Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/J-jUCfuQyZxHu0CIok0Uromc7EM.roa
File: J-jUCfuQyZxHu0CIok0Uromc7EM.roa (raw, json)
Hash identifier: cQ5MBpos/rMWrBTVhvQFIFPrx0KShuw72Zxhp5gLevQ=
Subject key identifier: 27:E8:D4:09:FB:90:C9:9C:47:BB:40:88:A2:4D:14:AE:89:9C:EC:43
Certificate issuer: /CN=b0dfafd36730396fe338e772dadbe4c3c85cd952
Certificate serial: 0927D241
Authority key identifier: B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/J-jUCfuQyZxHu0CIok0Uromc7EM.roa
Signing time: Sat 01 Jan 2022 14:05:01 +0000
ROA not before: Sat 01 Jan 2022 14:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42721
IP address blocks: 2a09:6340::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153604673 (0x927d241)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0dfafd36730396fe338e772dadbe4c3c85cd952
Validity
Not Before: Jan 1 14:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27e8d409fb90c99c47bb4088a24d14ae899cec43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7c:3d:c0:1f:f4:c9:96:c6:58:c6:8a:91:28:
56:fb:50:2e:55:0b:a4:83:ec:3e:58:9b:09:83:3b:
cb:3f:24:2a:6c:ed:16:66:1d:eb:4e:1d:7b:f8:ff:
0a:c1:e5:3a:5a:92:5f:f4:b7:5a:78:8f:3e:45:72:
19:7c:26:cb:75:02:bd:80:cc:e5:21:b3:f7:d6:38:
33:6f:ae:96:2c:f6:a4:7f:f6:4e:57:99:77:57:03:
a8:d0:cd:3e:61:da:19:96:c4:cc:e8:29:e3:4d:31:
56:9b:bb:bd:2b:6f:4c:bb:31:26:90:00:2f:3e:72:
28:1e:e2:7b:95:f2:d8:30:d6:18:c4:87:70:46:b6:
46:fd:87:80:ab:32:51:c3:3d:54:bf:7e:01:63:f0:
62:08:24:8a:22:0f:b8:46:5f:a1:04:8e:e3:ed:70:
b1:57:0e:4a:98:85:3d:48:54:c6:32:03:5f:aa:7e:
4a:f2:c8:c7:7c:32:6e:74:6f:9c:be:74:69:44:33:
94:9c:c5:db:27:b0:38:53:5c:fc:32:ea:f5:f4:79:
21:66:59:ea:24:67:16:84:94:05:d2:ed:91:08:cb:
42:23:fb:07:97:b4:a7:2c:45:b9:3e:81:e5:50:87:
09:d6:fb:b4:40:6f:90:e0:65:65:ff:34:b4:74:3b:
46:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E8:D4:09:FB:90:C9:9C:47:BB:40:88:A2:4D:14:AE:89:9C:EC:43
X509v3 Authority Key Identifier:
keyid:B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/J-jUCfuQyZxHu0CIok0Uromc7EM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/sN-v02cwOW_jOOdy2tvkw8hc2VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:6340::/44
Signature Algorithm: sha256WithRSAEncryption
07:34:17:3a:8b:cc:fb:33:50:a5:21:9e:90:44:c4:de:a5:c4:
7e:3a:2a:85:bd:d5:0c:76:c4:b3:38:97:62:59:2e:db:6d:8a:
c1:1b:41:ef:cf:cc:75:8a:e6:1c:09:a1:ae:48:57:11:f7:64:
e7:1c:e4:b5:dc:84:5f:6f:28:22:c6:51:f5:27:02:e9:1a:9c:
5e:56:ee:5c:5f:1a:2f:e3:e5:cf:cf:1d:41:5c:b6:e4:32:af:
1a:4d:d1:97:02:ce:e9:3f:ef:74:61:33:e6:0a:d0:a2:f0:59:
65:49:e2:86:4a:33:64:c6:0d:27:4a:51:b5:ef:a2:b1:f4:3f:
70:9f:fb:0c:a6:f4:b1:94:d3:94:88:12:c2:5d:3f:cc:8c:1e:
79:4b:8d:db:7a:0e:a5:6d:87:3e:06:2b:59:77:92:05:64:b5:
21:c3:6f:09:9d:7b:3b:52:16:0b:47:ac:72:e0:63:39:9a:ee:
5d:97:3b:fc:ab:68:17:b9:a7:84:ac:e2:ff:3b:e6:e1:ce:13:
97:12:9e:04:41:cb:0a:59:3d:6a:dd:7e:0e:92:1a:82:36:5f:
bc:5e:c6:9d:78:68:6a:e2:f7:e7:bc:ab:84:6a:7c:41:85:cc:
fd:30:ff:38:8a:87:6b:47:cb:5e:02:eb:af:79:ba:c1:a6:0e:
25:c1:91:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org