Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/7keOBFLKihVkcECslqJy3W8QZyI.roa
File: 7keOBFLKihVkcECslqJy3W8QZyI.roa (raw, json)
Hash identifier: d1WajMGj7mFufuOLi9krS43rylfPhO9Uyi7txYv27Do=
Subject key identifier: EE:47:8E:04:52:CA:8A:15:64:70:40:AC:96:A2:72:DD:6F:10:67:22
Certificate issuer: /CN=32eb2b51e3748c2527402e68601a88912883a058
Certificate serial: 0B4610CE
Authority key identifier: 32:EB:2B:51:E3:74:8C:25:27:40:2E:68:60:1A:88:91:28:83:A0:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MusrUeN0jCUnQC5oYBqIkSiDoFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/7keOBFLKihVkcECslqJy3W8QZyI.roa
Signing time: Sat 01 Jan 2022 16:05:09 +0000
ROA not before: Sat 01 Jan 2022 16:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202039
IP address blocks: 2001:678:764::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189141198 (0xb4610ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32eb2b51e3748c2527402e68601a88912883a058
Validity
Not Before: Jan 1 16:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee478e0452ca8a15647040ac96a272dd6f106722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d6:2f:32:4f:73:1a:b1:a6:31:1a:48:e2:b8:
05:1e:6c:c7:40:73:be:d5:5e:f8:28:ac:24:d0:77:
f8:32:cf:91:04:22:91:0e:23:82:c3:65:4d:c6:ba:
ea:7f:d2:90:c6:1e:cf:7c:83:55:35:cd:ca:43:66:
b3:76:c7:3a:4c:99:e8:b3:77:2f:f8:3a:4f:b9:f8:
79:10:cc:fc:b8:f0:1a:4a:e8:9b:e6:ee:e3:13:c7:
1d:83:4e:cc:55:09:b2:d9:6d:00:90:85:45:8b:a8:
71:fc:ce:ee:aa:48:d8:88:66:fb:74:45:db:a2:34:
f9:5c:2a:55:53:33:f4:46:ee:16:b7:57:23:c2:70:
ba:70:b6:38:30:e2:8f:74:77:cd:db:4d:ad:4b:b0:
71:22:1f:ff:84:fa:83:f3:85:5d:0b:3a:18:80:04:
e5:c3:af:1f:4d:43:de:be:9e:ad:29:d5:fc:5c:7b:
36:4c:cc:cc:af:20:67:89:c9:4d:40:8c:83:30:59:
d9:9c:8d:3a:b4:3e:11:8a:48:88:23:d7:56:4f:4e:
88:4b:0c:d8:8f:27:49:2d:d6:11:5a:85:6a:46:04:
a7:c2:11:0f:93:6d:f5:98:17:91:b6:9f:d4:17:4b:
58:1d:6b:c1:9b:01:3f:93:b5:7f:e2:9f:73:d1:fb:
3b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:47:8E:04:52:CA:8A:15:64:70:40:AC:96:A2:72:DD:6F:10:67:22
X509v3 Authority Key Identifier:
keyid:32:EB:2B:51:E3:74:8C:25:27:40:2E:68:60:1A:88:91:28:83:A0:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MusrUeN0jCUnQC5oYBqIkSiDoFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/7keOBFLKihVkcECslqJy3W8QZyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/MusrUeN0jCUnQC5oYBqIkSiDoFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:764::/48
Signature Algorithm: sha256WithRSAEncryption
69:58:c8:de:bc:44:6e:b2:f8:cd:5c:bd:f9:02:50:f5:a5:21:
3d:d7:79:b1:32:4e:bf:4b:95:76:84:fa:b3:ef:2f:d2:71:ff:
ed:64:bc:a5:78:0e:65:6b:23:b6:17:05:ef:63:c0:61:a4:6b:
7a:50:f5:d5:43:ce:f1:22:82:fc:91:11:cc:f0:fd:39:a7:c6:
37:83:e7:30:c0:6e:b6:81:79:ce:17:b9:2f:6a:05:89:d4:4d:
01:cd:74:1a:98:70:46:0e:dc:a5:87:e2:93:14:79:4d:c7:fe:
6f:bd:b0:3b:2a:fe:de:09:53:a1:ba:c7:25:4a:b7:d4:d7:08:
d3:af:1f:24:96:06:29:9e:2a:00:93:1f:e2:64:49:f0:37:a0:
e6:ce:09:71:51:cd:dd:df:06:4e:c7:ca:9f:59:05:2a:42:70:
99:5c:ae:45:14:df:0b:9e:55:3f:3e:99:8c:9e:d2:04:e3:41:
20:5a:bb:fe:b4:89:1b:0b:b6:4f:e4:43:0a:0f:1b:25:7d:f1:
df:8c:c7:2c:65:72:ed:72:51:5e:e3:d8:10:eb:8f:7f:67:73:
b5:2f:28:3f:a9:e7:25:06:1d:42:aa:ee:fc:4a:3a:f9:e8:b3:
a7:3f:60:e3:48:09:3e:ec:70:8d:b8:d7:3a:bd:4f:42:e0:15:
2b:83:2e:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:39 2024 by rpki-client on console-fra.rpki-client.org