Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/djcG-jGXPJrLfOZLuRfCnyxDYM4.roa
File: djcG-jGXPJrLfOZLuRfCnyxDYM4.roa (raw, json)
Hash identifier: XQ3CDEUueu6fNs15x8ylYW30y6IzrBf6LSOFQ8wwSB0=
Subject key identifier: 76:37:06:FA:31:97:3C:9A:CB:7C:E6:4B:B9:17:C2:9F:2C:43:60:CE
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 1CC184B0
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/djcG-jGXPJrLfOZLuRfCnyxDYM4.roa
Signing time: Mon 18 Apr 2022 17:22:24 +0000
ROA not before: Mon 18 Apr 2022 17:22:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8966
IP address blocks: 2a03:2887:ff0c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482444464 (0x1cc184b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Apr 18 17:22:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=763706fa31973c9acb7ce64bb917c29f2c4360ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b8:6c:00:7b:5d:a8:3f:f0:ba:69:95:69:ab:
0b:e8:2b:47:e2:e5:77:82:47:c6:a2:e8:71:c0:79:
ab:23:68:93:2c:2b:32:8b:5b:b0:92:6a:07:9e:2b:
1d:f3:7d:5e:71:db:dd:bf:4d:a2:be:93:68:17:d5:
da:e1:95:72:0b:3d:c5:26:e7:cd:75:95:c9:45:49:
30:f9:8d:e2:20:42:db:35:a8:26:5d:f8:6d:2b:01:
7c:9f:2c:d4:db:47:b5:d8:7b:2d:2b:f4:8e:10:2f:
09:32:a7:8c:fa:81:f3:ad:1b:f2:98:1c:32:69:ff:
03:f9:c0:41:36:d4:e2:2a:91:f5:b0:75:6e:d2:d7:
e5:10:13:99:c6:1b:82:04:d4:7f:b2:56:dc:42:ae:
04:1c:df:86:4b:c6:72:a4:93:21:c9:24:e9:fc:cc:
d4:8a:b1:3c:09:dd:e3:69:ac:b1:f9:7b:a4:d4:98:
be:95:66:2b:0b:25:71:05:7b:93:56:60:bc:29:ab:
dc:8b:39:a6:d8:2e:26:26:4d:40:40:55:93:28:71:
3d:f4:5e:7e:7f:d0:88:c9:8f:6d:18:12:d9:5c:d2:
5b:bc:d4:51:fe:a0:ce:05:2b:18:7c:03:20:ec:13:
52:b6:82:b5:ba:70:67:5d:00:1c:0d:54:95:67:5b:
a2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:37:06:FA:31:97:3C:9A:CB:7C:E6:4B:B9:17:C2:9F:2C:43:60:CE
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/djcG-jGXPJrLfOZLuRfCnyxDYM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2887:ff0c::/48
Signature Algorithm: sha256WithRSAEncryption
a2:df:6f:47:e4:4a:3e:78:0d:6a:e3:33:a5:64:ec:58:42:40:
d5:21:b1:2d:d8:7e:06:63:c3:1b:ce:65:93:85:67:a1:a1:ab:
a3:9d:2c:9d:31:7b:f2:8e:14:06:f2:df:0f:ad:1a:2b:da:dc:
81:2a:dd:77:5e:46:d7:74:4c:ca:5b:f8:1e:c5:b3:c0:66:fc:
70:aa:20:af:e0:ee:3e:41:8e:8e:58:fb:63:4f:83:41:2b:4c:
99:19:c5:d2:05:cf:f8:ae:74:83:44:4b:fc:6f:f8:ec:5d:5f:
2b:09:ab:57:36:ac:5f:55:72:ca:9a:5b:50:1c:d7:d2:59:23:
35:17:a8:63:ac:17:df:3d:79:a2:ff:48:30:96:ee:19:cb:57:
e6:a6:5b:59:8f:6b:c1:49:9d:42:28:4d:b6:9f:ba:e5:e4:33:
d6:b4:bc:a8:8c:55:9a:8d:d8:80:8e:09:1c:d1:37:28:49:b3:
05:bf:68:15:aa:f3:51:06:6b:3e:86:ce:07:fd:10:14:b5:84:
b5:11:51:67:71:5c:9f:46:00:5b:bf:b5:c0:3c:57:30:b4:73:
a1:d7:33:96:a3:fa:c3:5b:7f:31:fb:20:a0:f9:4b:07:ce:1e:
a0:8a:0f:57:2a:81:12:c7:b2:8b:5a:d4:89:b6:6b:1e:eb:4f:
75:6b:e3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:57 2024 by rpki-client on console-fra.rpki-client.org