Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5ef9e0-7a00-4fca-beaa-66b624eae78c/1/U7PbK8dZQVqeh7Khn_0EIgRZ6Kw.roa
File: U7PbK8dZQVqeh7Khn_0EIgRZ6Kw.roa (raw, json)
Hash identifier: Uu1ieIfKhZDen02AufwkbDsPyc2P8PDxnxYJdfFNdpE=
Subject key identifier: 53:B3:DB:2B:C7:59:41:5A:9E:87:B2:A1:9F:FD:04:22:04:59:E8:AC
Certificate issuer: /CN=133eeb9f7aba19e03b1366dab0883f3653fc03be
Certificate serial: 03DC6C26
Authority key identifier: 13:3E:EB:9F:7A:BA:19:E0:3B:13:66:DA:B0:88:3F:36:53:FC:03:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ez7rn3q6GeA7E2basIg_NlP8A74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5ef9e0-7a00-4fca-beaa-66b624eae78c/1/U7PbK8dZQVqeh7Khn_0EIgRZ6Kw.roa
Signing time: Sat 01 Jan 2022 09:53:49 +0000
ROA not before: Sat 01 Jan 2022 09:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212518
IP address blocks: 2001:678:e8c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64777254 (0x3dc6c26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133eeb9f7aba19e03b1366dab0883f3653fc03be
Validity
Not Before: Jan 1 09:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53b3db2bc759415a9e87b2a19ffd04220459e8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:80:a4:45:a6:2e:a2:17:8b:f7:5b:98:81:e1:
18:0d:0f:c9:b1:4f:22:61:c7:b8:ac:ed:1b:e6:58:
4e:a1:64:57:26:b0:25:a7:92:ff:2f:3e:1a:cf:0e:
1e:69:cc:b9:12:be:89:4b:d9:55:4d:f5:20:5c:9f:
7e:fb:5b:ed:c8:26:7e:cc:ce:8c:1d:bc:19:29:c9:
ee:7e:23:fd:01:9d:6e:6d:2d:df:de:a1:cc:08:50:
61:bc:4d:45:8d:0a:97:a6:aa:9b:17:cf:af:7a:82:
fd:6a:08:61:58:0a:fe:50:c5:74:94:75:d7:13:a6:
80:b8:d5:1d:60:01:fd:96:93:ed:cb:5e:df:45:13:
32:1f:48:fc:d3:a3:28:5b:0d:24:56:e2:b5:d7:85:
c4:7f:c1:f8:59:70:6d:5e:18:e4:06:af:a2:9c:a8:
7d:94:96:df:0b:30:4d:41:e6:4e:5d:87:bf:6d:ea:
65:d8:a9:82:f9:3a:d8:26:74:60:a2:7d:c0:4b:34:
22:76:ca:3b:d7:88:5d:7d:0c:c1:bf:9e:18:c2:51:
f5:68:79:06:76:40:27:45:97:4d:7a:bc:6e:af:c9:
86:31:94:23:b0:60:41:4f:ec:26:43:6f:51:21:26:
dc:4a:19:a1:8f:c3:11:b2:0b:98:a9:5f:6e:77:6a:
e6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B3:DB:2B:C7:59:41:5A:9E:87:B2:A1:9F:FD:04:22:04:59:E8:AC
X509v3 Authority Key Identifier:
keyid:13:3E:EB:9F:7A:BA:19:E0:3B:13:66:DA:B0:88:3F:36:53:FC:03:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ez7rn3q6GeA7E2basIg_NlP8A74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5ef9e0-7a00-4fca-beaa-66b624eae78c/1/U7PbK8dZQVqeh7Khn_0EIgRZ6Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5ef9e0-7a00-4fca-beaa-66b624eae78c/1/Ez7rn3q6GeA7E2basIg_NlP8A74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:e8c::/48
Signature Algorithm: sha256WithRSAEncryption
32:5e:c1:25:0c:6a:03:07:38:00:2c:08:22:0d:a9:30:02:d8:
ef:0d:f7:b1:e6:e9:7e:83:b9:76:2f:30:71:27:5e:a4:51:1a:
6b:61:d8:75:a4:d3:ba:56:61:48:72:8f:43:95:0c:06:cd:66:
14:bb:3c:13:a0:fe:d6:7c:8d:86:2d:31:53:28:80:73:84:65:
dd:e1:9c:dc:65:cd:fb:f1:11:71:5a:67:a4:99:f6:bb:77:46:
71:c8:ef:ed:2d:02:40:53:09:17:77:eb:84:1c:b9:30:41:9b:
fc:38:7e:77:26:d1:35:d6:c0:78:c3:d7:4d:13:5e:f5:d7:55:
d0:d4:03:9d:91:a2:c8:20:a1:4c:34:d9:12:3e:c8:d2:ed:ed:
a7:f2:82:e1:c9:a1:c9:2b:84:5f:1c:2f:f7:3a:d6:99:e2:15:
04:fa:31:cb:ff:62:31:81:3d:83:cc:33:17:e4:f6:ea:4b:f6:
3c:a1:32:1c:be:a1:a3:75:fe:c7:40:f6:6a:f9:94:4d:04:02:
0e:10:e5:bc:ed:c2:17:b3:ec:0b:77:5b:a0:cb:f2:c8:61:02:
49:eb:fb:75:d2:76:ac:f3:ff:d1:9a:b6:45:34:81:76:a6:9b:
5f:fc:9c:e1:ed:94:93:da:ab:43:4d:25:8b:da:04:7e:b2:7f:
09:e2:fa:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:51 2024 by rpki-client on console-fra.rpki-client.org