Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/EJKFdSFdNAy3cMZRIpFJgVuIp_w.roa
File: EJKFdSFdNAy3cMZRIpFJgVuIp_w.roa (raw, json)
Hash identifier: J+6vz46/ZQc6gF5a6Z2C+PIvHzGiMq6nVQvx5eFOph8=
Subject key identifier: 10:92:85:75:21:5D:34:0C:B7:70:C6:51:22:91:49:81:5B:88:A7:FC
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 394A1FF1
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/EJKFdSFdNAy3cMZRIpFJgVuIp_w.roa
Signing time: Sat 01 Jan 2022 03:53:06 +0000
ROA not before: Sat 01 Jan 2022 03:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203348
IP address blocks: 2001:648:25e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 961159153 (0x394a1ff1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10928575215d340cb770c651229149815b88a7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:68:38:06:8f:90:79:37:e8:e2:6d:89:03:24:
f8:1e:b3:c6:f4:39:fe:14:cd:d9:1b:99:64:8e:05:
41:a5:76:2f:98:21:bb:2e:80:11:3b:ce:04:f2:6f:
af:b7:ea:ae:b2:32:5e:5d:f4:36:d7:1e:e7:84:f5:
c2:a1:99:ed:62:6e:c8:23:57:e3:d2:3d:07:38:1a:
dc:db:36:84:4f:43:68:b2:1b:d2:80:3e:0b:e7:f1:
53:a4:c5:87:a4:60:0f:47:d0:20:26:ae:1e:8e:87:
9b:8d:4c:04:f9:d6:fa:36:53:ec:7d:5d:fa:d6:f1:
22:4f:82:b6:a9:c3:b8:99:70:22:9e:fe:62:4c:15:
a3:ea:ca:22:56:54:1b:e7:7e:c2:6c:94:7d:45:fd:
30:2e:1a:32:20:6d:2a:a6:f4:08:1b:1c:fb:70:26:
d5:37:94:6a:75:4c:59:7a:08:5d:1e:d2:b9:90:36:
06:ca:84:9b:e7:97:d0:74:1b:1a:6b:75:eb:77:d7:
54:e6:1b:b3:2d:20:3b:2c:a9:b0:98:10:41:82:58:
8b:73:a9:70:b9:41:e9:66:98:52:7d:b4:19:0e:36:
6a:4a:3e:3d:e9:74:f1:22:63:9a:54:5e:13:7b:60:
01:c6:c7:04:d2:60:9b:ab:e4:92:48:13:ca:de:cb:
f4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:92:85:75:21:5D:34:0C:B7:70:C6:51:22:91:49:81:5B:88:A7:FC
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/EJKFdSFdNAy3cMZRIpFJgVuIp_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:648:25e0::/48
Signature Algorithm: sha256WithRSAEncryption
3d:c4:31:4d:9e:97:4c:3e:69:14:09:93:d2:83:8b:00:91:de:
af:0b:12:3f:ad:7d:15:b0:78:f0:fa:71:49:95:40:85:be:54:
35:6a:4b:7a:2a:34:60:62:5b:47:46:2c:0f:3c:07:66:3f:8c:
e0:2e:c5:f3:db:88:f9:14:ce:50:a6:dc:c2:fd:88:62:92:b1:
cf:35:57:89:a2:1a:21:5e:cf:e4:d8:65:50:fd:a4:90:c1:73:
96:e1:1b:e2:5b:31:7c:06:3e:48:19:1e:11:c1:83:88:6d:be:
76:4d:b8:d7:c0:0e:90:94:e3:36:fa:ed:fb:80:36:22:c2:fa:
91:9b:e2:7c:b0:71:32:6b:8b:5d:6e:5f:2d:f1:ad:0a:7b:65:
3e:49:9f:d1:64:55:5f:f5:72:cc:ea:70:b2:f9:25:c0:e5:f9:
5e:99:f7:30:b9:f6:ed:32:cf:24:cf:98:14:8d:e3:41:ef:a1:
29:d8:74:a5:45:d7:49:50:e0:2b:04:2c:ee:3d:12:a7:f4:2e:
64:31:7d:e9:26:61:4c:09:a7:e7:e8:fb:d3:a2:61:fe:77:47:
ac:44:4b:b4:36:fc:81:c9:84:5d:3c:9a:09:06:bc:e4:b2:41:
98:a5:65:2e:18:68:ab:9b:0f:8a:88:00:a4:66:92:6d:fb:71:
2d:82:a8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org