Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/sdATvoGomkZv6nPVxDA2MHEgLxA.roa
File: sdATvoGomkZv6nPVxDA2MHEgLxA.roa (raw, json)
Hash identifier: FhNq5Yk1X5aBOwJO28d89SRe1XcFFIOXl/uF9Vi26Is=
Subject key identifier: B1:D0:13:BE:81:A8:9A:46:6F:EA:73:D5:C4:30:36:30:71:20:2F:10
Certificate issuer: /CN=0e6b385c7b8778bf78af2421c99f5d38bd556914
Certificate serial: 0784F5FD
Authority key identifier: 0E:6B:38:5C:7B:87:78:BF:78:AF:24:21:C9:9F:5D:38:BD:55:69:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/sdATvoGomkZv6nPVxDA2MHEgLxA.roa
Signing time: Sat 01 Jan 2022 15:02:06 +0000
ROA not before: Sat 01 Jan 2022 15:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48136
IP address blocks: 2001:67c:c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126154237 (0x784f5fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e6b385c7b8778bf78af2421c99f5d38bd556914
Validity
Not Before: Jan 1 15:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1d013be81a89a466fea73d5c430363071202f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8b:88:22:48:64:4a:41:c5:83:9b:eb:0d:fd:
ce:74:7a:4f:75:c6:4b:07:79:42:aa:6b:f5:02:a2:
0f:a4:d5:ce:02:c0:42:32:bc:57:73:dd:7b:2d:1d:
6f:3a:62:e2:94:8d:13:35:50:92:60:0d:24:4a:96:
73:90:f9:07:28:73:03:32:a8:cb:87:9e:ee:c4:3a:
86:a2:fd:d7:b8:4a:f8:03:dc:76:5f:f3:21:8c:b5:
df:3e:27:fc:ee:f1:8c:78:45:30:8d:ff:80:45:11:
b6:c6:cf:35:8a:0a:60:f4:d9:8b:a7:65:93:5a:28:
ad:46:e3:c2:be:a5:0d:3a:9c:d4:b7:58:d2:72:95:
8a:04:1e:d1:3b:83:92:8d:99:8a:95:72:01:32:f0:
41:c0:0f:a7:c1:da:3c:ba:8a:9d:be:18:12:62:a1:
8d:ff:1a:3f:7e:1e:fa:e4:61:c7:1d:02:41:c6:8a:
e5:21:d8:10:f9:88:68:7a:93:a1:18:8f:b2:1e:5c:
92:1c:50:13:7d:b1:41:40:42:4b:0f:d9:46:0d:be:
81:8d:b6:70:6e:da:23:39:ff:1b:ad:95:b9:c1:0b:
49:57:fc:e2:f9:da:9b:0e:9d:52:d5:09:57:ac:b5:
08:63:42:26:c9:69:e5:72:a5:5e:2c:8f:a8:43:43:
a7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D0:13:BE:81:A8:9A:46:6F:EA:73:D5:C4:30:36:30:71:20:2F:10
X509v3 Authority Key Identifier:
keyid:0E:6B:38:5C:7B:87:78:BF:78:AF:24:21:C9:9F:5D:38:BD:55:69:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/sdATvoGomkZv6nPVxDA2MHEgLxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c::/48
Signature Algorithm: sha256WithRSAEncryption
93:33:3b:4a:78:1f:9d:ac:42:5f:4f:9c:9e:2b:36:08:aa:94:
8d:36:a4:13:13:b7:10:02:05:31:38:0a:1d:ae:7e:1f:22:d6:
2e:be:6b:8d:14:8a:68:f2:cb:4e:ab:2a:a7:68:5a:dd:73:67:
c9:b4:aa:bf:9a:da:80:28:0c:56:58:17:9b:45:48:66:b4:0e:
10:02:5a:eb:69:dc:3c:96:30:a6:c8:02:f6:ae:0c:6f:f9:3e:
51:12:6f:27:b7:ff:45:a0:d7:e7:55:6f:41:e6:4f:69:e6:ce:
9e:e3:cc:82:98:a1:e0:b5:fc:0e:0e:6b:d5:93:ab:cc:ca:d1:
5e:1f:fd:9c:c3:6c:fe:78:ce:02:83:e4:b0:87:23:d1:44:a3:
71:4f:59:74:ba:59:22:2a:55:49:6b:17:f2:26:63:69:3f:6b:
42:e8:4b:43:8a:3a:7e:2b:98:bd:15:6f:1b:06:72:62:04:8d:
1d:13:89:c3:1c:fd:7c:22:a9:c5:7c:04:46:ff:11:60:fd:40:
7a:57:c8:50:d3:5c:5c:63:ac:e2:44:58:b2:ad:e3:72:d5:d4:
20:f6:db:e7:32:6a:72:78:9a:03:22:d3:8b:90:ac:04:15:42:
6b:f6:a5:c8:c9:91:73:b2:a8:a1:1b:95:14:d6:4e:5b:a7:7d:
7a:91:41:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:31 2024 by rpki-client on console-ams.rpki-client.org