Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/1e2d99-7c83-4eb2-a163-2228f9ad750f/1/28wBmx34vVb-JRa98kA2RRKv2J8.roa
File: 28wBmx34vVb-JRa98kA2RRKv2J8.roa (raw, json)
Hash identifier: ZcK7u7FZX6C+S7pzSnbh4daHA522N+hhF+K7U6sRr+o=
Subject key identifier: DB:CC:01:9B:1D:F8:BD:56:FE:25:16:BD:F2:40:36:45:12:AF:D8:9F
Certificate issuer: /CN=6b61e9000977bad58c87705e3b165b08483f0b3a
Certificate serial: 063CA822
Authority key identifier: 6B:61:E9:00:09:77:BA:D5:8C:87:70:5E:3B:16:5B:08:48:3F:0B:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a2HpAAl3utWMh3BeOxZbCEg_Czo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/1e2d99-7c83-4eb2-a163-2228f9ad750f/1/28wBmx34vVb-JRa98kA2RRKv2J8.roa
Signing time: Sat 01 Jan 2022 00:59:08 +0000
ROA not before: Sat 01 Jan 2022 00:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207491
IP address blocks: 2001:678:c08::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104638498 (0x63ca822)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b61e9000977bad58c87705e3b165b08483f0b3a
Validity
Not Before: Jan 1 00:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbcc019b1df8bd56fe2516bdf240364512afd89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b3:cf:93:3a:7a:37:7a:3a:4a:99:41:5d:c7:
a5:44:c1:55:76:76:33:48:c2:f2:66:af:d8:35:f2:
df:f6:6f:27:26:b0:e3:c4:ad:b1:a2:0e:5c:0a:3a:
c8:dc:d0:b4:5a:bf:eb:67:42:6c:5f:2b:60:28:e4:
4a:24:60:48:74:af:22:30:59:62:4a:57:5a:34:6c:
fe:97:df:a5:dd:be:0a:03:70:22:3e:e1:97:0e:52:
35:6d:f7:b2:4d:78:9a:c9:1b:8b:46:aa:65:2d:05:
b4:9f:8a:03:02:39:ab:4e:3b:18:1e:0f:a1:2f:fb:
0b:c5:97:6d:33:91:fe:e6:b7:2d:48:bf:61:17:5e:
7d:09:f0:4e:91:28:ec:ce:29:a8:8a:9d:8a:b8:a4:
85:30:d5:be:4e:68:e5:5c:94:66:d7:cf:de:7d:69:
11:eb:37:87:c4:aa:ea:f7:66:f3:e8:81:9c:6b:99:
af:fb:7e:b7:b7:12:6a:a7:d3:80:66:55:26:27:65:
4e:6e:50:4b:d4:f2:d3:87:71:d4:52:f7:a3:55:3f:
7f:54:3e:49:ce:ad:70:c6:95:e6:f8:fd:af:fb:2c:
ab:1f:08:73:2b:bc:74:8c:4c:f2:fd:90:45:d0:88:
85:be:26:b6:48:a8:47:24:38:aa:43:d8:48:4c:39:
a4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CC:01:9B:1D:F8:BD:56:FE:25:16:BD:F2:40:36:45:12:AF:D8:9F
X509v3 Authority Key Identifier:
keyid:6B:61:E9:00:09:77:BA:D5:8C:87:70:5E:3B:16:5B:08:48:3F:0B:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2HpAAl3utWMh3BeOxZbCEg_Czo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1e2d99-7c83-4eb2-a163-2228f9ad750f/1/28wBmx34vVb-JRa98kA2RRKv2J8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1e2d99-7c83-4eb2-a163-2228f9ad750f/1/a2HpAAl3utWMh3BeOxZbCEg_Czo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c08::/48
Signature Algorithm: sha256WithRSAEncryption
89:c8:88:10:70:94:51:fc:55:d1:6c:24:0b:3c:9c:d9:79:c1:
f8:e2:f1:d9:49:be:60:eb:81:15:67:82:c3:81:e0:dc:d6:da:
fe:f1:41:8a:da:0c:b2:2a:c2:e2:25:89:e9:4d:b3:05:63:29:
98:7f:48:e4:45:a6:58:23:1c:64:3a:aa:6e:d9:40:50:be:23:
11:89:16:b2:68:c1:13:e6:a7:f7:80:db:ef:d5:cc:73:1c:6f:
51:e2:5b:e7:9d:2d:b9:83:1d:47:93:48:b0:75:0e:b2:41:38:
3e:17:b4:34:89:5f:00:60:2e:46:e7:cf:2c:03:31:78:b7:d4:
7c:c1:69:87:54:e6:92:f2:34:81:18:7e:9b:9d:c8:3f:73:34:
c4:25:fc:e1:ca:cc:90:e7:38:bc:b7:36:77:db:22:09:8c:96:
78:9a:a6:3f:5e:a7:fe:03:b6:09:94:a1:fb:53:ae:3d:41:42:
3f:b1:a7:90:45:d6:88:72:9c:e6:f8:63:9c:2b:02:0d:4a:b5:
40:af:d5:af:23:5e:d7:6f:42:c6:99:2c:bf:c4:5f:3e:3e:3c:
36:bd:72:d4:87:2c:50:3e:4d:86:be:a2:24:5d:a6:42:01:2f:
5d:29:9a:86:76:c8:c2:bf:c5:9e:54:81:65:8c:f5:69:a4:90:
42:46:64:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:28 2024 by rpki-client on console-ams.rpki-client.org