Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/05e109-2347-4a7c-8adb-d1981dd446cf/1/F33enDMrE_63eENTzf2NuRgVQnk.roa
File: F33enDMrE_63eENTzf2NuRgVQnk.roa (raw, json)
Hash identifier: IREBkkbStFyY4HXhv0Jd1AWoNbwq1l8uTE0a/y/PvqY=
Subject key identifier: 17:7D:DE:9C:33:2B:13:FE:B7:78:43:53:CD:FD:8D:B9:18:15:42:79
Certificate issuer: /CN=4121c7fb04153829d96a1c038f0df714da595404
Certificate serial: 04E279B6
Authority key identifier: 41:21:C7:FB:04:15:38:29:D9:6A:1C:03:8F:0D:F7:14:DA:59:54:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSHH-wQVOCnZahwDjw33FNpZVAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/05e109-2347-4a7c-8adb-d1981dd446cf/1/F33enDMrE_63eENTzf2NuRgVQnk.roa
Signing time: Sat 01 Jan 2022 12:03:04 +0000
ROA not before: Sat 01 Jan 2022 12:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213032
IP address blocks: 2001:678:dc8::/48 maxlen: 48
2001:67c:27c4::/48 maxlen: 48
2001:678:dc4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81951158 (0x4e279b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4121c7fb04153829d96a1c038f0df714da595404
Validity
Not Before: Jan 1 12:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=177dde9c332b13feb7784353cdfd8db918154279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:54:62:8f:a8:28:df:01:28:ba:1c:05:4b:
2a:c7:f7:e7:98:77:85:db:2d:8b:61:6c:45:3b:5d:
f3:43:6c:f1:79:7b:0f:9b:04:7d:13:58:6e:38:37:
3a:b6:de:23:15:19:3c:ed:74:9c:3f:ac:1c:e4:0b:
6c:58:e1:4b:62:dd:e7:1d:30:a7:13:4a:ba:42:be:
d5:1d:6b:dd:af:9e:86:53:d8:79:bf:33:33:3c:f6:
c3:76:c7:00:e5:7f:f3:79:27:2a:17:7b:43:b2:2f:
28:27:e8:c2:a8:f3:d6:65:aa:b2:28:50:1b:c6:d3:
99:c8:0b:24:67:1a:8e:84:1e:e8:d6:56:02:47:a8:
5d:5a:16:b0:1d:2a:5a:cc:2f:c6:2c:be:b0:d5:e4:
6e:29:d6:45:eb:7a:24:4c:ad:29:aa:ea:d8:41:12:
6b:4b:e1:25:a8:f7:bb:73:93:53:1e:41:20:0f:ee:
42:cf:f0:56:97:7b:54:1c:82:72:3c:f5:07:26:70:
ca:3e:49:6e:67:52:92:55:be:85:0d:40:e9:3f:38:
38:d7:3a:c9:51:bc:af:60:fd:74:0c:ca:a1:0f:5d:
db:08:92:7a:2d:4d:0c:49:59:56:fc:49:db:b3:f7:
3d:ec:93:68:77:9d:19:4f:65:93:53:c5:42:ec:02:
0e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7D:DE:9C:33:2B:13:FE:B7:78:43:53:CD:FD:8D:B9:18:15:42:79
X509v3 Authority Key Identifier:
keyid:41:21:C7:FB:04:15:38:29:D9:6A:1C:03:8F:0D:F7:14:DA:59:54:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSHH-wQVOCnZahwDjw33FNpZVAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/05e109-2347-4a7c-8adb-d1981dd446cf/1/F33enDMrE_63eENTzf2NuRgVQnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/05e109-2347-4a7c-8adb-d1981dd446cf/1/QSHH-wQVOCnZahwDjw33FNpZVAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:dc4::/48
2001:678:dc8::/48
2001:67c:27c4::/48
Signature Algorithm: sha256WithRSAEncryption
8a:af:80:d7:f9:5d:51:f8:ac:10:dc:f7:54:d6:9e:cc:2c:80:
dd:b7:e3:a3:ce:5d:4f:e2:10:d0:c9:1f:66:9e:d5:8b:f0:e8:
66:3d:e4:f2:c9:4d:ac:ec:f1:09:c3:de:8e:d5:2d:89:78:05:
56:69:f5:5f:dd:96:07:5a:54:96:6f:00:a2:ad:f0:1c:7c:b7:
f5:49:06:4e:88:33:75:b0:54:a3:f8:e9:1d:9b:a8:5e:10:18:
5c:fb:96:38:1f:e0:fe:20:67:a5:f3:00:fa:b7:f6:79:bd:c3:
32:22:fd:38:e8:d6:94:8c:8a:e9:89:74:93:64:8f:b0:40:6a:
8e:46:04:a5:ac:bd:5a:c0:9f:b7:cb:73:0e:85:59:61:82:68:
73:9f:74:f6:b0:b6:36:69:89:27:08:d2:ec:73:03:f3:03:8d:
a0:15:e9:b0:8f:db:96:97:da:f0:49:bb:e5:70:89:cd:66:58:
db:ad:c7:3e:e0:82:76:0d:0e:82:f4:b3:ca:e2:70:f1:1e:0d:
49:bd:00:28:5d:1c:9f:07:29:2c:ec:0e:e7:6b:22:a9:93:2f:
ca:8b:b9:20:63:9d:db:a6:42:96:f7:b9:cb:48:f5:fc:35:1c:
e2:5e:75:68:de:a8:db:dc:a4:2b:63:e3:88:1b:c8:e6:1e:7b:
89:f4:e6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:58 2024 by rpki-client on console-fra.rpki-client.org