Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/Jsw3B1lQNqQo_d-evmQ1OB9-H_g.roa
File: Jsw3B1lQNqQo_d-evmQ1OB9-H_g.roa (raw, json)
Hash identifier: a16XinBoK8q14szbBVuePvgfKMk0hgiAk01KwRgfef4=
Subject key identifier: 26:CC:37:07:59:50:36:A4:28:FD:DF:9E:BE:64:35:38:1F:7E:1F:F8
Certificate issuer: /CN=b2c5f74df4520d341da348a700a03b97caf07735
Certificate serial: 020F32
Authority key identifier: B2:C5:F7:4D:F4:52:0D:34:1D:A3:48:A7:00:A0:3B:97:CA:F0:77:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssX3TfRSDTQdo0inAKA7l8rwdzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/Jsw3B1lQNqQo_d-evmQ1OB9-H_g.roa
Signing time: Thu 28 Apr 2022 12:54:40 +0000
ROA not before: Thu 28 Apr 2022 12:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28727
IP address blocks: 2001:67c:628::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134962 (0x20f32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c5f74df4520d341da348a700a03b97caf07735
Validity
Not Before: Apr 28 12:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26cc3707595036a428fddf9ebe6435381f7e1ff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7f:5d:84:40:6f:a0:d1:bf:03:ec:6e:ab:ae:
00:ce:d1:a5:20:f8:35:ca:7e:bc:1a:41:e0:b4:b4:
a4:f6:03:77:ac:09:39:5b:0b:2c:eb:89:4a:52:70:
4f:6a:11:0d:4f:ea:89:4e:d0:8f:55:f0:b4:c0:21:
53:9a:91:fc:f2:4a:13:50:6a:6b:4e:76:36:35:bf:
b3:45:8c:ff:b4:d2:69:c5:d2:67:3f:02:0e:37:23:
74:c2:af:29:90:ac:96:b3:4c:df:29:69:7e:aa:fd:
26:95:d3:61:1f:16:35:39:5e:dd:99:63:0e:aa:fa:
ab:07:2b:3c:56:a0:a5:69:06:5c:2b:c0:7e:a0:02:
de:7b:33:f4:34:34:42:11:70:6a:5f:5b:8d:46:b7:
41:2c:6f:6b:08:be:06:74:01:46:d2:dc:ef:af:f0:
3c:25:2f:c7:33:67:b5:cd:80:e4:6f:d9:8f:ab:d8:
90:10:2d:6f:4a:d0:3c:ba:63:c1:ec:1b:e7:4b:d4:
9a:0a:41:9e:c3:75:e7:25:2a:b3:51:16:55:e6:08:
bf:3f:2e:f7:a3:1b:98:b4:03:c8:ef:79:0c:20:de:
50:32:22:0a:ee:6a:e0:11:e0:62:71:cf:66:3e:10:
70:e9:c7:53:50:6f:d2:6a:ec:7d:2a:17:57:b3:7b:
13:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CC:37:07:59:50:36:A4:28:FD:DF:9E:BE:64:35:38:1F:7E:1F:F8
X509v3 Authority Key Identifier:
keyid:B2:C5:F7:4D:F4:52:0D:34:1D:A3:48:A7:00:A0:3B:97:CA:F0:77:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssX3TfRSDTQdo0inAKA7l8rwdzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/Jsw3B1lQNqQo_d-evmQ1OB9-H_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/ssX3TfRSDTQdo0inAKA7l8rwdzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:628::/48
Signature Algorithm: sha256WithRSAEncryption
7e:b2:11:f1:d8:70:9a:f6:17:6f:0c:55:ca:12:21:69:d1:17:
d3:c1:7b:b0:d9:87:8c:42:56:7a:4c:95:ed:c2:28:6c:84:f7:
64:16:06:e5:dc:af:bd:b9:23:6e:65:36:f2:3c:e5:0e:e8:92:
f5:66:47:01:6c:51:5f:d4:16:40:6e:95:a0:09:f3:46:92:4c:
2f:82:16:3d:cb:4d:d2:9c:a2:21:9b:79:fd:2d:7b:9f:98:e4:
9f:92:61:ac:3d:ee:68:51:61:7b:a2:4a:4e:cf:7e:e9:58:dc:
30:0e:c4:f6:ce:46:fb:a0:f9:8c:3f:40:28:07:ed:0e:16:98:
9f:7f:6b:31:24:9f:5b:88:e3:52:82:26:64:40:d9:d6:d9:5c:
ef:81:3c:17:5d:30:26:0a:81:af:ee:c2:5f:18:80:c3:23:0e:
1a:12:d8:86:58:cc:9f:c3:69:0a:4b:2f:14:e7:2a:90:8c:31:
01:f6:66:90:60:c1:d5:5b:77:05:dc:20:23:31:c1:82:1d:5b:
28:6f:eb:8c:c2:b7:98:2b:f7:25:57:02:82:32:df:1e:47:5c:
cf:dd:93:81:32:66:38:94:c9:02:dd:bc:32:b3:c7:33:b9:6e:
f9:34:1b:dd:46:40:47:94:81:db:d3:82:dc:88:69:1f:60:e5:
dc:61:e9:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org