14:81:07:cb:07:fb:64:75:
b0:07:61:6e:74:e2:57:b0:ad:2d:84:e2:dc:ea:a6:
ad:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:21:A7:D0:EE:E1:B0:6D:3E:89:6E:0D:A0:7B:87:70:1E:1B:85:CF
X509v3 Authority Key Identifier:
keyid:E7:38:A5:F9:30:64:23:9A:B4:FF:79:3D:F8:A8:79:E1:BA:A8:E1:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zil-TBkI5q0_3k9-Kh54bqo4cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/e76701-9873-4fe0-9b71-f89bcff6959f/1/myGn0O7hsG0-iW4NoHuHcB4bhc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/e76701-9873-4fe0-9b71-f89bcff6959f/1/5zil-TBkI5q0_3k9-Kh54bqo4cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:e60::/48
Signature Algorithm: sha256WithRSAEncryption
92:1a:eb:cc:51:6d:cc:80:58:e8:8e:3e:0e:01:8a:a0:86:ef:
fe:9d:ac:58:b2:a0:ed:97:cd:07:ca:7a:42:f9:1f:61:7d:e2:
7a:55:a2:62:5a:b4:1b:ba:77:f4:94:92:92:fa:e6:e7:2f:7c:
2f:a5:90:ae:41:8a:71:7c:be:c1:13:26:89:e7:11:97:ce:3c:
71:91:4c:42:c5:51:ed:fc:87:29:f9:60:4a:dd:3b:2b:6f:80:
ca:f4:57:04:65:51:46:da:4a:05:bb:4a:5d:b2:2f:b1:7a:71:
92:26:f4:ae:35:1d:ee:71:03:c7:ae:54:cd:fa:26:58:77:d9:
e9:1e:61:3d:1c:f7:37:cd:5d:5e:bc:50:0b:f4:8b:31:ec:f5:
f7:22:a2:0a:52:d2:3c:00:3f:8c:a2:d7:46:9d:3f:76:9c:ca:
55:92:1a:a6:aa:71:40:eb:0c:0c:b1:b5:5a:ae:35:ca:4d:23:
06:71:55:f0:76:61:6d:00:36:21:73:b9:ed:53:bd:d4:6f:36:
e1:04:42:e3:c6:99:6f:ad:0a:17:61:24:a7:50:34:6e:84:31:
17:ab:f0:fa:1a:81:15:1b:12:c4:af:36:71:f5:4e:e0:dd:ca:
58:89:f7:fd:a3:29:1e:20:fd:9e:1c:1f:05:d0:10:1f:f5:45:
17:d5:de:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:19 2024 by rpki-client on console-fra.rpki-client.org