Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Jmms6c5eLfbWmfFJ0UIInHNVsew.roa
File: Jmms6c5eLfbWmfFJ0UIInHNVsew.roa (raw, json)
Hash identifier: zHphwNmr8GuioNaCKNjHeeZHJq28mt+8PSkYGzT+eo8=
Subject key identifier: 26:69:AC:E9:CE:5E:2D:F6:D6:99:F1:49:D1:42:08:9C:73:55:B1:EC
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 010B631E
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Jmms6c5eLfbWmfFJ0UIInHNVsew.roa
Signing time: Sat 01 Jan 2022 00:59:32 +0000
ROA not before: Sat 01 Jan 2022 00:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57853
IP address blocks: 2a0c:b641:190::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17523486 (0x10b631e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2669ace9ce5e2df6d699f149d142089c7355b1ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ac:c1:45:96:a0:e1:03:f7:9d:78:07:2b:a1:
57:22:a0:dc:07:68:14:7c:6c:43:58:23:d6:7c:bc:
57:9c:09:de:6f:48:33:dc:ca:97:c3:8c:09:e3:a4:
17:b1:d1:3d:5e:12:d1:d4:04:05:69:f1:bb:96:50:
8f:3c:22:60:a1:c9:3b:5f:94:07:ce:a2:0e:63:17:
ed:73:16:78:38:fb:c2:57:a3:94:70:b7:9f:3b:20:
1c:61:4c:6d:d0:77:0a:fd:65:79:67:5e:1c:1f:71:
d9:5e:c5:41:7a:69:36:b0:37:af:68:7d:bc:6d:6b:
a6:65:10:10:ef:5c:03:30:95:11:93:90:32:1e:53:
a2:39:7c:b3:c6:d6:24:2b:a7:25:d7:38:38:1e:6e:
3a:4a:7c:13:82:15:60:2a:7b:c2:a4:52:87:00:bb:
93:ec:51:a9:9d:52:89:42:7a:6b:fc:95:76:53:e1:
63:8f:bf:a9:9b:d8:9c:af:34:25:da:3c:33:8b:57:
ce:18:28:fd:e9:d3:08:5a:02:c9:66:80:54:88:d6:
ea:b5:54:8c:2a:1e:fd:49:b4:57:97:f4:c0:e6:11:
b6:72:66:04:26:ad:8f:b6:b1:cb:a3:9a:19:eb:a2:
5e:57:8a:45:b5:f8:c6:9c:49:3e:7a:03:38:13:5c:
0c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:69:AC:E9:CE:5E:2D:F6:D6:99:F1:49:D1:42:08:9C:73:55:B1:EC
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Jmms6c5eLfbWmfFJ0UIInHNVsew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:190::/44
Signature Algorithm: sha256WithRSAEncryption
49:69:70:38:be:9b:71:4c:b4:c8:f1:0c:48:da:0b:a2:64:cf:
bc:5f:48:4f:94:a5:d1:c2:6f:17:fa:b0:5d:9e:bd:51:1e:6c:
96:1f:ff:04:c1:25:4b:d4:55:4c:c7:70:d9:76:1e:c1:be:b4:
d2:e7:6c:8d:fd:52:df:e4:c2:c2:38:85:6c:0a:16:d1:d5:42:
63:9d:07:ea:25:bd:89:2e:2b:25:4d:41:b0:1f:ca:c8:58:a6:
76:2f:1e:4d:e8:86:e1:92:2d:14:41:a8:8a:49:f3:74:01:ab:
0e:1a:03:be:1b:dc:84:1c:a1:17:b3:dc:fd:3d:5e:f3:07:75:
7d:d7:9d:dc:6f:64:d8:19:28:d3:1a:9d:93:f5:33:5e:b8:4b:
13:65:47:a6:9c:19:cb:cf:66:de:f1:dc:15:c5:65:13:f7:f7:
0c:ea:6f:40:3d:22:8c:47:0b:1d:a9:d4:ec:8e:05:be:68:ac:
3f:38:12:f1:c3:b0:da:73:26:e2:a3:bf:1d:b5:32:16:f8:f9:
0b:a8:b7:1e:6a:06:d7:55:e1:c8:d4:60:fc:14:0c:4b:37:ad:
32:a9:91:02:2f:2a:ec:18:41:5e:c5:fc:32:76:6b:05:ed:93:
b0:51:fd:e6:ec:55:96:80:69:79:98:96:bd:71:33:37:8e:c3:
0e:2d:a3:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org