Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/07ce7e-4641-4985-9845-1a007157d59a/1/bmF0bqZsJZ6zzbQY9bUg1EzG51Q.roa
File: bmF0bqZsJZ6zzbQY9bUg1EzG51Q.roa (raw, json)
Hash identifier: F54K5ICyProAYJzFaYiepmOQ7tP+m5nJ1MK6vdLMoDY=
Subject key identifier: 6E:61:74:6E:A6:6C:25:9E:B3:CD:B4:18:F5:B5:20:D4:4C:C6:E7:54
Certificate issuer: /CN=eb3d6fe787c50553b07317112e19e65b4f675931
Certificate serial: 05A937BD
Authority key identifier: EB:3D:6F:E7:87:C5:05:53:B0:73:17:11:2E:19:E6:5B:4F:67:59:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6z1v54fFBVOwcxcRLhnmW09nWTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/07ce7e-4641-4985-9845-1a007157d59a/1/bmF0bqZsJZ6zzbQY9bUg1EzG51Q.roa
Signing time: Sat 01 Jan 2022 07:02:40 +0000
ROA not before: Sat 01 Jan 2022 07:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38974
IP address blocks: 2001:678:cf8::/48 maxlen: 48
2001:67c:1708::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94975933 (0x5a937bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb3d6fe787c50553b07317112e19e65b4f675931
Validity
Not Before: Jan 1 07:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e61746ea66c259eb3cdb418f5b520d44cc6e754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2e:d5:ad:cf:e1:a2:f3:b2:11:1d:07:b6:db:
c5:c1:40:17:1b:34:cc:35:e0:c4:45:d5:63:7d:78:
ad:6d:b1:b1:d7:a7:13:51:18:9a:3b:75:7f:e9:c7:
27:be:0a:04:8a:45:e2:97:25:db:fc:58:d9:06:2f:
17:6d:65:a0:9b:4d:08:7b:bd:96:70:73:2a:6b:be:
80:8c:a6:12:a3:02:73:aa:61:a0:de:18:34:7d:a5:
58:b8:e6:db:b7:c1:5a:4d:41:5d:7d:43:35:50:59:
c2:16:8d:40:ea:7d:b3:95:dd:36:ba:fc:69:7d:e7:
0b:de:c0:a8:fd:75:d0:7f:b5:fb:c1:ac:42:62:22:
f9:43:08:9d:23:23:b7:2d:9e:cd:c4:b9:0a:98:f9:
b2:01:ad:a9:6b:de:04:c7:f7:32:8e:fc:e5:98:bb:
ab:4a:e9:45:8a:60:b4:8e:93:c0:d1:5a:1b:63:36:
3d:bd:a1:35:23:db:87:bc:a1:89:5a:0e:e0:b5:4e:
62:08:15:6a:3e:c1:48:9d:38:3b:a1:82:8c:01:d4:
bb:0e:02:8d:76:2a:c8:71:ab:f4:a4:97:0c:b8:ab:
6d:01:44:02:79:ad:6b:8d:91:e5:d3:5f:a3:b0:cf:
91:47:3f:82:b6:f1:17:cd:9f:de:18:bf:19:5f:f0:
23:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:61:74:6E:A6:6C:25:9E:B3:CD:B4:18:F5:B5:20:D4:4C:C6:E7:54
X509v3 Authority Key Identifier:
keyid:EB:3D:6F:E7:87:C5:05:53:B0:73:17:11:2E:19:E6:5B:4F:67:59:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6z1v54fFBVOwcxcRLhnmW09nWTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/07ce7e-4641-4985-9845-1a007157d59a/1/bmF0bqZsJZ6zzbQY9bUg1EzG51Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/07ce7e-4641-4985-9845-1a007157d59a/1/6z1v54fFBVOwcxcRLhnmW09nWTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:cf8::/48
2001:67c:1708::/48
Signature Algorithm: sha256WithRSAEncryption
19:44:47:53:9f:3a:70:59:71:e1:a0:75:ee:40:11:d8:00:cc:
d1:3d:99:4c:13:a9:10:20:f1:66:b2:84:1a:51:d1:6b:d4:d0:
16:1f:8c:29:fe:82:cd:7b:0d:4f:51:91:be:3e:3f:dc:34:e3:
01:3c:1d:7a:5d:a2:e0:95:08:65:da:19:05:f8:a0:db:d8:76:
f9:88:0c:5b:e5:54:af:f3:90:00:a5:cd:d2:e9:9e:41:31:f1:
90:d1:1e:bb:a4:27:12:da:35:4f:4f:94:07:0c:83:2e:56:4b:
b0:f9:16:46:b0:99:c9:8d:31:3e:1e:84:33:71:cd:7a:cc:18:
e9:17:80:b5:ab:0a:2d:f0:b6:96:b3:01:64:c6:39:1b:9a:06:
96:37:0e:1f:4f:82:cb:9b:e6:f5:49:ea:a2:a0:e6:7d:95:06:
f6:e3:23:f9:b8:6f:39:09:2b:be:5f:3a:79:f9:6c:13:95:d1:
3d:cd:5c:e7:a8:3f:68:db:cd:fc:ed:6e:b9:ee:79:8e:cd:e6:
a0:ae:a3:7f:b8:1f:43:da:e8:fd:b0:75:5c:bc:1c:af:76:8c:
a3:4a:cf:cd:7b:2f:05:17:f1:8c:0e:1d:34:ba:ac:2a:91:e1:
90:16:5d:85:06:e0:19:aa:8f:59:46:45:45:df:86:a5:cc:56:
e7:e3:3b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:17 2023 by rpki-client on console-ams.rpki-client.org