Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/CC5CmutDeyUYbhujfYf2n6OpSqE.roa
File: CC5CmutDeyUYbhujfYf2n6OpSqE.roa (raw, json)
Hash identifier: p9B1l87sWOHZJNoWaIfDVZNePojA0mWqECDp3vDJ9r4=
Subject key identifier: 08:2E:42:9A:EB:43:7B:25:18:6E:1B:A3:7D:87:F6:9F:A3:A9:4A:A1
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 098FE120
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/CC5CmutDeyUYbhujfYf2n6OpSqE.roa
Signing time: Thu 06 Jan 2022 09:33:21 +0000
ROA not before: Thu 06 Jan 2022 09:33:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210041
IP address blocks: 2a0e:aa07:e030::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160424224 (0x98fe120)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 6 09:33:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=082e429aeb437b25186e1ba37d87f69fa3a94aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:77:06:5e:f8:15:a1:84:62:0b:fc:72:74:3e:
e7:8d:d4:42:fe:d2:95:44:ab:42:28:e1:82:b9:e1:
d2:9d:a3:cc:1b:40:c3:da:bb:9a:c8:ab:8c:01:68:
97:f8:5c:26:55:bd:a0:72:df:cd:7d:fa:d7:e5:e6:
77:83:dc:c6:77:ad:9b:1a:4c:95:ad:df:99:2d:76:
26:f6:81:f5:72:a6:e7:ac:e1:c0:f6:86:95:70:8f:
03:f4:a8:1e:30:69:c7:75:5d:36:41:9c:97:81:d5:
4f:51:dd:7f:99:e1:47:ec:bf:6a:47:d8:e2:59:8d:
4a:19:3f:3c:e1:23:ff:98:7b:e3:e1:cc:bf:c0:0c:
d5:3d:e4:e3:06:4b:63:f7:53:a1:c0:7f:25:4d:9d:
17:3e:04:ce:a9:56:88:28:e6:e7:3e:1b:e7:0d:a5:
41:c5:26:a6:12:7b:7e:04:68:1c:85:0c:8a:1b:9c:
d7:da:92:4f:9c:6e:19:85:e3:67:cd:d7:59:f8:ca:
a3:68:88:73:1d:43:f4:07:45:b8:37:ba:f2:62:bc:
e3:36:07:39:66:85:3a:e1:55:5f:d7:a5:7d:d6:b7:
88:b5:a4:12:fe:8c:76:fb:93:5f:11:53:1a:87:44:
77:d1:fc:7a:29:ef:76:60:d6:e8:c9:49:c3:7a:d9:
2c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2E:42:9A:EB:43:7B:25:18:6E:1B:A3:7D:87:F6:9F:A3:A9:4A:A1
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/CC5CmutDeyUYbhujfYf2n6OpSqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e030::/48
Signature Algorithm: sha256WithRSAEncryption
05:69:dd:22:00:5d:91:c9:7b:ef:df:00:a8:72:09:b5:a1:ec:
7e:f7:60:f4:3b:9d:5f:1f:80:d8:0b:18:2e:99:a1:58:81:90:
70:45:a9:2d:d6:50:ed:cb:3d:a8:21:a6:eb:02:96:aa:a8:de:
75:24:2c:7b:7b:1b:40:bd:6e:41:fa:02:31:57:52:f4:a9:4a:
be:8b:9c:f7:da:b1:6c:fe:ff:1e:e2:e5:e3:29:9a:47:de:7a:
5a:b4:d1:b6:99:66:c1:93:ca:4e:a0:9e:60:f6:d4:9d:d7:98:
f6:e2:a7:95:4a:62:fd:e9:6d:20:7a:56:8a:49:bf:a1:27:d9:
44:f0:2c:80:db:87:1b:67:fb:ab:c4:33:23:97:fc:19:11:e9:
17:d4:51:42:2f:b7:d8:59:df:80:35:01:67:a4:78:16:1f:80:
7a:6a:7a:d1:f6:52:29:79:d6:b6:38:b9:b8:e7:a3:dc:9e:29:
c4:99:18:c3:48:66:65:e4:4a:8c:62:f5:f3:ab:6b:bd:3d:ed:
a1:38:72:7a:e5:69:0a:dd:bb:2d:c4:ee:42:b5:32:6e:5d:58:
36:2b:c8:d4:52:3e:ee:b0:7c:a9:fe:da:9f:25:cd:06:e9:06:
4e:78:de:2f:2a:55:81:27:90:32:92:6b:18:16:00:fc:c7:ce:
a0:90:1c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org