Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/Cb9NdNIRv5EPMnVWSthfaxtSjfU.roa
File: Cb9NdNIRv5EPMnVWSthfaxtSjfU.roa (raw, json)
Hash identifier: m5xxoFqtwGJ2VwOx5H+5RvykV4OgUPkZ/J/C15ecOfs=
Subject key identifier: 09:BF:4D:74:D2:11:BF:91:0F:32:75:56:4A:D8:5F:6B:1B:52:8D:F5
Certificate issuer: /CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Certificate serial: 087D4BA6
Authority key identifier: C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/Cb9NdNIRv5EPMnVWSthfaxtSjfU.roa
Signing time: Sat 01 Jan 2022 13:56:52 +0000
ROA not before: Sat 01 Jan 2022 13:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 2a04:de40::/42 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142429094 (0x87d4ba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Validity
Not Before: Jan 1 13:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09bf4d74d211bf910f3275564ad85f6b1b528df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:86:0c:38:70:66:51:e8:46:81:b7:7c:8c:68:
6b:83:b1:b1:c3:fc:d1:be:a3:2a:36:1d:82:f9:bb:
01:de:dd:3a:35:71:cf:8c:45:f0:4f:e9:19:f4:eb:
d6:db:b3:2f:a5:2c:51:b2:7e:5c:ba:ae:b9:d6:f5:
a5:0d:b3:66:39:de:f3:45:10:e7:43:35:e4:b3:90:
78:15:b6:61:6e:14:00:89:9b:4a:04:f5:d8:d6:16:
b5:9d:d3:0f:33:c9:28:f1:c9:77:8c:06:c8:40:c2:
3b:df:42:77:97:5a:46:1c:02:43:fb:84:ce:a3:7d:
88:13:e5:03:73:bb:22:4e:e3:b4:57:60:f6:07:fc:
c8:d9:0d:dc:d8:fa:22:39:a1:82:a5:6e:83:98:cb:
2a:d2:93:4c:c5:a3:1b:cd:b6:66:4a:f3:3a:41:34:
8d:e4:7f:d3:35:f6:cd:70:c2:ac:2e:04:f4:ca:ec:
19:3f:0c:83:55:eb:7a:d0:50:46:df:da:0d:b5:cc:
c8:f9:b2:48:b3:fd:f0:fb:8f:3a:27:9d:aa:f1:f3:
21:70:77:e8:83:a7:92:36:00:22:d0:3e:2f:87:02:
b3:9b:19:b0:d2:0b:f3:da:30:a7:cb:37:00:30:5f:
2b:55:2a:d1:0a:f3:80:ae:a7:05:ce:1f:aa:72:0e:
35:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BF:4D:74:D2:11:BF:91:0F:32:75:56:4A:D8:5F:6B:1B:52:8D:F5
X509v3 Authority Key Identifier:
keyid:C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/Cb9NdNIRv5EPMnVWSthfaxtSjfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:de40::/42
Signature Algorithm: sha256WithRSAEncryption
40:b3:be:1a:40:f9:94:3b:fe:c7:d5:98:84:d2:26:98:0d:b2:
b8:cb:6d:0b:98:a7:75:c0:ff:fa:e4:8b:6a:14:5b:0c:c5:dd:
3d:55:15:e3:c9:d2:57:58:2a:4f:bf:63:3c:15:b8:d6:73:4e:
5b:a6:26:dd:e1:d4:ac:3d:06:fa:3a:d4:6a:4b:1b:d3:4f:2e:
2f:7b:e8:3c:42:39:a6:e9:66:48:78:54:f8:c9:e7:86:3e:8f:
d1:6c:f1:70:66:49:54:18:7e:42:ad:65:e3:c8:79:0b:65:d5:
bf:6d:f9:48:ec:9f:d6:91:97:9b:09:eb:ea:99:b9:ce:77:8b:
87:2a:0a:12:2b:51:5d:bf:55:93:9c:3e:ed:3b:8c:ca:4e:4c:
8d:32:2b:3b:3e:52:5a:9b:cd:d9:c8:28:89:04:37:e5:f7:c1:
42:9a:6b:2e:ee:09:c0:ce:c6:9a:ce:7d:cf:55:60:1c:64:d3:
20:4b:e4:aa:a2:d8:9c:71:00:f3:a2:b3:95:c7:4e:7f:92:6f:
c7:e6:61:53:04:bf:31:d0:10:5e:29:90:5d:98:af:ed:65:46:
8b:de:aa:a0:c1:4e:37:2f:58:91:c3:d4:29:79:dc:4d:19:2a:
af:58:61:7f:95:d1:9f:60:30:87:21:eb:73:dd:a9:c8:27:9b:
92:ab:32:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org