Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/djw9l3-6pC0UGakJT7ag2RDwWaU.roa
File: djw9l3-6pC0UGakJT7ag2RDwWaU.roa (raw, json)
Hash identifier: 4ZxeEqL6RM1pBK/F8M3iJHl0kftqy5jXCocta5a6Vck=
Subject key identifier: 76:3C:3D:97:7F:BA:A4:2D:14:19:A9:09:4F:B6:A0:D9:10:F0:59:A5
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 09003393
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/djw9l3-6pC0UGakJT7ag2RDwWaU.roa
Signing time: Sat 01 Jan 2022 15:03:00 +0000
ROA not before: Sat 01 Jan 2022 15:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16260
IP address blocks: 2001:668:1fc::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151008147 (0x9003393)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=763c3d977fbaa42d1419a9094fb6a0d910f059a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:62:07:dd:0c:e7:da:5d:36:d9:f3:3f:97:07:
a3:5f:2e:62:b0:df:24:9e:d6:7c:ad:e6:a6:3b:76:
9b:ed:87:bc:62:bd:f9:ac:79:95:92:b1:88:44:5c:
cb:95:96:ca:01:90:19:b5:4e:7d:93:f6:8f:da:2b:
8e:3e:9a:5b:20:0d:9e:60:66:bf:44:0b:3f:8d:b6:
42:8a:a8:5a:91:db:c3:c5:0b:9c:f0:36:4e:db:4d:
cb:17:aa:82:fa:a3:4a:c9:d1:88:db:8a:31:a2:ec:
8e:0f:21:17:d5:22:ec:cc:f2:b5:b5:fd:ef:2e:15:
33:ec:07:fa:59:72:e4:e2:f2:d4:03:8c:97:31:12:
bd:3c:ba:7c:12:f4:f9:6e:31:6f:26:d4:a6:73:28:
44:12:1b:19:9e:9a:5a:c0:42:21:60:41:7f:3d:85:
53:ea:4e:96:fb:f4:2c:2f:04:7d:bc:49:6e:a3:52:
b0:f4:43:13:07:ea:11:cd:d7:f7:46:cc:2c:79:d1:
de:4b:47:2b:26:4d:e8:93:4f:45:62:f1:a2:4c:9b:
35:be:c1:1b:e8:88:01:7d:ce:98:6b:27:be:14:c5:
06:8c:99:5c:43:33:1c:a6:f3:45:fd:2a:49:cc:46:
d4:56:0e:e1:56:b2:2d:12:78:17:2d:7f:81:c8:63:
aa:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3C:3D:97:7F:BA:A4:2D:14:19:A9:09:4F:B6:A0:D9:10:F0:59:A5
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/djw9l3-6pC0UGakJT7ag2RDwWaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:668:1fc::/46
Signature Algorithm: sha256WithRSAEncryption
70:39:af:ca:80:71:ef:7f:2c:b0:e5:f6:13:a8:5b:46:1d:fe:
8f:49:bf:b2:01:d0:cd:e0:7b:d8:bc:2b:59:e2:91:7c:d8:28:
78:eb:12:fd:6d:38:a1:96:72:85:5c:0b:c6:9a:8a:fa:3c:41:
0a:8e:3b:2f:b6:e6:b2:e8:19:50:e7:a3:49:dd:19:17:6c:58:
d7:32:26:cc:2f:65:68:da:38:26:90:7d:9a:f9:7a:e7:65:3e:
f9:88:d9:12:bb:34:a6:fc:fa:e1:d6:ad:98:ee:e5:64:58:9d:
29:04:48:96:d2:69:49:0b:7f:06:b4:30:84:37:1d:54:aa:bb:
5b:2f:fa:97:e0:64:84:ce:a1:10:8a:3e:5d:16:bf:a8:5b:9c:
ed:b5:c4:ec:dd:ab:b9:9f:f6:c1:9f:11:ee:53:4d:74:51:03:
f8:2d:3c:2b:aa:95:4f:ee:51:fe:7f:a0:5d:f3:5f:cc:82:5d:
8b:8e:bb:1d:71:84:76:20:2e:6c:a9:9e:b8:54:af:22:71:4b:
77:aa:cf:93:a3:db:3f:e5:ef:cb:66:7f:a9:98:6e:7d:3e:e9:
90:19:34:e6:0d:08:26:4e:82:21:8d:3d:37:35:82:83:58:e3:
27:ff:f2:a8:a8:c3:c9:08:8a:fa:24:63:74:42:3f:b1:17:82:
aa:d1:b5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:34 2024 by rpki-client on console-ams.rpki-client.org