Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/jekWbDhVyQtPYsmCUoJy92jUhu0.roa
File: jekWbDhVyQtPYsmCUoJy92jUhu0.roa (raw, json)
Hash identifier: AKxCyvMY1fDMqlXxzLTy4VVHceT8/Qru5lnohuc7YmM=
Subject key identifier: 8D:E9:16:6C:38:55:C9:0B:4F:62:C9:82:52:82:72:F7:68:D4:86:ED
Certificate issuer: /CN=eebb4c0b4af615c85a3cdcded4b7ebb666311b48
Certificate serial: 05F62724
Authority key identifier: EE:BB:4C:0B:4A:F6:15:C8:5A:3C:DC:DE:D4:B7:EB:B6:66:31:1B:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rtMC0r2FchaPNze1LfrtmYxG0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/jekWbDhVyQtPYsmCUoJy92jUhu0.roa
Signing time: Sat 01 Jan 2022 02:56:45 +0000
ROA not before: Sat 01 Jan 2022 02:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204911
IP address blocks: 2001:678:a40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100017956 (0x5f62724)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebb4c0b4af615c85a3cdcded4b7ebb666311b48
Validity
Not Before: Jan 1 02:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8de9166c3855c90b4f62c982528272f768d486ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:96:6e:92:d5:45:de:cd:42:40:e6:40:94:8a:
36:34:3b:58:63:85:ba:1d:43:31:25:ca:13:c9:e4:
a7:c6:78:11:ab:bc:64:b7:94:fb:0d:b7:df:a0:c3:
71:41:57:c4:2f:af:ad:aa:80:67:ef:31:18:a6:f0:
bc:ed:99:83:c6:c0:62:53:e3:3b:2f:57:9a:49:12:
45:46:4f:55:03:b6:d2:06:a6:46:06:ed:33:cd:0c:
68:c2:0a:a8:35:a4:9e:a8:2d:6d:9e:bd:4e:9d:dd:
1d:ae:88:10:13:d9:18:c8:86:0a:1a:39:7c:71:3c:
54:3a:2e:91:04:eb:b1:d0:67:a9:d0:f7:06:c1:da:
a4:2b:f8:c5:45:c6:ef:5c:e4:e4:ec:3c:d6:55:99:
22:50:75:5a:be:5b:1c:df:b2:2a:32:8b:ac:48:df:
72:52:9e:c5:3f:08:0c:24:c6:86:e4:89:94:16:24:
a9:37:f6:80:77:29:cd:a9:1d:d5:ec:06:e1:d8:68:
bc:1f:a8:89:2a:86:3c:7e:e4:61:d3:28:64:be:6e:
e5:1d:67:d3:e6:6b:6d:46:1b:1d:13:97:62:74:2e:
50:98:cb:0b:34:6e:e1:a5:db:6e:23:f8:f6:ee:37:
c1:d3:9f:45:ce:6c:d9:63:dd:84:68:ec:95:e0:58:
7c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E9:16:6C:38:55:C9:0B:4F:62:C9:82:52:82:72:F7:68:D4:86:ED
X509v3 Authority Key Identifier:
keyid:EE:BB:4C:0B:4A:F6:15:C8:5A:3C:DC:DE:D4:B7:EB:B6:66:31:1B:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rtMC0r2FchaPNze1LfrtmYxG0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/jekWbDhVyQtPYsmCUoJy92jUhu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/7rtMC0r2FchaPNze1LfrtmYxG0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a40::/48
Signature Algorithm: sha256WithRSAEncryption
99:1f:8d:ab:ce:2b:e0:d9:87:82:0b:07:ee:b9:c2:9c:47:d3:
4a:07:4d:f2:30:8a:3c:d6:f5:80:23:a5:43:b6:a6:6a:74:d8:
10:eb:ef:e5:a6:ae:c6:63:ff:ce:4b:3b:01:80:09:51:1d:8c:
a9:90:af:05:ab:ce:59:0d:c1:d5:62:f5:1c:94:82:86:76:38:
d0:35:b1:ed:09:0d:6a:b8:6e:e2:90:1c:62:93:e1:74:bb:1d:
72:32:ab:37:76:78:a8:9e:fe:94:1e:76:a6:59:dc:a9:d6:59:
e1:3a:dd:e2:41:2e:02:f6:57:7a:5b:af:a0:20:82:27:70:b5:
a0:20:ae:70:f1:7b:e1:cf:3c:ce:79:31:b6:86:5a:16:67:da:
bf:b9:65:71:f1:bd:1e:f3:a0:d9:12:8a:17:9c:92:7a:58:9a:
60:9f:0b:54:06:c4:75:62:8c:48:0e:55:16:14:c3:42:02:62:
0d:c3:af:19:ee:50:54:5f:e6:4f:b8:b2:04:55:e2:bf:7c:1a:
87:2b:25:81:3c:11:fd:1f:9c:bb:7a:37:d0:22:2e:e0:42:17:
cb:99:c0:0f:43:e2:f8:d5:26:e1:db:93:2f:bd:a8:3a:d3:70:
38:29:38:1c:ae:cf:3c:f1:30:8f:70:65:9f:39:8e:9a:3b:28:
6a:db:aa:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:52 2023 by rpki-client on console-fra.rpki-client.org