Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/be9311-66d8-4c19-8267-3c529bf62e54/1/Nup1FNbdXAQWB5z3_EMQ4PKLBJE.roa
File: Nup1FNbdXAQWB5z3_EMQ4PKLBJE.roa (raw, json)
Hash identifier: 7XPVc7xt0UNdHBeoGLTSE3OtyHsHZ0XDDdjMV4ls2CY=
Subject key identifier: 36:EA:75:14:D6:DD:5C:04:16:07:9C:F7:FC:43:10:E0:F2:8B:04:91
Certificate issuer: /CN=c07750b83111d4171bbf55ca02322c1a0dc0ac32
Certificate serial: 71F534
Authority key identifier: C0:77:50:B8:31:11:D4:17:1B:BF:55:CA:02:32:2C:1A:0D:C0:AC:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHdQuDER1Bcbv1XKAjIsGg3ArDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/be9311-66d8-4c19-8267-3c529bf62e54/1/Nup1FNbdXAQWB5z3_EMQ4PKLBJE.roa
Signing time: Sat 01 Jan 2022 03:54:19 +0000
ROA not before: Sat 01 Jan 2022 03:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207575
IP address blocks: 2001:67c:2d30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7468340 (0x71f534)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c07750b83111d4171bbf55ca02322c1a0dc0ac32
Validity
Not Before: Jan 1 03:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36ea7514d6dd5c0416079cf7fc4310e0f28b0491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:79:29:3c:37:32:9c:41:b9:10:29:a6:e2:
1f:75:f4:0f:5c:88:ae:9e:ea:ae:65:e2:64:44:ed:
05:80:bc:f4:80:42:24:79:ad:2f:2a:e3:c0:cc:6c:
58:81:a0:5a:3d:5c:d3:a9:0c:a3:26:5c:63:94:e3:
26:92:b3:b0:2b:ad:f3:9d:b1:ce:e2:b3:df:58:65:
f8:82:69:6b:7d:d1:41:a4:08:03:56:c7:fb:ad:81:
bd:02:2d:35:a6:5b:81:59:56:48:f0:44:bd:5e:dd:
75:6a:55:a7:2f:8d:5c:da:90:9f:3d:ca:f1:6e:78:
0a:07:6c:79:0b:d9:1d:6e:43:96:b4:3c:14:4b:8b:
e8:cf:7d:af:6b:32:e2:5b:b1:c6:71:ce:bd:18:6d:
d3:f7:2d:4e:69:f8:62:fa:11:ea:b2:53:2f:db:c0:
7e:a0:2a:c3:0a:ac:83:90:e0:5a:1e:77:99:a0:da:
7f:a4:ab:31:1f:57:23:1b:d0:05:12:2b:84:5a:bd:
42:45:19:4d:e9:06:29:f6:27:37:85:ea:bc:01:56:
a1:b4:01:03:03:55:4e:cb:07:d1:84:39:c9:32:2f:
91:1d:2c:4a:cb:83:8c:ac:2a:36:ac:f9:64:f4:15:
6a:a4:28:94:9d:af:01:03:7a:61:af:99:13:4d:71:
bf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EA:75:14:D6:DD:5C:04:16:07:9C:F7:FC:43:10:E0:F2:8B:04:91
X509v3 Authority Key Identifier:
keyid:C0:77:50:B8:31:11:D4:17:1B:BF:55:CA:02:32:2C:1A:0D:C0:AC:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHdQuDER1Bcbv1XKAjIsGg3ArDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/be9311-66d8-4c19-8267-3c529bf62e54/1/Nup1FNbdXAQWB5z3_EMQ4PKLBJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/be9311-66d8-4c19-8267-3c529bf62e54/1/wHdQuDER1Bcbv1XKAjIsGg3ArDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d30::/48
Signature Algorithm: sha256WithRSAEncryption
04:25:1a:7f:63:9c:b5:36:6b:f1:41:c6:df:66:f5:58:71:cd:
77:31:92:63:52:cf:af:99:9a:e1:d8:74:11:b2:6d:4d:00:cb:
31:40:53:d9:ea:fb:cd:e3:45:5f:04:92:ca:d8:fb:89:ea:3a:
55:15:32:9a:d1:f0:22:a1:1b:09:be:5b:24:3d:e5:fb:25:69:
c5:39:be:fa:df:35:a0:7d:c4:9b:e5:bc:5a:aa:7a:90:34:50:
a2:02:15:87:78:0c:4e:39:67:b0:98:9e:c1:af:1f:e9:af:a0:
9b:3e:a1:2d:f0:6a:20:c2:ad:f6:53:7d:18:fb:b7:47:cb:83:
5d:50:86:a5:05:f5:62:23:07:c7:8b:ae:9a:3d:03:8a:f4:ae:
bb:1a:e9:b3:5d:23:af:76:01:43:c2:1e:ed:c2:a2:ea:f2:f8:
1f:f6:13:20:6b:32:87:66:f2:30:c0:6e:71:2f:dc:49:74:b0:
fe:e8:da:71:5b:c2:b2:33:1a:be:05:9e:32:b6:48:50:10:0a:
23:41:cb:1a:e3:44:b8:33:ec:44:ee:5c:ef:30:32:10:8c:fc:
3a:ca:79:2a:f5:66:49:cb:c9:51:01:03:5f:e2:d1:6b:da:9b:
59:de:6c:49:dc:4c:25:d3:53:96:07:70:88:c1:ed:8b:0a:51:
08:bd:db:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:41 2024 by rpki-client on console-ams.rpki-client.org