Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/1-t_UHjGN1Xoc16IIAYghF-Q6sDY.roa
File: 1-t_UHjGN1Xoc16IIAYghF-Q6sDY.roa (raw, json)
Hash identifier: nW9R+a0gdEzyDxWEiS3WJN2Fs+bqpZvYKjFH6cTkBFk=
Subject key identifier: FA:DF:D4:1E:31:8D:D5:7A:1C:D7:A2:08:01:88:21:17:E4:3A:B0:36
Certificate issuer: /CN=794f551e97a132542e3b056e905de8f3dba24c9c
Certificate serial: 132DCEFC
Authority key identifier: 79:4F:55:1E:97:A1:32:54:2E:3B:05:6E:90:5D:E8:F3:DB:A2:4C:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eU9VHpehMlQuOwVukF3o89uiTJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/1-t_UHjGN1Xoc16IIAYghF-Q6sDY.roa
Signing time: Thu 12 May 2022 18:44:02 +0000
ROA not before: Thu 12 May 2022 18:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47597
IP address blocks: 2a07:8280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321769212 (0x132dcefc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=794f551e97a132542e3b056e905de8f3dba24c9c
Validity
Not Before: May 12 18:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fadfd41e318dd57a1cd7a20801882117e43ab036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c9:f9:6d:ec:6e:28:e0:8b:a1:32:74:16:41:
46:8f:68:55:94:42:d0:9d:0e:45:3d:dc:32:fd:ee:
4a:bb:be:6f:24:7d:1b:b7:b4:43:70:e2:5d:ad:1c:
82:e5:71:95:50:3c:a6:9c:ce:64:5b:2c:c8:b2:95:
52:3c:48:c4:ed:86:63:c5:7c:a7:32:06:77:b1:06:
c7:e9:06:4b:1c:f8:59:5a:ea:be:d4:e5:cd:e8:d5:
d3:b1:2f:1c:26:9e:58:7f:75:39:20:30:27:6f:73:
ed:3b:a8:ef:35:b2:42:83:56:e4:bc:18:1a:51:15:
8c:0a:ad:91:ea:1e:f0:f6:60:92:4b:89:1e:81:14:
f7:4d:04:8c:c9:34:5e:e5:6e:46:a6:aa:21:ec:30:
3b:09:a4:d3:98:44:2b:dc:93:09:e6:c4:f7:8a:34:
ef:b3:3d:74:b5:ab:aa:22:3b:ab:02:83:e3:43:45:
dc:6e:22:64:d0:c7:8a:c9:20:01:d6:ab:cc:31:0c:
93:5b:74:af:fd:01:2f:9c:b2:d2:70:99:a0:32:7d:
b0:40:ba:b1:fb:43:3d:49:77:a4:2a:d8:5b:ce:c2:
e5:d6:aa:1c:42:42:54:5e:2e:07:04:01:51:e9:c4:
e1:45:a1:0e:6d:ef:01:2f:18:78:85:c7:de:3d:83:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:DF:D4:1E:31:8D:D5:7A:1C:D7:A2:08:01:88:21:17:E4:3A:B0:36
X509v3 Authority Key Identifier:
keyid:79:4F:55:1E:97:A1:32:54:2E:3B:05:6E:90:5D:E8:F3:DB:A2:4C:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eU9VHpehMlQuOwVukF3o89uiTJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/1-t_UHjGN1Xoc16IIAYghF-Q6sDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/eU9VHpehMlQuOwVukF3o89uiTJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8280::/29
Signature Algorithm: sha256WithRSAEncryption
2d:46:46:0a:3e:ff:18:b7:0d:b5:ad:de:2c:bb:75:ed:75:0e:
f3:fb:20:ee:63:c4:46:9f:19:fd:1c:65:36:06:8c:b1:ed:d1:
72:2a:32:3f:1b:be:79:36:b8:6c:ef:ce:8a:66:04:52:24:e0:
64:9f:a5:1f:5f:16:c6:87:dd:99:8b:ea:76:d8:64:ac:1e:b4:
de:b3:6c:af:a2:64:68:98:58:9d:d4:37:e7:4e:d4:11:49:71:
ff:47:f1:e4:a9:ea:4e:c4:5b:c0:f3:5e:19:c1:8b:e2:a4:4f:
7b:44:50:ac:ca:21:25:40:96:4d:7a:b4:74:e7:94:9a:22:57:
5e:78:b6:9f:ec:12:9a:3c:e3:70:c9:09:06:32:a1:57:1e:1c:
68:a2:66:a5:2f:67:ff:0c:1f:81:d8:8f:2f:21:f5:33:f8:e8:
b3:0b:d1:ea:61:c3:1d:f0:7d:c0:9d:04:a6:34:44:1c:55:c3:
d9:a5:e7:6a:3d:4e:84:70:8c:40:af:25:84:39:fc:76:1e:a6:
3d:af:b8:12:28:a0:dd:5c:bb:38:d7:a0:be:8c:e8:16:82:0c:
0e:7e:f7:4f:cf:47:7c:df:7f:93:84:ba:ed:8e:13:05:c4:e9:
c6:8d:20:10:54:4a:83:ad:b2:48:fb:8b:49:50:41:00:b1:3e:
f6:19:f9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:23 2024 by rpki-client on console-ams.rpki-client.org