Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/CjazWlXZ0U5Om6Sbwh7kHLdPDDI.roa
File: CjazWlXZ0U5Om6Sbwh7kHLdPDDI.roa (raw, json)
Hash identifier: jhMqyeZXSHRzFYoTywg/7PmDV6j9zGlOXqOy8BCMscs=
Subject key identifier: 0A:36:B3:5A:55:D9:D1:4E:4E:9B:A4:9B:C2:1E:E4:1C:B7:4F:0C:32
Certificate issuer: /CN=09a8c234f2b0d6c9ca13e5411da29cf2c44f2891
Certificate serial: 7BCE53
Authority key identifier: 09:A8:C2:34:F2:B0:D6:C9:CA:13:E5:41:1D:A2:9C:F2:C4:4F:28:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CajCNPKw1snKE-VBHaKc8sRPKJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/CjazWlXZ0U5Om6Sbwh7kHLdPDDI.roa
Signing time: Sat 01 Jan 2022 01:55:20 +0000
ROA not before: Sat 01 Jan 2022 01:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 212.52.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8113747 (0x7bce53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a8c234f2b0d6c9ca13e5411da29cf2c44f2891
Validity
Not Before: Jan 1 01:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a36b35a55d9d14e4e9ba49bc21ee41cb74f0c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ee:f1:48:5d:3a:39:73:7e:cb:06:f1:b2:21:
50:76:3d:df:c9:b5:97:31:15:ad:19:aa:4b:19:86:
82:ab:9c:ba:05:2d:77:f5:3c:66:97:42:7e:b2:84:
6f:7e:47:27:54:d0:c7:69:a9:97:50:c8:f4:c2:3a:
3e:80:64:44:37:1b:f1:61:c5:38:85:a5:e9:28:dd:
3f:23:a4:31:1a:9e:9d:8c:cb:59:a5:7a:72:a2:d9:
4a:db:53:e3:59:bf:c7:f4:20:7e:78:cc:39:18:f1:
57:d6:09:1f:17:2c:b6:52:35:2b:4c:f9:6c:06:5e:
6b:16:1e:8f:4a:75:cd:27:1d:7a:5d:4a:27:b2:a1:
c2:89:63:91:b8:a0:2c:c4:69:ea:17:6d:01:52:20:
63:03:b1:6c:8b:d8:66:53:d1:0f:4c:03:1d:a2:1b:
79:c8:4d:01:23:f8:4b:f3:b5:1e:94:a5:12:27:02:
66:21:49:51:8e:e7:f4:5e:14:76:8f:11:37:f8:2d:
08:21:40:b3:26:40:74:16:40:7c:5e:ef:0b:9a:4d:
9e:90:7d:db:1f:3b:94:8a:67:ff:a4:1f:9a:80:21:
cb:92:5a:c8:4b:8e:ed:8d:21:75:01:d4:87:19:98:
f3:97:e2:2b:8b:df:ab:b9:2f:a4:4d:11:8b:f3:25:
4e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:36:B3:5A:55:D9:D1:4E:4E:9B:A4:9B:C2:1E:E4:1C:B7:4F:0C:32
X509v3 Authority Key Identifier:
keyid:09:A8:C2:34:F2:B0:D6:C9:CA:13:E5:41:1D:A2:9C:F2:C4:4F:28:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CajCNPKw1snKE-VBHaKc8sRPKJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/CjazWlXZ0U5Om6Sbwh7kHLdPDDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/CajCNPKw1snKE-VBHaKc8sRPKJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.28.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:77:af:e2:ee:e9:41:43:a4:d8:9f:99:15:52:8a:2a:5a:fd:
9f:4b:dd:63:01:a7:01:38:b3:22:a1:53:bb:56:8f:40:6e:f1:
1c:6b:11:99:39:2f:9d:a5:a3:15:77:87:8e:5b:4a:aa:bb:0c:
0e:48:a6:87:d8:9a:08:f8:3c:4c:06:37:d2:14:08:f1:2c:bf:
e7:ec:7d:4a:15:b4:34:48:f6:b4:f7:31:08:3f:6d:5a:4f:c2:
2e:b6:c7:50:df:5a:7d:5c:4a:71:90:2a:c1:55:e4:46:0b:f0:
ed:a5:62:ec:20:cf:ce:a3:0d:15:d7:57:6d:72:2e:ee:6a:80:
16:32:2d:3a:b4:de:da:df:4c:f5:13:d3:33:b6:ff:da:b4:47:
93:7a:9a:e7:8d:d3:33:4c:4d:8d:fd:c4:8d:dd:41:54:92:94:
ee:52:cc:0c:e0:65:c8:d2:c1:1a:95:f7:4e:81:fc:9b:84:d5:
4b:83:e0:1b:7b:a7:99:f4:f0:77:b5:72:17:92:92:c5:d6:24:
05:df:36:7b:f3:ad:7a:5d:b4:48:5f:f9:b8:7d:9b:9d:a1:47:
b8:ee:5d:8c:ab:00:b1:29:31:c7:ce:65:e2:cf:47:27:04:d8:
53:07:a1:13:a5:d4:da:b9:e5:eb:f0:52:f5:e1:69:eb:cf:f0:
48:a1:15:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:27 2023 by rpki-client on console-fra.rpki-client.org