Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/eb4o6Jihu4tbbXM2rRsp0Wr4vEE.roa
File: eb4o6Jihu4tbbXM2rRsp0Wr4vEE.roa (raw, json)
Hash identifier: I/HcMhnI+ncgzmYkAuElVv2wIksXRjZhEOtHFZkzvN8=
Subject key identifier: 79:BE:28:E8:98:A1:BB:8B:5B:6D:73:36:AD:1B:29:D1:6A:F8:BC:41
Certificate issuer: /CN=dfb8ff2f3a0bfc41eadc18af9e52acd100524149
Certificate serial: 1270E07E
Authority key identifier: DF:B8:FF:2F:3A:0B:FC:41:EA:DC:18:AF:9E:52:AC:D1:00:52:41:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37j_LzoL_EHq3BivnlKs0QBSQUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/eb4o6Jihu4tbbXM2rRsp0Wr4vEE.roa
Signing time: Sat 01 Jan 2022 10:00:29 +0000
ROA not before: Sat 01 Jan 2022 10:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51219
IP address blocks: 2a0a:2b00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309387390 (0x1270e07e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb8ff2f3a0bfc41eadc18af9e52acd100524149
Validity
Not Before: Jan 1 10:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79be28e898a1bb8b5b6d7336ad1b29d16af8bc41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:ab:a1:d2:83:4f:7e:95:49:fa:ad:ab:85:
a7:45:05:7c:45:8f:40:11:51:da:73:67:eb:96:35:
e9:2f:5e:82:93:1a:f3:66:22:de:8a:27:e9:ca:ec:
ac:6a:b2:14:23:c5:b1:ed:8b:26:52:ac:81:1c:7b:
63:cf:a0:95:64:49:5f:5a:42:62:8e:54:1f:70:46:
2e:22:83:45:a7:2b:45:fe:c4:ec:3f:dd:e9:9d:58:
08:79:52:3b:90:8c:a6:63:f8:54:73:e3:62:24:80:
81:87:5a:fe:d0:14:d8:46:15:95:ea:2c:dd:2e:d4:
06:c4:2e:aa:76:1a:ee:70:9c:ec:91:08:d7:e9:06:
ce:48:0b:dc:82:ec:96:40:50:5b:3b:e4:b3:68:5c:
d2:80:d5:fb:0a:df:d9:c0:c6:5f:8c:92:e8:08:b1:
87:4e:cb:fd:67:67:f3:16:08:fd:f0:75:03:91:96:
de:36:8a:fe:d4:3d:68:9e:c0:57:61:4b:7b:99:86:
41:00:16:b2:43:48:80:4b:cc:86:b4:bc:f4:da:5a:
eb:bf:6b:a0:d7:c4:da:f8:80:f1:a2:f7:62:53:e6:
31:9a:fb:19:0b:a9:7c:a8:67:75:e0:21:6c:f2:49:
7f:f3:2e:8b:6c:65:fd:77:95:dc:05:4c:bd:79:5c:
09:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BE:28:E8:98:A1:BB:8B:5B:6D:73:36:AD:1B:29:D1:6A:F8:BC:41
X509v3 Authority Key Identifier:
keyid:DF:B8:FF:2F:3A:0B:FC:41:EA:DC:18:AF:9E:52:AC:D1:00:52:41:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37j_LzoL_EHq3BivnlKs0QBSQUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/eb4o6Jihu4tbbXM2rRsp0Wr4vEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/37j_LzoL_EHq3BivnlKs0QBSQUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2b00::/32
Signature Algorithm: sha256WithRSAEncryption
ac:70:2e:0d:93:f9:73:fe:17:14:6c:cd:bf:6c:da:a7:ed:13:
16:9a:c0:10:88:99:d6:4a:b0:23:e9:e5:9e:d8:24:57:ec:8e:
23:eb:47:a3:ea:c8:b0:d8:c3:49:05:26:61:52:be:e0:95:1c:
72:37:ce:ef:66:82:b8:e4:34:ae:66:fd:89:0a:05:b8:99:e1:
64:40:ca:4b:1f:65:62:95:3c:a5:d9:4e:94:63:9f:09:dd:ce:
a1:af:bb:07:cc:b7:bc:11:f1:dd:00:83:ec:74:fa:23:88:48:
5b:8d:fb:13:6d:bb:34:6d:b2:ef:f8:98:a2:bb:75:47:fc:55:
aa:11:ac:9d:a9:d9:5d:5b:fc:3e:6b:1e:76:86:b0:b0:46:41:
95:c4:49:4b:e5:7c:b5:ab:db:5c:90:58:3b:38:da:d5:c5:75:
97:2e:b1:f6:de:5e:18:04:73:d0:b5:93:a4:59:d0:bc:51:4e:
5e:ed:c3:c5:b9:32:fb:e4:be:00:c0:27:45:37:b8:73:99:07:
c0:17:2e:43:14:39:bb:56:bc:85:da:48:69:6d:ca:6e:fa:55:
b0:dc:cd:03:d6:04:b1:9d:c6:e3:cf:e0:96:24:c5:1e:1d:4c:
d0:24:c2:55:a2:99:de:c8:a5:e0:d7:34:ca:14:36:2c:40:ef:
3c:2a:f8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:29 2024 by rpki-client on console-fra.rpki-client.org