Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/s04CO8D5Yr9XExHo47N6cHcvR_c.roa
File: s04CO8D5Yr9XExHo47N6cHcvR_c.roa (raw, json)
Hash identifier: JEjpJ+234GtrppLjabu8t4N/vXt7rClIoYAIijTAJu8=
Subject key identifier: B3:4E:02:3B:C0:F9:62:BF:57:13:11:E8:E3:B3:7A:70:77:2F:47:F7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0136538F
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/s04CO8D5Yr9XExHo47N6cHcvR_c.roa
Signing time: Sat 01 Jan 2022 00:59:55 +0000
ROA not before: Sat 01 Jan 2022 00:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210234
IP address blocks: 2a0c:b641:60::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20337551 (0x136538f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b34e023bc0f962bf571311e8e3b37a70772f47f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:46:f6:a2:a6:4f:1a:cc:79:b1:89:bb:e3:61:
ea:d8:89:18:cc:6e:60:3a:70:8c:59:1e:8d:90:b2:
5c:24:e3:38:17:bb:71:32:59:e2:5e:cb:3a:e7:54:
65:37:38:7e:81:fa:53:27:9f:a2:7b:73:72:9e:1d:
cd:44:8c:d3:ff:0c:f2:5a:04:97:1e:a9:a1:60:4c:
c0:dd:7e:ea:fa:a4:23:a0:8a:ab:e6:44:20:d0:d9:
3b:3f:f9:9b:90:9e:60:4f:9a:0e:a1:22:db:b3:76:
57:77:0e:b7:9b:61:c0:b9:d6:c6:24:76:04:64:a6:
98:8a:16:09:34:d1:e9:60:6b:e9:3b:05:7e:40:22:
04:d9:95:b7:b9:a4:80:a8:7e:f6:f4:98:1f:fd:04:
4d:ac:d1:13:29:5d:40:3e:be:93:d4:29:88:d6:fa:
b1:17:f9:f4:30:4f:a4:77:eb:c4:e5:f8:2c:da:b6:
d4:5e:97:ec:06:66:d9:df:0d:38:2c:12:eb:59:81:
0d:eb:db:49:ff:2c:b5:b3:bd:2c:34:80:b7:d2:77:
99:cf:a0:8e:78:5b:46:97:a6:f8:1e:ad:08:cb:e8:
bc:a1:53:2a:fe:c5:42:2a:67:6c:7a:49:d4:18:8b:
24:3f:d6:ec:30:67:45:f8:a6:c1:89:3c:00:9e:29:
23:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4E:02:3B:C0:F9:62:BF:57:13:11:E8:E3:B3:7A:70:77:2F:47:F7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/s04CO8D5Yr9XExHo47N6cHcvR_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:60::/44
Signature Algorithm: sha256WithRSAEncryption
7c:24:b1:51:ef:34:23:43:03:45:b5:6a:c6:dd:64:63:03:36:
d1:fa:1b:19:0d:60:7d:9f:19:4a:fb:1a:44:09:13:b6:91:7d:
f4:d5:7b:b4:46:42:6c:5e:02:38:ac:08:4e:16:20:37:51:5d:
f5:9e:b5:ad:c1:21:f8:77:15:36:dd:e3:41:21:65:d7:76:04:
b3:64:60:7a:56:d3:9d:3a:ab:b6:ee:a9:3c:cd:c0:67:89:e7:
d8:5d:8e:c6:b4:eb:9c:53:85:b8:25:3f:e6:d5:26:56:a4:bd:
c0:c2:7c:7d:54:b9:87:d8:b1:ee:d9:00:bd:c0:8d:3b:23:9f:
7d:ad:e9:49:cf:d6:98:cd:20:32:1a:c6:70:eb:ca:4e:f4:68:
59:5f:9b:67:69:13:1a:c5:d7:4f:a2:a5:35:f1:15:c7:b4:78:
96:93:b2:5b:be:eb:10:f9:ce:f1:58:6c:3f:77:6f:1d:04:ce:
2f:3f:cd:83:67:13:fe:4a:e9:6f:2b:2c:da:cd:76:a3:c2:3c:
24:2b:b3:cd:c2:d2:5a:94:97:d6:e1:53:58:8d:06:59:1c:96:
43:90:c1:89:ee:b9:b4:0b:20:5c:3c:7b:4b:64:0b:c8:2a:76:
dc:5f:ac:ec:77:08:e0:bd:46:b0:f5:d3:b5:b0:54:9e:29:28:
42:ef:98:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org