Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/y7_zBHHzzKsNGsQhDeqFfx9Iaz4.roa
File: y7_zBHHzzKsNGsQhDeqFfx9Iaz4.roa (raw, json)
Hash identifier: WXPf25V4QfpHZfd2mTvO6xehNvzLRZkt67BXZQQ7Yvs=
Subject key identifier: CB:BF:F3:04:71:F3:CC:AB:0D:1A:C4:21:0D:EA:85:7F:1F:48:6B:3E
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 1B2040F9
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/y7_zBHHzzKsNGsQhDeqFfx9Iaz4.roa
Signing time: Mon 14 Feb 2022 13:07:38 +0000
ROA not before: Mon 14 Feb 2022 13:07:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 2a07:cc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455098617 (0x1b2040f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Feb 14 13:07:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbbff30471f3ccab0d1ac4210dea857f1f486b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7c:6d:5f:a5:ad:b3:5c:38:a0:e0:88:ea:b8:
a2:b8:34:cc:e9:28:e6:a1:15:5c:0d:f5:d5:07:9b:
c8:89:a8:44:3c:ea:48:82:d2:cb:f1:50:71:9a:a5:
a9:17:97:26:94:c2:f3:3e:48:b2:66:15:47:90:83:
45:d4:82:42:00:e3:13:62:ff:4c:2a:50:bb:a8:85:
34:e1:18:91:00:ab:84:4a:82:3d:8c:2e:9e:f0:71:
ab:04:8d:30:10:c3:66:d5:54:95:f3:16:4b:27:dd:
cb:f5:f1:4b:e2:20:ea:2e:05:50:bf:68:53:80:56:
af:a6:14:ae:bd:8c:0b:27:9a:b2:6f:de:90:e9:b3:
77:b0:2e:b3:67:26:8b:c0:ab:8c:3c:49:3a:f8:8b:
90:f9:c8:82:20:73:28:e0:05:76:57:f0:74:2a:66:
52:38:d7:f2:2c:c3:1c:10:fe:e3:be:cd:da:72:16:
2a:8e:82:0a:c2:8d:30:a0:85:ef:04:c1:fc:26:d2:
9e:ab:b2:de:cc:0b:0e:c7:1c:39:a8:47:f7:79:44:
50:31:00:45:de:e1:04:00:0c:2d:88:ec:5b:f1:33:
10:b1:e3:d0:3c:ef:60:1d:c8:4d:9d:48:9c:27:8d:
76:df:94:b9:da:ca:b8:83:ca:94:40:9d:7c:61:d2:
2e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BF:F3:04:71:F3:CC:AB:0D:1A:C4:21:0D:EA:85:7F:1F:48:6B:3E
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/y7_zBHHzzKsNGsQhDeqFfx9Iaz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:cc0::/29
Signature Algorithm: sha256WithRSAEncryption
39:56:d9:af:49:55:4c:98:d1:1c:5b:8f:93:e7:fc:7e:ee:03:
d7:1f:d0:19:ef:b7:59:a9:d8:83:c4:37:61:df:03:4e:32:13:
1d:20:1a:1f:e6:5d:3f:2f:2e:55:19:53:ac:bc:2b:a8:c7:54:
69:7c:14:fd:12:25:17:98:e5:5c:3e:80:08:80:a2:d9:d0:10:
0a:54:f0:36:a1:4b:be:2a:a9:e3:5d:ef:98:68:c3:90:03:52:
05:e7:fb:7c:5d:4b:8f:2e:28:d3:ff:c3:78:f2:b5:ec:63:9f:
4e:96:fa:fc:1c:50:8b:d8:82:82:87:7f:21:cd:10:c4:8c:3e:
8c:62:53:fe:6a:43:81:b9:0d:61:00:18:a5:2a:b6:f3:52:d5:
f0:3d:80:a6:1e:ad:c8:fc:9f:25:2c:43:17:f7:f7:d4:a4:d8:
d2:36:af:55:f5:46:42:ce:04:7a:fa:ac:c8:3b:74:1a:81:43:
31:bf:1d:3b:86:86:42:5a:19:0a:20:c3:73:e7:a7:9a:f5:38:
fb:db:92:48:06:32:4d:41:2f:7b:0f:f4:85:bd:81:b9:ba:e9:
be:9b:a0:c0:0b:0c:47:5c:a6:d7:c9:4d:8c:b0:22:53:28:4f:
c5:6c:e1:14:c1:8b:9b:a1:be:42:b4:21:b0:ff:55:fe:2d:0e:
f2:17:88:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:46 2024 by rpki-client on console-ams.rpki-client.org