Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/f83620-99ac-4a41-ad0c-be01d69c033b/1/g3qP62aWh5JToH85f5QfpQ_s78Y.roa
File: g3qP62aWh5JToH85f5QfpQ_s78Y.roa (raw, json)
Hash identifier: ZdFeoPjwHSqiJK3Lg5mDiuXb4WPFsUoX1eHCXFyUuvc=
Subject key identifier: 83:7A:8F:EB:66:96:87:92:53:A0:7F:39:7F:94:1F:A5:0F:EC:EF:C6
Certificate issuer: /CN=247bf0b9d7298a16b986fd6954f0a445f2e2103c
Certificate serial: 062DF70D
Authority key identifier: 24:7B:F0:B9:D7:29:8A:16:B9:86:FD:69:54:F0:A4:45:F2:E2:10:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHvwudcpiha5hv1pVPCkRfLiEDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/f83620-99ac-4a41-ad0c-be01d69c033b/1/g3qP62aWh5JToH85f5QfpQ_s78Y.roa
Signing time: Sat 01 Jan 2022 11:04:19 +0000
ROA not before: Sat 01 Jan 2022 11:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207748
IP address blocks: 2001:67c:2f68::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103675661 (0x62df70d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247bf0b9d7298a16b986fd6954f0a445f2e2103c
Validity
Not Before: Jan 1 11:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=837a8feb6696879253a07f397f941fa50fecefc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b4:0d:31:9a:05:8a:14:59:a7:8d:e0:d4:c4:
bd:a8:99:38:c1:36:a7:8b:aa:63:7f:6b:b6:b1:53:
07:8a:01:95:f4:36:a2:f4:a4:ec:dd:48:84:98:0c:
ec:9c:36:14:cb:df:0b:20:af:32:15:dd:d7:a0:19:
bb:63:2a:ae:08:51:8b:3f:b3:52:c0:e1:fe:c5:cf:
1e:23:9a:f6:21:34:92:94:12:2b:1b:04:59:79:5c:
7b:af:4c:3b:9c:fc:d1:02:09:3d:8c:2f:ea:18:d9:
7d:c4:54:55:bc:c2:92:53:73:99:76:8f:31:63:0f:
df:55:30:aa:d3:29:61:9a:2f:5e:86:65:16:36:bd:
57:6a:0e:3a:b4:e6:9c:f7:76:3c:1f:8d:ab:e9:a7:
14:93:67:54:ee:24:29:66:37:0d:f9:76:0a:d7:38:
0f:75:8b:a4:c5:dc:8c:29:b7:12:17:40:4d:06:6e:
df:99:90:bb:25:9b:4b:9a:02:a9:a1:b6:93:3c:fd:
6d:8d:0b:2a:70:31:5e:3e:07:3f:16:58:83:cd:90:
ea:f5:b5:f3:5d:ee:77:db:a1:d3:dd:bb:56:05:26:
2c:20:03:92:d8:c3:07:53:32:b7:f8:5c:0b:43:a5:
ab:fb:cb:9c:1a:9d:db:c6:79:92:f6:4f:0d:64:30:
95:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7A:8F:EB:66:96:87:92:53:A0:7F:39:7F:94:1F:A5:0F:EC:EF:C6
X509v3 Authority Key Identifier:
keyid:24:7B:F0:B9:D7:29:8A:16:B9:86:FD:69:54:F0:A4:45:F2:E2:10:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHvwudcpiha5hv1pVPCkRfLiEDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/f83620-99ac-4a41-ad0c-be01d69c033b/1/g3qP62aWh5JToH85f5QfpQ_s78Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/f83620-99ac-4a41-ad0c-be01d69c033b/1/JHvwudcpiha5hv1pVPCkRfLiEDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2f68::/48
Signature Algorithm: sha256WithRSAEncryption
b5:b3:62:dc:6b:d7:6c:2f:2f:f2:75:72:31:7f:40:d9:d8:14:
aa:9c:fd:b4:0d:d0:e3:07:d3:9f:45:5e:85:1f:56:d9:39:8b:
5b:23:aa:6d:08:35:13:47:c6:f9:5a:02:84:d6:3a:42:b7:a9:
4f:cc:87:c0:81:07:39:7c:dc:7e:77:d0:cb:73:97:e1:80:49:
9a:cf:cc:59:d3:2c:ad:3d:c7:dc:1a:7a:53:4b:1a:e8:86:df:
94:d9:e0:b3:25:e8:d4:10:47:17:9d:5f:a5:6d:3c:e6:5f:74:
e1:ef:d8:ac:fc:b6:80:74:95:c8:ad:39:e1:c0:6d:44:ef:0c:
2e:e6:ec:61:24:60:6c:01:71:5a:f3:af:5d:dc:56:60:71:e8:
2d:e0:bd:de:55:de:f1:57:53:ea:41:de:0e:c9:e1:e2:2c:1f:
ce:63:54:54:c8:2d:ea:02:7b:59:1a:b8:7b:26:02:70:da:48:
69:84:e1:47:e8:9a:d1:05:c2:7c:56:cb:b9:dc:4f:cb:db:9e:
b6:5d:24:c2:16:ee:47:be:67:2e:dc:d2:bd:dc:d8:e9:6d:7c:
73:25:7d:1f:13:e6:1a:7c:97:48:4e:82:9e:72:20:2d:13:d3:
48:8c:78:6e:8c:18:f7:6c:13:6a:53:8a:56:c8:c7:93:4f:97:
1e:d1:15:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:46 2024 by rpki-client on console-fra.rpki-client.org