Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/4MHlmu35b9ZXAkQyEQhocKkyjT4.roa
File: 4MHlmu35b9ZXAkQyEQhocKkyjT4.roa (raw, json)
Hash identifier: lFpLyoiouOvkJj9ghopx6FMvXmEjrdbN+amg+/AjS90=
Subject key identifier: E0:C1:E5:9A:ED:F9:6F:D6:57:02:44:32:11:08:68:70:A9:32:8D:3E
Certificate issuer: /CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Certificate serial: 0DB4AE62
Authority key identifier: 37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/4MHlmu35b9ZXAkQyEQhocKkyjT4.roa
Signing time: Sat 01 Jan 2022 08:58:15 +0000
ROA not before: Sat 01 Jan 2022 08:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202410
IP address blocks: 2a0c:3800:400::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229944930 (0xdb4ae62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Validity
Not Before: Jan 1 08:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0c1e59aedf96fd65702443211086870a9328d3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:85:34:ea:fc:59:61:7e:de:9b:d1:b1:25:2e:
68:4e:18:8c:f9:b5:6c:7b:61:5f:a5:c4:ff:0c:bb:
3a:3b:86:ac:ea:d0:1e:be:c0:08:42:2c:06:3c:be:
e9:4c:15:bc:e7:47:87:0c:fd:98:8e:81:90:f5:a1:
53:1c:b1:03:2d:dd:34:fc:db:a9:ee:4e:20:b3:4b:
96:33:0a:ca:07:9a:57:73:82:fc:a7:66:4e:a8:7e:
da:c2:4c:0a:43:3d:4e:cc:81:2a:84:b9:ab:00:db:
da:fd:05:2f:e1:6e:bc:c3:f1:60:36:b2:38:76:a1:
96:04:8b:14:b9:e4:4f:c5:fc:5f:a5:fb:87:af:4f:
37:3f:f4:c2:96:82:3e:cc:dc:54:a7:8d:4c:82:55:
32:2a:87:b7:a1:2d:13:9e:da:39:fe:41:4b:31:2a:
60:8d:48:2b:cd:e2:b5:24:7d:32:c4:8e:de:94:d5:
73:23:ad:06:0c:1b:e0:78:b8:a4:a1:7b:ee:32:74:
9f:d7:45:ed:47:58:a9:90:47:3f:7b:8e:08:ca:4a:
0f:c4:23:f8:72:a2:86:d1:34:ca:a4:98:af:f0:f5:
84:00:7a:e4:18:00:a5:9d:6f:07:c4:d3:9b:b2:7a:
f4:50:2b:59:e6:72:53:82:51:7d:23:e0:3c:34:93:
f6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C1:E5:9A:ED:F9:6F:D6:57:02:44:32:11:08:68:70:A9:32:8D:3E
X509v3 Authority Key Identifier:
keyid:37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/4MHlmu35b9ZXAkQyEQhocKkyjT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/N4ezJLDTL7GjZ4sCxIIobUwmug8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3800:400::/48
Signature Algorithm: sha256WithRSAEncryption
5d:1e:b0:cd:c1:90:9d:7d:a4:8c:6b:7a:b5:5f:2e:db:e3:63:
c7:6e:ff:5c:cc:28:f8:38:08:29:2a:6c:15:5f:99:ac:d3:1f:
16:b5:c9:4e:30:ee:f0:38:b0:4b:eb:d4:57:2a:f5:85:c1:69:
4c:2b:a1:73:c2:de:ad:68:b8:a8:84:14:4e:82:26:4b:a4:a5:
7b:07:c0:ba:fc:cf:59:c9:f6:fe:e6:07:ec:b0:63:11:6f:e9:
b5:4f:1d:c1:eb:c4:30:54:1c:e9:0c:ba:9d:1c:22:2c:30:5d:
e6:aa:33:bf:3f:50:f9:86:ea:99:76:1c:de:f3:f3:3a:7e:45:
ed:35:41:50:48:ba:ac:72:3d:8a:25:6c:d0:3b:9e:50:96:ff:
19:e1:84:a2:28:89:49:db:e6:ba:45:20:23:d7:c4:76:be:ba:
e2:84:61:c6:01:86:59:6a:3d:54:79:28:45:da:d0:69:e2:4f:
76:88:1c:3e:50:21:f3:1d:3a:c4:e4:a6:30:12:8f:74:51:6a:
8f:88:67:d0:84:18:09:74:87:b2:95:55:db:7a:80:34:a0:38:
05:98:69:33:cc:cd:d5:97:5a:50:f8:36:8d:7b:db:20:92:dd:
bb:93:db:a8:d2:54:b6:5e:53:8d:2c:ed:29:02:0a:f9:c8:77:
ac:ab:78:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:28 2023 by rpki-client on console.sobornost.net