Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/77f569-6a5d-4258-8de9-1f09c8b6a08d/1/PI-_vDpfAPxrxTXupsCT4pAqI8Y.roa
File: PI-_vDpfAPxrxTXupsCT4pAqI8Y.roa (raw, json)
Hash identifier: obcXty0w9f25H/nXeR04aC4L62wQQpmIQi/PptFwqwY=
Subject key identifier: 3C:8F:BF:BC:3A:5F:00:FC:6B:C5:35:EE:A6:C0:93:E2:90:2A:23:C6
Certificate issuer: /CN=c3d7cb333c50ff2126e26f22ecb791cf6fd95c21
Certificate serial: 02212157
Authority key identifier: C3:D7:CB:33:3C:50:FF:21:26:E2:6F:22:EC:B7:91:CF:6F:D9:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w9fLMzxQ_yEm4m8i7LeRz2_ZXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/77f569-6a5d-4258-8de9-1f09c8b6a08d/1/PI-_vDpfAPxrxTXupsCT4pAqI8Y.roa
Signing time: Sat 01 Jan 2022 16:06:20 +0000
ROA not before: Sat 01 Jan 2022 16:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211640
IP address blocks: 2001:678:f3c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35725655 (0x2212157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3d7cb333c50ff2126e26f22ecb791cf6fd95c21
Validity
Not Before: Jan 1 16:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c8fbfbc3a5f00fc6bc535eea6c093e2902a23c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:75:b2:fc:e0:53:4d:3c:0d:cf:68:66:57:1b:
d0:77:5c:53:51:36:3d:9a:d7:6f:15:61:f9:38:4c:
9d:eb:9a:b0:b9:3f:90:cd:69:08:32:41:a9:0d:02:
16:c0:84:07:8c:9d:a8:d0:56:fa:3c:54:df:67:f1:
33:fc:e7:9c:b4:ca:8f:14:64:87:bb:69:8c:d6:54:
42:50:24:84:87:e4:0c:25:0d:ca:ee:6d:81:3b:7d:
03:48:93:40:e4:2b:1a:ae:8f:72:45:42:b3:00:2d:
95:2f:bb:f5:a6:a5:e2:7f:84:4d:b3:ba:f3:8a:08:
59:c3:fe:8a:ce:8b:41:40:59:ce:7a:45:98:12:03:
4f:ba:a8:31:cf:57:7d:86:73:68:4c:87:8d:c5:ff:
9c:77:62:60:11:bf:b3:71:80:f2:c4:2f:11:d3:ea:
a5:3e:19:88:4c:70:87:12:d4:c8:90:11:13:d9:05:
b3:0e:d2:5d:44:e3:eb:a7:8e:48:54:cb:ed:6a:0f:
82:5a:b5:0d:65:65:20:ce:d4:ca:84:0e:b0:8a:be:
bb:6f:10:d0:0d:9e:6e:47:c5:4b:e6:1b:6d:9b:0f:
19:f6:b5:7e:0f:64:82:db:14:7d:bf:80:5f:6d:d8:
f7:a3:94:7c:af:fd:4b:7f:e8:17:4b:8e:6f:4d:c7:
94:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:8F:BF:BC:3A:5F:00:FC:6B:C5:35:EE:A6:C0:93:E2:90:2A:23:C6
X509v3 Authority Key Identifier:
keyid:C3:D7:CB:33:3C:50:FF:21:26:E2:6F:22:EC:B7:91:CF:6F:D9:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w9fLMzxQ_yEm4m8i7LeRz2_ZXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/77f569-6a5d-4258-8de9-1f09c8b6a08d/1/PI-_vDpfAPxrxTXupsCT4pAqI8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/77f569-6a5d-4258-8de9-1f09c8b6a08d/1/w9fLMzxQ_yEm4m8i7LeRz2_ZXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f3c::/48
Signature Algorithm: sha256WithRSAEncryption
7e:1e:73:51:2f:d0:fa:d8:92:de:e5:2d:ab:e6:6e:0c:0f:22:
64:99:5d:36:14:98:4f:a4:74:b1:ec:4f:10:de:ef:43:94:6f:
f7:d1:25:be:cc:3b:c4:ad:ed:83:3d:04:52:94:69:e5:97:b1:
50:ea:3a:54:6f:18:3c:d2:66:d7:42:3c:52:44:97:a3:ca:04:
0f:2e:b2:a8:ee:e9:e5:cf:48:84:9e:e9:5d:05:7b:ba:07:80:
8b:5f:e6:bf:4f:53:34:07:ec:40:25:07:b1:b7:10:c0:a0:7c:
d0:02:1f:10:cc:db:ad:57:5b:de:7d:fe:90:63:3e:d8:74:d1:
43:ac:33:46:43:73:0d:6c:42:12:bc:e2:2c:11:fd:e8:32:21:
4f:65:ba:9c:b7:6c:5c:0c:6e:65:53:51:4a:af:a6:ee:0f:bb:
61:37:78:6c:f6:be:7a:53:a2:5d:0c:8a:58:74:4e:d7:4f:06:
b9:7c:87:cf:3f:f1:df:f9:66:73:b7:e1:d3:fd:d1:5b:6c:b4:
d4:4f:c5:5d:97:8a:d2:18:08:fc:ce:08:9f:eb:ab:ff:4a:d3:
a5:56:6a:3b:81:c1:6c:90:f6:7b:ce:6a:91:ee:4a:bf:f1:b6:
b2:a7:39:c6:f6:03:3c:95:0b:f1:88:bb:46:64:c1:15:af:60:
20:e2:ee:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:35 2024 by rpki-client on console-fra.rpki-client.org