Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/cEqBSWS6VyYMLgqxfnqggMdriAo.roa
File: cEqBSWS6VyYMLgqxfnqggMdriAo.roa (raw, json)
Hash identifier: WSh3/XhiefcsPvT9P4WdoiWTctzIXkADFuL4D1xRk80=
Subject key identifier: 70:4A:81:49:64:BA:57:26:0C:2E:0A:B1:7E:7A:A0:80:C7:6B:88:0A
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 09A54C7F
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/cEqBSWS6VyYMLgqxfnqggMdriAo.roa
Signing time: Sun 29 May 2022 15:11:13 +0000
ROA not before: Sun 29 May 2022 15:11:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64487
IP address blocks: 2a06:c3c0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161827967 (0x9a54c7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 29 15:11:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=704a814964ba57260c2e0ab17e7aa080c76b880a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:50:dc:d9:db:4b:96:07:f0:2e:c5:23:45:73:
e0:7c:e1:48:9b:2c:99:a1:14:66:f5:9e:2d:45:1a:
80:00:e7:05:a7:39:a9:46:c7:85:3b:12:c5:dc:51:
b3:19:ed:bd:fb:3c:62:5c:7a:7a:a1:08:31:47:3a:
6b:3a:93:16:29:a8:a2:2f:c1:93:dc:42:b0:72:82:
e3:29:12:ea:69:cc:4c:37:f1:3d:ea:d6:e0:fb:04:
5f:bb:a2:c6:11:61:57:64:32:df:6d:5a:ca:6c:42:
a0:f2:44:74:b7:30:d9:41:6a:54:08:05:e8:c0:f7:
91:50:c1:75:20:88:45:2a:4a:55:da:68:73:fb:5e:
89:c3:ee:b4:b9:0f:23:a1:42:ec:68:c6:56:16:65:
61:e7:08:93:ad:8d:5d:5e:bb:26:64:8f:7d:0f:92:
a3:14:12:eb:aa:85:07:00:e0:b1:c6:fc:5f:91:36:
af:d4:cc:3b:e9:34:e7:6e:36:c6:70:5f:e4:47:bb:
ef:fc:a2:72:08:ee:91:78:4e:6e:7e:82:63:d9:d0:
b4:e0:f7:d7:38:10:4e:c9:25:d5:9b:0d:b9:06:fa:
fd:ef:cd:b0:b1:87:2e:18:95:48:f1:47:3e:84:1e:
33:1a:2d:bc:f0:9a:f6:61:a7:89:37:fe:e1:a2:38:
dd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4A:81:49:64:BA:57:26:0C:2E:0A:B1:7E:7A:A0:80:C7:6B:88:0A
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/cEqBSWS6VyYMLgqxfnqggMdriAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0:3::/48
Signature Algorithm: sha256WithRSAEncryption
2c:9d:c5:ab:0c:a9:57:9e:06:11:5c:3e:2b:10:54:05:d4:f2:
46:b8:77:02:5e:a4:5f:43:fb:27:18:05:b7:c9:1d:79:91:8f:
a0:f7:9e:45:3c:b9:be:95:61:b6:a6:cc:ac:61:ec:f8:db:a9:
b2:fa:4b:d1:09:a0:b1:93:84:db:7e:b7:40:2b:30:0d:38:66:
cd:fd:29:99:b5:fb:f5:54:aa:26:56:55:7d:73:92:34:a6:00:
7e:27:6b:ee:de:bb:e9:ca:67:dc:07:0e:8b:a3:50:0b:ba:b4:
9c:da:c4:fb:ed:69:8f:71:10:eb:9e:b6:8d:b2:d8:08:ab:b5:
9b:ea:51:51:cc:30:e5:3d:ee:fb:5a:85:b7:a8:50:56:fa:bd:
57:06:a9:96:aa:97:66:bd:39:3f:c6:72:b0:93:d0:49:c7:75:
e0:0e:c5:ee:91:fd:9b:43:9e:40:35:e1:13:ed:1e:72:df:e5:
15:e7:fb:dc:68:c9:cf:fe:a9:0d:52:0a:d9:54:96:b8:04:f1:
18:86:a3:1d:3a:7b:1f:52:fa:3a:a5:c8:6b:1d:a4:f6:8b:14:
c0:77:cd:12:7b:c9:ec:95:a4:fa:51:51:18:44:75:85:22:96:
29:49:07:6a:a2:5a:19:ec:c4:a3:11:36:f7:05:55:38:26:a6:
37:49:57:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:35 2024 by rpki-client on console-fra.rpki-client.org