Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/Pr8-ftOIRucqGJ3Vu63wS06hudA.roa
File: Pr8-ftOIRucqGJ3Vu63wS06hudA.roa (raw, json)
Hash identifier: N6Y7KgZlKTJ4M+O7lW7Uo0p6qsxCyzXjaxrm0+yEvfA=
Subject key identifier: 3E:BF:3E:7E:D3:88:46:E7:2A:18:9D:D5:BB:AD:F0:4B:4E:A1:B9:D0
Certificate issuer: /CN=76335eb633f76942bbe99f129a1eb88a4d73fc7c
Certificate serial: 064D3488
Authority key identifier: 76:33:5E:B6:33:F7:69:42:BB:E9:9F:12:9A:1E:B8:8A:4D:73:FC:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/djNetjP3aUK76Z8Smh64ik1z_Hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/Pr8-ftOIRucqGJ3Vu63wS06hudA.roa
Signing time: Sat 01 Jan 2022 03:56:37 +0000
ROA not before: Sat 01 Jan 2022 03:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207540
IP address blocks: 2001:678:bf0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105723016 (0x64d3488)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76335eb633f76942bbe99f129a1eb88a4d73fc7c
Validity
Not Before: Jan 1 03:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ebf3e7ed38846e72a189dd5bbadf04b4ea1b9d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:12:f5:98:f3:39:09:a2:d3:bd:b1:fe:9a:c3:
6e:32:ec:fb:53:e7:92:c1:ac:ed:44:5e:10:af:cf:
fd:b0:f9:fe:f7:34:3d:c4:ef:90:22:51:f5:5a:51:
73:b8:e4:d1:c7:8e:84:83:a5:af:db:fa:c3:78:99:
f2:7e:19:2e:87:15:85:68:cf:0f:ca:2d:bb:21:00:
e8:ee:f0:45:60:1a:64:17:56:90:2a:d4:bf:19:79:
94:12:82:b9:a7:bb:14:1c:f5:72:7f:34:98:4d:ec:
7a:9d:69:35:d7:7b:99:79:28:dc:60:52:f5:7f:8d:
c2:da:d3:aa:73:30:4a:ff:19:bf:4c:ae:74:87:01:
94:15:10:8e:18:57:ca:84:7a:5c:fb:df:74:b2:8b:
c1:5d:0e:17:0a:12:eb:b3:58:6a:4d:ba:00:6b:96:
1d:27:98:a6:bc:19:de:56:18:a2:4a:3b:01:ba:d2:
f4:40:06:73:f5:1f:f5:0d:07:88:c1:49:f9:6a:75:
5c:03:ef:fa:2e:c2:e7:86:11:02:11:0f:74:f6:d7:
53:44:03:05:c5:08:83:6e:85:14:07:11:f3:62:ce:
c5:41:ff:8a:7e:81:e3:5e:a8:4c:bf:38:4f:e5:28:
0b:f5:5e:3e:43:80:d9:10:a1:4c:71:17:40:71:8e:
7c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BF:3E:7E:D3:88:46:E7:2A:18:9D:D5:BB:AD:F0:4B:4E:A1:B9:D0
X509v3 Authority Key Identifier:
keyid:76:33:5E:B6:33:F7:69:42:BB:E9:9F:12:9A:1E:B8:8A:4D:73:FC:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/djNetjP3aUK76Z8Smh64ik1z_Hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/Pr8-ftOIRucqGJ3Vu63wS06hudA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/djNetjP3aUK76Z8Smh64ik1z_Hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:bf0::/48
Signature Algorithm: sha256WithRSAEncryption
6b:7a:12:13:1b:b7:24:71:73:88:7b:e4:66:b3:4c:d1:4a:d6:
04:25:ea:97:55:38:c3:d0:96:7d:c6:08:99:04:b2:ee:28:a0:
51:44:d0:d6:93:0b:96:fe:74:f8:d3:30:fe:41:2e:80:a6:64:
b8:ba:68:e0:56:a3:22:60:03:22:5a:2d:d0:c1:37:f8:ca:00:
aa:46:83:f8:84:07:37:09:f0:95:13:08:23:da:f9:72:a6:e7:
46:7f:c4:5a:b2:78:86:55:03:04:d8:22:7a:61:a7:06:15:8f:
84:be:e6:df:ca:f1:b6:2b:dd:b0:a9:e3:76:00:fa:8b:ca:e7:
ed:5a:75:2b:7c:80:40:0d:93:86:8a:1d:3e:07:d6:2a:1e:5f:
87:08:2e:9b:db:91:db:21:7f:3b:39:e7:20:da:8c:91:83:f8:
30:68:29:fe:eb:19:63:5a:a5:58:11:49:dc:98:a4:7b:b6:de:
b7:71:82:ab:a2:af:ad:85:ae:26:40:e6:f1:d4:3c:f6:5a:3c:
20:4f:f7:ad:d4:9b:9c:69:e9:25:03:ab:40:ce:8e:d4:c4:e1:
8a:32:17:cd:7a:85:5f:d5:5a:69:90:de:eb:dc:34:14:af:37:
c1:09:63:c7:20:59:43:05:ce:ab:8b:2e:79:d9:89:e4:c9:1d:
31:b3:ea:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net