Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0XBOjaKd8_99vJqIIVe5Jzp3tak.roa
File: 0XBOjaKd8_99vJqIIVe5Jzp3tak.roa (raw, json)
Hash identifier: OEgEB/AwYHsrOZw+/+fiAt9Z2tnJ5AGmikXOf+6HrhA=
Subject key identifier: D1:70:4E:8D:A2:9D:F3:FF:7D:BC:9A:88:21:57:B9:27:3A:77:B5:A9
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01738E79
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0XBOjaKd8_99vJqIIVe5Jzp3tak.roa
Signing time: Fri 07 Jan 2022 16:05:08 +0000
ROA not before: Fri 07 Jan 2022 16:05:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209978
IP address blocks: 2a0c:b641:6b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24350329 (0x1738e79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 7 16:05:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1704e8da29df3ff7dbc9a882157b9273a77b5a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:aa:b9:87:15:d2:de:d3:8e:d5:5a:fb:f5:6e:
ee:a0:86:b7:99:aa:3d:12:08:05:e3:22:eb:54:1b:
d3:65:52:7d:5b:16:a7:ab:d1:5e:6a:b3:d4:df:06:
8d:f1:dc:0e:27:70:64:39:20:3c:4f:e4:14:5c:47:
71:14:0a:88:0a:bd:62:20:38:e7:dc:00:1d:04:37:
12:df:fb:72:2b:a2:66:04:d9:00:e8:f6:10:88:84:
b8:fc:72:a7:74:de:bc:4d:9d:18:be:aa:4c:ac:b9:
60:2e:25:dc:ae:8f:be:18:ba:96:f6:fc:9d:9e:e5:
e6:5c:3b:24:c6:35:43:2b:11:2b:3b:48:11:64:b0:
4a:3e:f5:d2:7b:39:44:5b:30:a5:d9:0b:07:7e:a2:
9b:ca:8c:d5:6b:1d:97:22:70:0e:35:64:d5:e8:a7:
ee:fb:c2:ad:8f:5c:fd:a5:f8:2f:a6:95:87:e4:41:
6c:5e:24:bf:07:27:83:d4:11:f2:d7:d9:e2:fe:1a:
37:81:aa:83:d9:e1:95:0d:02:63:76:0b:67:3a:ce:
b4:af:33:61:86:52:d5:57:cc:1b:90:cf:d3:70:f6:
a5:06:14:6a:07:8e:7f:2c:e8:4c:68:a0:be:9b:a7:
ce:8f:55:c4:0a:3f:cb:42:0a:f4:d6:d4:23:ea:97:
09:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:70:4E:8D:A2:9D:F3:FF:7D:BC:9A:88:21:57:B9:27:3A:77:B5:A9
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0XBOjaKd8_99vJqIIVe5Jzp3tak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:6b0::/44
Signature Algorithm: sha256WithRSAEncryption
52:4c:4a:60:ee:be:14:ae:20:83:fe:8c:d6:53:ec:15:6c:20:
62:26:74:47:09:20:4b:74:88:eb:1d:7d:03:ef:08:fc:e2:bf:
7f:5f:29:43:68:23:84:4a:7b:e1:a4:21:6a:28:00:70:8b:60:
ee:9d:e9:bc:f6:d2:46:cc:5d:1b:87:18:cb:8a:c4:bf:49:3d:
ba:b6:0e:a8:fc:34:ab:b5:92:91:e9:cb:18:ca:2e:93:a9:45:
54:19:f5:30:bf:93:3d:e9:cc:f8:dc:30:a4:fb:10:55:12:9b:
5c:6b:19:85:a8:e0:7d:d8:05:06:c9:3e:9f:4a:8d:0e:88:c4:
28:a6:04:a6:30:e5:ef:3c:d8:8d:fd:c5:24:e1:04:cc:04:1a:
4d:d2:57:7b:da:ad:dc:dc:59:f2:f7:5a:a1:0e:ba:c7:50:e8:
26:0c:00:69:db:a8:e7:3c:18:8f:43:70:c4:f7:8a:01:55:da:
42:ac:5c:d9:0f:72:58:cd:a6:8b:19:5f:db:d1:d5:76:1b:34:
ff:a0:ed:63:d3:5b:cf:35:83:8f:7a:8f:18:ec:fc:69:38:36:
2f:f3:e9:1a:8b:db:6e:34:2a:97:b1:24:f9:cb:d8:ee:bf:ce:
72:2c:9b:f6:95:9d:2a:d1:c5:41:67:00:24:e3:c5:ff:6d:4b:
58:2c:58:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org