Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7wexwxhMs6KNbPcwU7inOA6Vx-E.roa
File: 7wexwxhMs6KNbPcwU7inOA6Vx-E.roa (raw, json)
Hash identifier: zywmAYedX9lnERvL4yoOyX5127qQPUVa89C6CLCN2ZQ=
Subject key identifier: EF:07:B1:C3:18:4C:B3:A2:8D:6C:F7:30:53:B8:A7:38:0E:95:C7:E1
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 1A056F73
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7wexwxhMs6KNbPcwU7inOA6Vx-E.roa
Signing time: Sat 01 Jan 2022 13:59:50 +0000
ROA not before: Sat 01 Jan 2022 13:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212573
IP address blocks: 2a00:dd00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436563827 (0x1a056f73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Jan 1 13:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef07b1c3184cb3a28d6cf73053b8a7380e95c7e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:36:26:16:3e:4e:a7:c6:30:d2:09:76:23:e3:
2b:24:bf:a5:12:0a:d8:d8:97:8b:0f:82:3c:6e:53:
f9:24:21:7b:55:61:3c:94:52:73:2b:c8:0a:ff:d0:
9d:f0:e6:ed:43:40:d5:06:5d:fa:2c:90:88:70:df:
28:33:20:56:0c:c3:ef:22:e6:6a:f8:75:53:c8:8e:
66:37:cd:07:cf:4d:be:24:7e:3b:58:e0:a2:39:85:
15:46:5f:c2:fd:47:b7:f2:d4:16:b8:8a:12:b4:f0:
3f:f8:81:2e:10:ad:82:9b:21:e8:70:dc:30:96:47:
30:de:3e:50:4c:4a:56:f1:90:d2:0a:30:95:6b:d4:
b2:f2:1f:ed:2f:44:16:99:4a:99:2c:01:4d:65:ea:
6e:26:de:1b:ad:ab:7f:5a:eb:6a:d6:b4:b7:c8:3b:
15:96:eb:7e:c4:04:5c:e4:a5:da:ae:ef:97:a9:92:
0a:44:9a:cc:af:84:b4:ba:ce:6f:6f:13:42:03:fc:
7e:78:95:f5:d8:4f:af:a4:73:2b:c8:e0:6d:6c:64:
8d:16:d9:4a:59:a4:69:89:fd:38:45:c1:86:13:c4:
b3:b2:74:d2:7f:40:38:73:ea:23:97:62:2c:5f:b5:
fd:9f:76:93:f5:95:77:49:42:72:2d:96:7c:25:37:
fe:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:07:B1:C3:18:4C:B3:A2:8D:6C:F7:30:53:B8:A7:38:0E:95:C7:E1
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7wexwxhMs6KNbPcwU7inOA6Vx-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd00::/32
Signature Algorithm: sha256WithRSAEncryption
10:d1:d9:27:bc:2d:ae:a7:f4:83:37:2b:7b:a9:4b:64:35:c9:
76:8c:a1:a6:26:ad:54:ff:48:f8:1c:ff:f0:3a:15:06:f0:16:
7e:ee:1c:42:86:05:67:4e:ba:9f:9f:0f:1e:66:2c:99:ea:88:
f6:79:b1:09:ce:19:fa:15:4a:37:21:2a:7e:c8:c9:85:d0:7e:
16:1e:24:df:ba:ef:d2:4d:17:73:78:91:2a:7e:d0:3a:3a:3d:
a4:b5:fd:a6:d7:29:18:62:dd:6c:70:82:7c:99:15:37:6d:60:
7c:df:d0:e8:9e:a0:6f:99:16:09:b8:8d:09:d9:d8:51:d1:f6:
6e:4c:d0:44:e6:17:35:ff:b3:12:d0:d3:66:67:17:f4:4c:65:
c6:9a:d2:91:c4:8c:5d:2e:6c:d4:64:16:5e:9e:58:2e:33:3f:
57:5c:be:fb:2e:58:c9:ec:cd:e0:2f:76:99:08:d0:bb:b5:94:
89:60:a3:5f:8a:b7:75:40:79:d3:eb:13:e9:db:0c:01:c2:76:
70:dc:13:74:0d:4e:bb:a6:fe:ff:15:a8:2a:de:5d:69:db:3e:
6d:38:f1:bb:f4:8d:be:a8:d9:e9:06:35:af:d1:84:69:83:66:
98:96:f4:4f:3c:25:23:08:52:5a:83:04:fa:82:8d:27:03:75:
40:9d:5b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:36 2024 by rpki-client on console-fra.rpki-client.org