Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/xb_dfYZcY_qrTCS2scitPZGZKUQ.roa
File: xb_dfYZcY_qrTCS2scitPZGZKUQ.roa (raw, json)
Hash identifier: SVBUkhrCzwJ8xbOu+3LBlsIcpOux1pqlwsLbpHK4CV4=
Subject key identifier: C5:BF:DD:7D:86:5C:63:FA:AB:4C:24:B6:B1:C8:AD:3D:91:99:29:44
Certificate issuer: /CN=c9da628824cd59b14272b4058a89642e4b47bddc
Certificate serial: 10D9FDAF
Authority key identifier: C9:DA:62:88:24:CD:59:B1:42:72:B4:05:8A:89:64:2E:4B:47:BD:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydpiiCTNWbFCcrQFiolkLktHvdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/xb_dfYZcY_qrTCS2scitPZGZKUQ.roa
Signing time: Sat 01 Jan 2022 04:57:01 +0000
ROA not before: Sat 01 Jan 2022 04:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6805
IP address blocks: 2001:67c:19e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282721711 (0x10d9fdaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9da628824cd59b14272b4058a89642e4b47bddc
Validity
Not Before: Jan 1 04:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5bfdd7d865c63faab4c24b6b1c8ad3d91992944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:23:36:aa:4b:d2:e4:eb:68:f5:84:f3:e3:4f:
45:9f:13:9e:45:7e:9f:ff:33:49:a2:b2:aa:d3:23:
0a:52:74:86:bf:b4:8a:75:bb:32:d0:8a:27:d9:53:
ec:8a:ce:9d:03:7e:07:35:81:23:7e:e8:68:2f:95:
d4:c4:ec:e3:da:6c:24:cb:58:a3:db:0d:70:c0:ee:
c3:a4:a1:1f:0a:6c:25:ec:ab:7e:19:3b:d9:d4:c1:
b7:20:f8:ae:56:9f:f4:7d:d6:a3:21:04:b6:50:36:
f0:ff:d9:8c:88:49:04:4b:8c:e8:42:53:8a:86:39:
10:97:4c:6f:cf:41:2e:38:6d:46:90:e6:55:39:ef:
01:11:29:06:a7:7e:ea:07:3c:f7:5e:5f:fa:9d:0b:
32:6b:d8:3c:4f:23:65:2f:6b:0a:0f:0e:d8:28:3b:
e5:a5:91:f3:77:6f:68:15:e0:b8:3c:b2:bf:cd:c2:
5d:7f:d8:c9:5c:54:05:6f:e1:27:67:7f:9b:43:65:
a4:63:b4:10:2a:91:2f:50:66:6e:2d:78:f6:ca:49:
d5:e9:87:e2:75:2b:2f:f2:38:b0:71:37:f0:c6:91:
d1:e7:d6:79:6e:d9:02:bb:df:c4:4f:37:13:9b:38:
0c:49:29:6e:e3:44:9e:85:d7:c7:28:31:f1:06:05:
bd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BF:DD:7D:86:5C:63:FA:AB:4C:24:B6:B1:C8:AD:3D:91:99:29:44
X509v3 Authority Key Identifier:
keyid:C9:DA:62:88:24:CD:59:B1:42:72:B4:05:8A:89:64:2E:4B:47:BD:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydpiiCTNWbFCcrQFiolkLktHvdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/xb_dfYZcY_qrTCS2scitPZGZKUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/ydpiiCTNWbFCcrQFiolkLktHvdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:19e0::/48
Signature Algorithm: sha256WithRSAEncryption
37:17:08:69:a9:55:00:28:62:bf:35:f2:de:c7:df:f8:87:20:
2a:35:f4:56:63:48:69:b5:35:fd:96:c9:90:da:cf:20:0d:0f:
0c:4e:8c:c5:0c:53:df:b3:2d:5f:cc:97:b3:27:91:8f:0a:41:
67:d6:40:a8:d7:6c:04:ca:fc:71:00:41:95:b6:0c:ad:88:ef:
7b:7a:10:ea:70:f0:fd:48:65:d9:ac:0b:58:5c:d9:d0:5a:5b:
1d:11:46:f1:d4:85:cb:d3:51:43:8d:a4:c1:dc:35:0e:03:69:
f5:7e:1f:ac:8c:b3:49:2a:37:d4:ee:61:70:4c:e1:81:43:6e:
b5:90:ad:30:9f:c7:cd:14:ae:e4:cc:cd:e1:68:a4:6b:ca:a2:
93:46:96:0d:61:88:16:0d:58:31:b6:05:ef:4c:6f:d7:3a:1b:
4f:e2:6f:bd:1c:78:5c:9f:e1:8d:27:a0:36:8a:62:5c:8d:90:
8e:37:2a:93:5c:f9:56:31:60:9a:a8:c7:2b:fb:ab:08:62:26:
aa:c3:bd:1a:35:50:b0:8a:47:57:ef:f7:b7:85:7f:4c:2e:cf:
b1:2f:e3:5d:76:33:4a:e8:0c:9e:5f:6b:15:34:11:57:1c:50:
05:cc:5b:38:6b:8f:9c:32:43:f8:40:22:fc:ce:fb:07:5e:a8:
1f:a1:ec:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:07 2024 by rpki-client on console-ams.rpki-client.org