Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/aDarVdHAmnl5xm2p1-4YN16z4ec.roa
File: aDarVdHAmnl5xm2p1-4YN16z4ec.roa (raw, json)
Hash identifier: yx2pdZXYAgANnsD8F+9yFfH4pMl65O1OZlq3/Au3Ozg=
Subject key identifier: 68:36:AB:55:D1:C0:9A:79:79:C6:6D:A9:D7:EE:18:37:5E:B3:E1:E7
Certificate issuer: /CN=9b5841b07ccf6399799b3586a1b22885923df8bf
Certificate serial: 032554FF
Authority key identifier: 9B:58:41:B0:7C:CF:63:99:79:9B:35:86:A1:B2:28:85:92:3D:F8:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1hBsHzPY5l5mzWGobIohZI9-L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/aDarVdHAmnl5xm2p1-4YN16z4ec.roa
Signing time: Sat 01 Jan 2022 10:01:32 +0000
ROA not before: Sat 01 Jan 2022 10:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42135
IP address blocks: 2001:678:494::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52778239 (0x32554ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5841b07ccf6399799b3586a1b22885923df8bf
Validity
Not Before: Jan 1 10:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6836ab55d1c09a7979c66da9d7ee18375eb3e1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f9:d1:69:22:3d:bc:77:9f:1a:76:63:d2:4f:
33:be:9f:52:9b:66:68:a4:ce:ea:68:19:c4:28:cc:
a7:c4:59:47:48:e8:50:24:60:3c:1b:dd:cc:3a:1c:
db:cb:d1:da:26:7a:b0:7b:d7:6c:04:80:ea:d6:5a:
f6:db:8d:a1:88:2c:a0:13:8a:2d:92:88:7d:25:f6:
3c:be:8e:12:8f:64:30:fe:91:2f:99:ee:7d:d1:f2:
df:b2:88:9d:33:8e:69:f8:e9:5e:d8:54:ef:b3:f0:
2c:e4:77:81:43:a4:7f:95:54:1d:aa:22:4f:7c:07:
2d:dc:51:4c:a2:2a:3d:95:e9:36:b3:e2:e6:6d:c2:
2a:91:5e:90:cb:93:2f:c7:5f:bb:ed:a5:b0:68:bb:
0f:c5:38:ac:f1:9b:33:aa:0e:1f:ec:d1:ee:78:e9:
e1:10:a9:33:86:bb:0c:b3:b9:09:77:39:aa:3d:1f:
d9:3b:5d:52:d0:84:e2:73:6f:2b:a7:c4:3c:a2:15:
65:2d:4d:f2:c9:1f:30:f4:4c:06:52:fa:98:9d:6c:
cf:29:aa:51:df:69:a5:0d:78:da:8e:f6:ce:a4:11:
0a:0e:5f:ee:8f:13:9b:f7:b5:22:35:5f:f0:74:e6:
69:33:9e:4a:08:05:65:e1:3b:2b:d2:85:1a:a9:38:
ff:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:36:AB:55:D1:C0:9A:79:79:C6:6D:A9:D7:EE:18:37:5E:B3:E1:E7
X509v3 Authority Key Identifier:
keyid:9B:58:41:B0:7C:CF:63:99:79:9B:35:86:A1:B2:28:85:92:3D:F8:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1hBsHzPY5l5mzWGobIohZI9-L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/aDarVdHAmnl5xm2p1-4YN16z4ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/m1hBsHzPY5l5mzWGobIohZI9-L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:494::/48
Signature Algorithm: sha256WithRSAEncryption
7f:9a:2c:bb:96:ee:75:3a:30:d6:4b:09:a9:01:1b:f4:66:5f:
0e:3a:d3:e1:62:32:b8:6c:d1:7d:7d:8e:bb:97:88:81:b9:13:
6d:de:d3:59:20:f8:e6:23:15:41:3e:ef:7a:4e:8c:06:5c:d0:
ce:32:d0:57:08:a9:70:7d:36:9d:2f:8f:65:8c:3f:8d:86:36:
98:0a:f7:85:c4:84:d7:26:87:e8:43:2b:0b:0e:66:05:67:34:
71:37:5a:01:2b:2a:00:f8:cd:47:2a:bd:8a:f1:df:5e:6b:eb:
11:ce:9b:b1:7a:28:9d:15:4b:e2:e2:bc:97:a5:ce:1e:92:c1:
b7:56:57:b6:74:9c:4b:ff:6b:49:40:ac:fc:bf:13:31:9c:fc:
53:d8:5c:b5:fa:f7:2a:a5:d7:62:ee:c3:bf:f0:eb:9e:ea:60:
cb:3a:c4:b8:e2:9d:53:dc:a2:ca:ff:61:b7:13:ad:44:c3:3f:
2b:fa:c5:62:66:7d:e0:57:40:3f:b6:3d:d3:4a:2d:7e:44:41:
94:ef:ce:a4:a5:89:be:fb:6e:e6:ed:ab:cf:7b:69:70:33:2e:
57:60:40:4b:29:d3:6b:21:e4:e8:43:e2:b5:ee:57:87:e1:dc:
8d:76:f4:ad:c0:94:93:a2:7f:df:47:f1:06:91:ec:b0:2c:5d:
69:a3:2b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net