Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/1-G7c_GLrewFy86cnkIQyzqmzgWQ.roa
File: 1-G7c_GLrewFy86cnkIQyzqmzgWQ.roa (raw, json)
Hash identifier: 23PHVY2CPhKhUuee05spllOcP0ckSJJWfDNFqC26Vj8=
Subject key identifier: F8:6E:DC:FC:62:EB:7B:01:72:F3:A7:27:90:84:32:CE:A9:B3:81:64
Certificate issuer: /CN=c833a0389592756e415cde348abbc24312b02df6
Certificate serial: 173B89A7
Authority key identifier: C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/1-G7c_GLrewFy86cnkIQyzqmzgWQ.roa
Signing time: Sat 01 Jan 2022 00:55:26 +0000
ROA not before: Sat 01 Jan 2022 00:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204254
IP address blocks: 2001:67c:754::/48 maxlen: 48
2001:67c:75c::/48 maxlen: 48
2001:67c:758::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389777831 (0x173b89a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c833a0389592756e415cde348abbc24312b02df6
Validity
Not Before: Jan 1 00:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f86edcfc62eb7b0172f3a727908432cea9b38164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:46:ae:a2:73:c6:39:74:e6:b0:5a:db:a9:f3:
d3:b7:15:56:38:96:ea:53:8f:ca:a6:c6:e8:c8:d4:
23:ad:f8:4a:e6:7e:14:86:d7:32:65:6b:5c:3f:02:
05:37:bc:32:97:57:03:38:cf:8f:7c:06:e6:e4:56:
5c:9d:0a:1c:e8:ab:e1:3e:2b:8b:cb:f8:60:0e:58:
2a:83:ab:f6:f3:48:09:5c:4b:60:53:86:65:64:88:
da:73:7e:2b:42:1d:00:24:a4:9d:14:20:a3:6a:19:
f0:57:8f:fe:d6:b6:93:fe:ca:ff:d0:28:c5:7c:e9:
ae:23:5d:04:a7:61:eb:15:e6:c2:4f:93:00:06:67:
80:04:da:45:a6:51:54:df:6b:29:cc:df:d5:f8:0b:
61:40:11:d4:21:14:78:1b:42:90:82:3f:51:97:1f:
13:b4:3c:8e:f9:70:1c:fc:f7:4c:f9:50:1e:b5:8d:
49:d2:a4:67:83:e1:93:87:90:05:89:2f:1a:10:14:
d9:fe:87:7c:5d:6c:fd:f9:29:ce:da:97:1d:b2:98:
71:73:ae:72:76:35:25:db:7a:f9:7a:7d:a7:79:1c:
14:ab:13:b5:f1:67:9a:98:6a:3f:8b:36:51:6d:46:
01:ca:64:b5:6b:ed:9f:6f:9a:20:c6:5a:dd:6c:22:
e2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:6E:DC:FC:62:EB:7B:01:72:F3:A7:27:90:84:32:CE:A9:B3:81:64
X509v3 Authority Key Identifier:
keyid:C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/1-G7c_GLrewFy86cnkIQyzqmzgWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:754::/48
2001:67c:758::/48
2001:67c:75c::/48
Signature Algorithm: sha256WithRSAEncryption
b5:ee:d5:ec:5b:25:d4:f4:d2:27:5f:c5:d3:be:d7:99:d0:e2:
3b:fc:25:f5:5a:53:53:07:26:3d:47:84:c8:39:6f:ea:83:55:
a6:1a:bb:50:07:6b:a8:4e:8c:c6:39:90:a2:49:73:06:45:40:
9a:a2:f5:fb:88:f8:c6:01:75:2b:d8:2b:cb:cd:d1:fb:d3:f5:
65:f0:4c:08:ee:e2:70:7a:df:82:c7:a5:37:2d:de:53:78:9a:
bb:ba:11:80:b3:29:1c:7a:86:46:c2:b0:b1:34:a7:a6:2c:27:
8b:7e:f9:5a:ed:ec:2e:84:3f:76:37:4b:41:fc:df:53:f3:de:
56:79:36:fd:8e:69:e2:14:8d:f4:b0:35:bf:7e:3b:aa:27:5a:
b3:09:eb:84:d6:f9:36:39:72:e9:d6:12:8b:80:13:e3:e3:e0:
e8:a5:da:5f:f5:17:94:8a:b5:af:fc:84:c1:a5:99:8a:2c:17:
b7:61:87:4e:5d:e7:fa:da:cb:b4:57:06:d3:47:c7:57:99:3d:
d2:e3:f5:e0:47:67:15:63:f0:b9:a5:9b:0d:6e:44:79:e3:7e:
9f:c2:3e:de:49:9a:d7:a8:ab:8a:68:02:27:be:38:e5:29:56:
d8:ee:93:83:f2:92:bf:08:0f:c7:04:c5:c5:e7:ad:ce:08:c5:
db:d5:8a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net