Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/7gnTM-RxipZFPJhmiOqSQtoGTgA.roa
File: 7gnTM-RxipZFPJhmiOqSQtoGTgA.roa (raw, json)
Hash identifier: d42EcvDPA/Cev30VOKAj9Ag9JcLXGSeAfAHZIZPRekg=
Subject key identifier: EE:09:D3:33:E4:71:8A:96:45:3C:98:66:88:EA:92:42:DA:06:4E:00
Certificate issuer: /CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Certificate serial: 01551E
Authority key identifier: 38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/7gnTM-RxipZFPJhmiOqSQtoGTgA.roa
Signing time: Fri 22 Apr 2022 08:03:43 +0000
ROA not before: Fri 22 Apr 2022 08:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62350
IP address blocks: 2001:678:f50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87326 (0x1551e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Validity
Not Before: Apr 22 08:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee09d333e4718a96453c986688ea9242da064e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:37:e0:d4:59:c3:98:67:21:6a:8c:85:28:e7:
09:09:e6:f1:b8:88:25:d5:30:33:bc:20:ac:ba:92:
2c:18:a7:46:3a:f7:3e:8c:55:1d:4d:6f:a8:66:c8:
49:55:de:06:68:26:89:92:9b:13:24:80:b4:5a:e1:
59:7b:70:80:d9:47:3a:0f:99:fe:5e:f0:e0:48:93:
e1:6f:d5:82:0b:8b:df:68:bf:90:ac:1e:76:8c:ed:
a6:d1:c3:6b:cf:12:ce:3e:72:8e:61:cd:9f:e3:3f:
88:f8:b5:65:06:55:4c:a2:60:13:f6:1b:c6:de:8b:
d1:10:2f:ae:f0:e6:22:22:e3:48:00:97:22:03:64:
d6:d3:e7:f6:27:76:32:14:ca:b7:a4:44:43:eb:9e:
85:cf:05:77:bd:7f:8a:cb:a7:3f:ca:fd:4a:8e:8e:
73:e5:c9:0d:18:fe:8d:06:a3:b3:59:0b:f1:56:41:
ec:d0:02:c5:6e:64:d8:06:b4:c9:ea:75:71:95:b7:
2c:1d:68:f2:01:a9:00:42:d2:17:25:1e:a5:95:b2:
70:d7:d2:0d:d2:b9:d6:a7:b1:30:4e:8c:07:7f:bc:
a8:d2:77:a8:63:60:3c:23:26:e9:9b:b0:e4:22:c2:
a1:05:18:ef:04:6e:3e:75:a4:e9:6d:cf:c8:4d:98:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:09:D3:33:E4:71:8A:96:45:3C:98:66:88:EA:92:42:DA:06:4E:00
X509v3 Authority Key Identifier:
keyid:38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/7gnTM-RxipZFPJhmiOqSQtoGTgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f50::/48
Signature Algorithm: sha256WithRSAEncryption
2c:28:82:32:71:62:26:7a:ba:76:4f:cd:44:05:1d:c8:0a:db:
f9:1d:1b:d4:0e:f2:26:48:1b:24:d8:7a:88:a4:e1:19:34:40:
30:2b:1d:8d:5c:58:97:aa:0a:f1:0a:66:a1:10:2f:6d:b2:54:
fe:8a:ee:33:60:2a:2d:ef:a6:a4:39:30:1d:67:eb:4f:b2:2a:
bf:fe:f2:1c:14:55:40:47:3c:18:dd:46:b2:5a:79:f3:a8:c3:
e5:4d:76:89:a2:98:2b:bf:f0:ec:b8:ac:63:6f:7a:c3:7f:d3:
d0:8f:2a:15:f3:28:21:97:ba:fe:35:2a:76:08:29:34:92:bd:
8f:dd:7e:8f:53:c8:4c:ec:62:96:34:4d:15:9d:65:d4:63:8b:
31:5a:8b:4b:91:f3:f8:4a:eb:3b:9b:41:ed:c1:17:db:c2:91:
6c:c2:9f:f9:3a:dc:c1:64:f9:0b:60:bb:8f:42:92:cb:4a:71:
05:2e:5f:1a:cc:cb:02:29:e6:77:ec:b6:86:8f:19:f0:bc:a9:
1d:5b:6e:b4:bf:60:d7:1c:0d:4d:21:87:1f:ce:b3:35:ed:c0:
ee:c0:1a:90:7d:50:96:b1:33:ae:64:d7:b5:0a:da:37:47:76:
05:cd:42:ef:dc:aa:18:6c:60:8d:b1:60:56:60:2a:9e:2e:62:
38:5c:8d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:59 2024 by rpki-client on console-fra.rpki-client.org