Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/eO7mJnMHNEyW1UxDa5LWnOee368.roa
File: eO7mJnMHNEyW1UxDa5LWnOee368.roa (raw, json)
Hash identifier: FgmXyrp9nh9IDrqxxciPeGoJ2wfqsbiS4xbzgjjqv14=
Subject key identifier: 78:EE:E6:26:73:07:34:4C:96:D5:4C:43:6B:92:D6:9C:E7:9E:DF:AF
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 09CCC735
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/eO7mJnMHNEyW1UxDa5LWnOee368.roa
Signing time: Sat 08 Jan 2022 01:02:01 +0000
ROA not before: Sat 08 Jan 2022 01:02:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211454
IP address blocks: 2a0a:d6c0:eff4::/48 maxlen: 48
2a0a:d6c0:2157::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164415285 (0x9ccc735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Jan 8 01:02:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78eee6267307344c96d54c436b92d69ce79edfaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4f:20:2e:ca:02:53:0c:50:1f:dc:50:cc:9f:
63:c4:a8:2a:71:d7:fa:9d:ed:a6:b1:82:bf:04:54:
48:e4:d0:1d:ed:09:ae:9d:8c:f9:a9:da:ab:39:28:
52:b7:b5:40:4c:2b:96:59:27:f0:e6:ff:fd:d7:c8:
5d:69:ac:59:7f:82:a3:3e:97:47:e0:79:8f:96:f3:
03:fb:10:5a:ea:d9:f5:67:fd:76:a7:44:c1:a9:69:
ba:40:8c:69:e1:a1:c4:31:19:75:71:29:c0:4d:21:
10:4b:e5:1d:5f:a5:fe:62:09:13:84:cf:96:55:2f:
a3:07:ad:0f:ff:c8:11:60:e9:5f:45:91:43:18:8a:
96:89:da:f7:f8:21:56:b1:30:03:07:f0:f5:59:1b:
b8:74:0e:37:9b:30:d8:fa:7e:37:8e:36:27:13:5b:
d6:0f:6a:0b:b0:eb:9c:e5:f1:ba:37:40:82:fe:25:
86:df:2e:ba:e0:69:ab:34:ac:84:5b:d7:d7:13:0c:
bb:ae:b1:32:de:44:b0:87:75:6f:16:f5:96:12:01:
de:59:aa:e8:dd:09:75:8e:d1:d3:d4:d9:64:04:32:
94:db:fc:ab:ce:95:87:54:c8:5a:68:4e:f7:04:44:
1e:ae:c6:97:38:cd:2d:02:80:1b:2d:b9:f9:b9:0e:
e9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:EE:E6:26:73:07:34:4C:96:D5:4C:43:6B:92:D6:9C:E7:9E:DF:AF
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/eO7mJnMHNEyW1UxDa5LWnOee368.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:d6c0:2157::/48
2a0a:d6c0:eff4::/48
Signature Algorithm: sha256WithRSAEncryption
18:bf:cf:9d:a6:61:de:da:1d:f0:ea:55:bf:e9:3d:14:30:ee:
76:8d:5f:dd:ab:fe:b8:15:7a:0f:0a:d0:31:e7:65:8f:77:a1:
95:e2:da:08:e0:78:48:2f:e0:18:58:42:13:b2:1e:93:29:38:
ed:c7:15:54:aa:f4:81:3b:ee:ce:25:0e:36:b0:e5:aa:a8:e4:
96:44:6d:b2:7a:0e:42:be:0a:b5:e3:15:08:97:b0:7a:c0:7b:
da:89:e3:7c:36:0f:c6:18:83:53:32:fa:6b:f0:04:07:e7:62:
1f:f3:18:2f:4b:11:c6:53:98:00:1e:81:6e:52:3c:8f:91:50:
7a:57:3b:77:ed:4a:13:58:39:a0:25:1d:b7:44:97:bf:ba:16:
6c:40:c6:c0:c1:70:72:67:56:a1:f3:54:e6:07:40:a3:9e:a9:
16:87:45:82:08:51:be:78:cb:a6:9b:4e:39:9c:2a:dd:57:1c:
a7:ee:9d:9c:b3:c7:23:4e:ed:30:cd:b1:9b:c9:1a:70:c0:b9:
24:96:3e:73:d0:d2:db:3b:4e:9b:41:2b:7b:ed:08:24:45:b4:
06:3a:8b:dd:75:01:50:06:f8:ba:1d:7b:49:0c:34:b8:8e:ee:
6c:75:27:e5:b4:e6:19:56:7e:22:58:54:13:32:a1:73:3f:03:
23:4a:58:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:38 2024 by rpki-client on console-fra.rpki-client.org