Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/npqEQ82hL1JEiPOqBXn_Z7-eR64.roa
File: npqEQ82hL1JEiPOqBXn_Z7-eR64.roa (raw, json)
Hash identifier: 0jP2QpEbt1PX/G055QSHHQdNk47LkM2wnWtHJkP8tS8=
Subject key identifier: 9E:9A:84:43:CD:A1:2F:52:44:88:F3:AA:05:79:FF:67:BF:9E:47:AE
Certificate issuer: /CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Certificate serial: 15EE8B66
Authority key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/npqEQ82hL1JEiPOqBXn_Z7-eR64.roa
Signing time: Sat 01 Jan 2022 06:59:22 +0000
ROA not before: Sat 01 Jan 2022 06:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15169
IP address blocks: 2a00:79e1:380::/42 maxlen: 48
2a00:79e1:f00::/40 maxlen: 48
2a00:79e0::/31 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367954790 (0x15ee8b66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Validity
Not Before: Jan 1 06:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e9a8443cda12f524488f3aa0579ff67bf9e47ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c7:b2:89:f7:74:d1:5d:50:9a:8e:a7:ad:27:
7f:e3:1c:7b:0c:fb:9b:6b:72:93:67:2e:56:9a:38:
a3:c3:3f:39:62:7d:8c:ed:a5:f9:ed:84:f3:72:e5:
9d:bb:71:33:7c:54:3e:bb:c7:08:b9:94:47:2a:b8:
af:01:7a:96:8e:24:95:d8:ba:39:dd:e3:23:e3:df:
e2:2d:3f:e2:28:16:bd:d2:f9:92:8f:58:cc:88:42:
9c:83:82:bd:c6:14:84:1c:89:0c:9c:f6:fe:ed:32:
ad:9a:a0:5b:f7:52:21:a0:e8:b1:b5:89:59:f7:8a:
0d:78:d0:05:bc:de:ae:5f:29:63:62:f0:3d:cd:7f:
63:88:aa:1c:18:82:3a:7c:7b:72:48:d3:41:61:49:
f9:4e:d3:57:55:5b:e3:34:fc:8d:27:2d:8d:27:bf:
14:fa:fb:20:9e:c6:4a:3b:4a:d1:95:a4:76:fc:5f:
88:94:23:5f:43:46:41:a2:8b:c9:33:80:b0:aa:e2:
54:40:fc:cf:62:d3:43:a4:8e:84:f4:4e:d0:5c:06:
89:31:b4:70:1c:d0:8b:13:25:4a:b6:4c:e0:c3:9b:
1d:6a:b0:d3:4c:56:5e:61:a6:20:08:a6:4a:55:15:
83:12:ac:d3:a6:82:ce:f9:3d:bd:8c:cc:dc:94:f9:
ed:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9A:84:43:CD:A1:2F:52:44:88:F3:AA:05:79:FF:67:BF:9E:47:AE
X509v3 Authority Key Identifier:
keyid:C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/npqEQ82hL1JEiPOqBXn_Z7-eR64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:79e0::/31
Signature Algorithm: sha256WithRSAEncryption
9d:e2:c9:43:59:b8:c8:b4:9a:3c:95:b5:b7:82:99:b2:63:2e:
cb:f7:e1:07:77:05:dd:2f:fa:69:6e:ee:cb:ad:3d:b3:ff:97:
a7:89:ba:50:5e:a8:a4:8f:af:5c:bd:37:3c:39:89:3d:2f:0c:
96:08:4e:fd:81:51:db:a9:46:42:ec:71:25:51:1a:e4:62:c1:
38:30:7d:4c:17:ce:05:31:be:a0:7b:12:19:0e:09:6c:07:cc:
04:2e:48:5e:a4:96:53:d8:39:87:31:c9:79:b7:bc:4e:3d:8a:
a8:9e:6f:86:78:e0:86:a4:39:ab:69:9b:c5:dc:59:37:17:b7:
15:8c:25:c3:68:b0:cb:53:a3:2f:c7:d2:a7:ac:04:30:5e:b4:
fd:1c:87:0a:00:a6:27:c9:ee:39:e9:0d:01:63:55:5a:39:45:
fe:d9:cb:0d:16:31:fd:14:61:72:f0:76:53:63:16:b2:5a:cf:
af:05:50:88:66:f0:81:f8:7a:15:8a:24:97:8d:80:b6:1e:5e:
d6:0f:b0:18:aa:05:9f:7b:24:e7:99:f8:12:3f:a2:d3:bf:c9:
63:9b:45:4d:18:29:2d:24:07:d4:72:a0:e8:ed:ca:0f:33:6b:
09:d2:d2:02:0f:db:f8:29:97:78:ea:31:30:90:33:6c:cd:5d:
3d:95:b8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:55 2024 by rpki-client on console-fra.rpki-client.org