Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/1-NLHOzjMy9hjeYd4x70t2M4KS5w.roa
File: 1-NLHOzjMy9hjeYd4x70t2M4KS5w.roa (raw, json)
Hash identifier: KpQxghLjjtIG1DuNJw0u6tUEhsw0S5r6hO4piyp2WqM=
Subject key identifier: F8:D2:C7:3B:38:CC:CB:D8:63:79:87:78:C7:BD:2D:D8:CE:0A:4B:9C
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 0181DCE71FD640AD53A9C90A810D531A3503
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/1-NLHOzjMy9hjeYd4x70t2M4KS5w.roa
Signing time: Fri 08 Jul 2022 08:22:23 +0000
ROA not before: Fri 08 Jul 2022 08:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204571
IP address blocks: 2001:67c:a1c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dc:e7:1f:d6:40:ad:53:a9:c9:0a:81:0d:53:1a:35:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Jul 8 08:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8d2c73b38cccbd863798778c7bd2dd8ce0a4b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c3:e1:f4:ab:80:ae:7c:8a:dd:a3:72:86:e5:
85:c3:83:b5:47:d4:e1:a1:3a:f5:c8:f8:d1:5f:45:
22:c2:d9:dc:97:af:04:80:bc:1d:3e:f7:44:31:7e:
46:c9:28:8d:4e:39:de:ee:f1:23:03:af:03:12:e1:
98:a4:d8:2f:15:e6:a5:3f:9a:9a:90:1e:fa:61:c1:
07:b2:50:49:3d:13:3e:fd:5d:1e:45:f1:11:b0:8d:
72:e0:5e:16:39:f2:2f:99:97:11:b5:b0:64:8c:49:
46:8c:fb:cc:c5:65:2e:e6:04:d0:1a:ec:83:a6:b6:
47:bb:42:7a:70:02:4e:92:51:51:6b:8b:63:8d:99:
a1:a7:46:23:79:39:4d:46:7b:0b:0b:54:e9:73:7a:
d1:70:ee:69:3f:b2:92:80:30:14:21:a3:c4:a1:78:
7f:8a:97:1d:5b:e5:fe:fd:b2:2e:89:f5:96:4d:a3:
2b:c3:b4:c0:64:28:53:c2:6b:95:32:b8:61:76:a7:
f2:e5:e7:58:53:4f:25:b1:c0:66:c8:cd:90:d9:11:
e7:9b:e1:a0:9c:ce:99:e7:b5:77:5b:15:eb:02:16:
6f:13:0d:90:6c:51:70:17:af:4e:90:37:32:23:4a:
51:67:33:c2:82:3a:7d:5d:f3:45:02:c0:f7:f0:37:
2f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D2:C7:3B:38:CC:CB:D8:63:79:87:78:C7:BD:2D:D8:CE:0A:4B:9C
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/1-NLHOzjMy9hjeYd4x70t2M4KS5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a1c::/48
Signature Algorithm: sha256WithRSAEncryption
01:29:0d:56:be:81:13:d7:2f:bf:ee:21:fc:b8:32:61:5b:57:
60:92:76:77:37:02:d7:fe:c6:1f:ec:f5:94:f3:28:42:f9:28:
51:9c:53:bb:54:da:d9:65:50:4d:9e:96:b8:2a:4f:f6:d1:c6:
b2:5d:23:91:06:ce:18:82:55:b8:b1:ae:67:f5:08:71:0a:e9:
db:69:e3:85:b9:ab:2d:a1:8c:a8:b4:ad:7d:eb:21:95:49:c9:
cc:fb:cd:04:38:62:dc:89:99:53:9b:9b:10:39:76:1e:60:2c:
48:2b:96:ca:5a:cd:cc:c5:b5:d5:17:b8:48:cc:6a:66:65:64:
29:d2:76:3f:94:24:36:f7:ca:50:5e:3d:f5:d0:32:0f:70:3b:
bb:99:64:a9:6e:17:d9:43:37:29:cb:d5:33:8d:ad:14:ec:58:
3c:0e:47:ef:2e:2a:70:2c:c6:95:92:27:61:a3:18:3c:01:fa:
2a:3a:bb:0f:12:ca:f1:e2:80:a7:f2:ae:56:e2:4e:3a:3d:c3:
14:70:0c:ae:44:ba:80:06:92:f7:e1:ef:be:b6:25:9a:1c:cb:
75:01:cb:52:74:81:3e:35:f2:a9:cb:26:d7:1c:96:39:5a:68:
ef:81:f6:2b:e7:91:93:13:86:33:55:97:13:82:e8:e8:e8:13:
7f:c1:cf:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:04 2024 by rpki-client on console-fra.rpki-client.org