Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7uI84PAAg0jOZV4ZtdB0xzwsuXE.roa
File: 7uI84PAAg0jOZV4ZtdB0xzwsuXE.roa (raw, json)
Hash identifier: Lj6W/ajw/4KhcvUroiAuCmhM70DB24+b+U03iXLIUak=
Subject key identifier: EE:E2:3C:E0:F0:00:83:48:CE:65:5E:19:B5:D0:74:C7:3C:2C:B9:71
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 1BABC9BF
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7uI84PAAg0jOZV4ZtdB0xzwsuXE.roa
Signing time: Mon 04 Jul 2022 13:35:25 +0000
ROA not before: Mon 04 Jul 2022 13:35:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212573
IP address blocks: 2a00:dd00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464243135 (0x1babc9bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Jul 4 13:35:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eee23ce0f0008348ce655e19b5d074c73c2cb971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9b:14:f7:0e:83:74:61:f1:19:11:22:66:a1:
1e:64:b2:00:31:03:7a:41:b9:ac:7f:cf:5e:cf:b6:
ca:d0:fc:c2:84:f7:c9:1c:c5:63:84:1a:2b:53:e3:
24:d7:b5:55:a5:9d:7c:6e:47:9f:02:36:79:9e:81:
5f:1c:d9:6b:0a:03:3b:a6:24:ba:f3:c1:3f:f7:79:
47:7d:03:63:41:7a:dd:a8:5e:cc:b4:48:d5:e0:ee:
59:90:5d:15:67:a8:a4:07:0d:a9:a4:4b:08:08:32:
2e:bb:92:37:0a:39:ec:33:0a:b3:59:e6:d1:11:ac:
73:e4:ed:c2:17:2d:ab:28:0c:57:1e:a3:ac:76:95:
1a:cf:44:6f:9e:b7:40:d6:9c:bc:5e:e0:18:1c:53:
29:a7:fb:73:d3:de:06:3d:2b:c6:f4:39:2a:82:32:
97:15:f4:8f:55:8d:0e:d0:78:c6:ff:5e:1f:78:73:
0e:ac:f5:9d:fb:9d:b6:6b:21:d9:2c:08:2d:ac:cb:
dc:2f:f6:6c:46:16:38:f6:52:1c:98:e9:e3:af:33:
37:64:00:55:72:e1:e7:7b:70:df:ee:58:7d:fc:9f:
09:05:45:61:0a:0f:82:eb:a1:41:43:4b:3f:6b:7a:
4d:53:ac:c9:dc:41:b5:d0:b4:b3:c8:9e:72:cc:09:
d5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E2:3C:E0:F0:00:83:48:CE:65:5E:19:B5:D0:74:C7:3C:2C:B9:71
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7uI84PAAg0jOZV4ZtdB0xzwsuXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd00::/32
Signature Algorithm: sha256WithRSAEncryption
76:6d:5b:be:91:84:78:54:ac:b4:0b:3c:98:f9:10:5e:83:bc:
13:cb:b2:16:f0:3c:1e:a3:e7:ea:bb:de:17:77:d3:28:06:be:
04:b2:37:ac:dc:0e:65:77:83:06:ee:25:b6:a7:46:48:cd:3d:
60:47:47:fb:60:1e:2e:7b:c9:3d:7e:1a:81:f7:9c:9a:3a:b8:
93:1f:bd:54:dc:18:bc:5b:2c:90:d1:8c:ad:3a:35:65:6a:2d:
0a:b6:06:d7:6e:a2:4b:f6:f8:b1:25:11:26:53:88:aa:de:24:
79:34:99:b6:22:bb:6c:8f:5c:f1:d0:d4:29:79:db:59:ed:b7:
51:2e:ef:67:e7:65:79:75:71:0e:af:40:28:1d:16:03:d7:36:
8e:06:44:f5:de:84:6b:80:a4:d2:8c:37:2f:5b:3c:4e:0b:c1:
ba:15:af:21:f1:1d:8d:e6:07:15:fa:32:ed:87:93:25:ed:02:
4a:f9:1d:f7:ec:38:e4:ef:ae:0a:46:47:18:f7:e6:36:52:35:
e8:78:6d:de:0e:ad:2c:2b:b3:7f:0b:2e:48:a8:51:37:40:b8:
49:ae:df:e7:c6:39:51:b7:85:34:ed:98:98:2e:a7:07:34:89:
6c:71:3e:1f:a4:05:21:3f:08:40:89:4d:0a:a6:88:5e:5f:28:
7f:52:cc:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:42 2024 by rpki-client on console-ams.rpki-client.org