Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/cuB2WK2D6UGFXQkrKZXKHY_QBAQ.roa
File: cuB2WK2D6UGFXQkrKZXKHY_QBAQ.roa (raw, json)
Hash identifier: FQPqvFut4RLLHLNA/FWz6uz0FlTpB4OHowkIYnPvQvs=
Subject key identifier: 72:E0:76:58:AD:83:E9:41:85:5D:09:2B:29:95:CA:1D:8F:D0:04:04
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 44910ED3
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/cuB2WK2D6UGFXQkrKZXKHY_QBAQ.roa
Signing time: Sat 01 Jan 2022 03:58:39 +0000
ROA not before: Sat 01 Jan 2022 03:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51964
IP address blocks: 2a01:ce80::/26 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150357203 (0x44910ed3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72e07658ad83e941855d092b2995ca1d8fd00404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d1:d8:96:57:19:98:9b:ee:11:fd:f6:48:f0:
cb:18:56:22:f7:df:2e:23:eb:2d:86:e1:29:e5:a7:
a2:4b:9e:52:07:67:d8:52:b0:06:21:bc:a9:d4:0e:
e7:32:40:ec:c7:ea:a4:80:35:69:4a:e2:be:58:5e:
54:d1:34:ca:93:02:60:ac:57:b2:91:5c:66:c5:37:
d1:2e:ae:57:04:02:ec:28:04:67:b0:68:c7:8b:cc:
d2:b4:29:a3:a1:d5:50:c1:e0:2a:bd:1b:82:da:d5:
ef:ae:94:30:c6:3c:45:54:ed:da:3f:49:d6:8b:e7:
0e:a7:10:17:f6:3f:e5:c0:00:31:a7:98:bc:3c:a0:
0c:81:7e:f0:3d:9f:95:fa:0d:31:56:fb:a0:d7:62:
66:27:72:68:73:b7:c9:7b:cd:66:3a:61:81:73:20:
75:19:c2:25:c9:a3:0c:12:e7:a4:63:db:9d:fc:08:
e0:7b:22:4c:a8:dc:1e:27:dd:de:aa:b6:c2:e1:78:
d7:c4:c0:9b:ca:51:26:cf:d6:a9:01:42:18:ac:4c:
e1:3f:e4:2f:20:0c:e4:cc:1a:78:e3:e6:b5:16:85:
fa:dd:d7:7f:0c:66:0d:ad:74:44:9f:9b:3c:91:ba:
88:74:ad:1a:62:70:ba:c0:38:dc:53:cc:4c:b2:98:
a2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E0:76:58:AD:83:E9:41:85:5D:09:2B:29:95:CA:1D:8F:D0:04:04
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/cuB2WK2D6UGFXQkrKZXKHY_QBAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ce80::/26
Signature Algorithm: sha256WithRSAEncryption
6e:75:cc:56:10:03:ee:c4:f7:6c:b1:63:2c:06:c9:44:19:aa:
81:43:87:f5:08:70:ec:91:8f:3a:23:30:ee:97:fd:f4:2c:5a:
41:c3:70:47:ca:3c:c2:b1:9c:3f:91:c0:43:4e:da:65:62:b6:
4e:56:7e:ef:af:5a:eb:69:7b:b1:23:7b:50:b4:cb:1e:f4:5d:
8e:c2:4b:0e:03:33:04:11:78:e9:02:4d:34:30:b9:28:a6:e0:
50:42:7c:3e:58:f7:03:e4:7c:94:5d:f6:b2:41:ed:ce:79:18:
6d:6a:3c:49:0a:0a:ac:7f:51:12:af:e9:13:c4:ff:79:6e:03:
09:4f:ec:aa:92:53:4a:d7:82:b9:f4:be:70:be:bf:d0:40:15:
e6:e8:5d:61:ff:27:d9:18:89:5c:eb:4b:bf:1a:0f:91:1f:d2:
a8:0e:4d:97:05:2e:9a:2d:1b:37:bf:60:81:9a:a4:d9:60:1d:
94:7d:a5:9a:49:61:aa:4b:19:9c:7c:83:ee:eb:69:dc:39:89:
ee:de:fc:5e:96:4d:b9:97:f9:8e:6e:17:8a:71:8b:b4:00:9d:
94:61:3b:d8:40:d8:a6:de:7f:bf:50:1d:53:11:aa:59:3f:85:
76:df:f8:b3:67:1c:b2:01:17:15:41:00:ab:55:37:98:22:45:
5a:05:f3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org