Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/3066ca-e017-4f61-adc5-728e9967daca/1/nWmDJb7g0Tu5b4bOkfXXJpzpH1k.roa
File: nWmDJb7g0Tu5b4bOkfXXJpzpH1k.roa (raw, json)
Hash identifier: iFt8iM50hkkKBcTNxHuW1KYWXB9nnrgvtJsR+jd4xy8=
Subject key identifier: 9D:69:83:25:BE:E0:D1:3B:B9:6F:86:CE:91:F5:D7:26:9C:E9:1F:59
Certificate issuer: /CN=8c89801b19aa9728ad4f6bb7185c11f14b9d8d7c
Certificate serial: 1703BB3D
Authority key identifier: 8C:89:80:1B:19:AA:97:28:AD:4F:6B:B7:18:5C:11:F1:4B:9D:8D:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jImAGxmqlyitT2u3GFwR8UudjXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/3066ca-e017-4f61-adc5-728e9967daca/1/nWmDJb7g0Tu5b4bOkfXXJpzpH1k.roa
Signing time: Fri 25 Mar 2022 11:18:25 +0000
ROA not before: Fri 25 Mar 2022 11:18:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5500
IP address blocks: 2a05:aa40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386120509 (0x1703bb3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c89801b19aa9728ad4f6bb7185c11f14b9d8d7c
Validity
Not Before: Mar 25 11:18:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d698325bee0d13bb96f86ce91f5d7269ce91f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:10:c9:ef:ad:93:e6:91:32:4e:dd:9c:a0:77:
0d:d4:8c:7e:24:11:04:25:88:d2:95:f2:ec:ab:40:
2d:28:97:78:dd:a4:a5:1c:f4:a1:a3:42:88:f1:a2:
36:b9:b2:6b:2c:c3:e3:b8:68:49:e7:01:18:28:b1:
a9:44:cf:7e:7e:f2:48:6d:1d:5a:76:8e:66:66:97:
6b:e8:33:1a:d4:ea:96:1b:58:84:58:0a:22:cb:36:
9d:08:21:28:da:3c:d2:da:ff:38:1e:2a:00:ea:33:
a8:6f:7b:98:b6:a0:58:04:7e:28:73:85:fb:c6:da:
55:64:92:ff:69:a8:33:28:58:9b:09:0d:90:6e:93:
e4:a3:76:1a:8e:6e:1c:d6:f9:a0:6e:33:23:be:3a:
11:46:bc:7c:74:3d:16:bc:e4:e4:61:9e:1a:4d:56:
a8:4f:1d:20:1e:6f:c4:32:76:7d:c1:47:f8:ba:86:
58:87:ea:d2:20:34:bb:4e:3f:9c:ec:41:80:ef:ff:
3d:d6:16:43:24:e8:87:3c:c5:6e:cf:c9:dd:fb:c4:
4d:2b:7b:a2:16:10:9b:cc:cb:3c:5f:3b:fc:40:52:
66:bd:a8:bd:c0:31:cb:db:db:29:17:18:12:87:09:
40:78:97:a1:8a:01:f3:e5:39:a9:bc:93:40:79:34:
06:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:69:83:25:BE:E0:D1:3B:B9:6F:86:CE:91:F5:D7:26:9C:E9:1F:59
X509v3 Authority Key Identifier:
keyid:8C:89:80:1B:19:AA:97:28:AD:4F:6B:B7:18:5C:11:F1:4B:9D:8D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jImAGxmqlyitT2u3GFwR8UudjXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/3066ca-e017-4f61-adc5-728e9967daca/1/nWmDJb7g0Tu5b4bOkfXXJpzpH1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/3066ca-e017-4f61-adc5-728e9967daca/1/jImAGxmqlyitT2u3GFwR8UudjXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:aa40::/29
Signature Algorithm: sha256WithRSAEncryption
28:8e:7d:53:9c:64:b7:8e:0a:5b:66:5e:6b:72:d2:73:e0:eb:
0e:eb:a6:7e:7a:d1:60:d9:b6:c1:d2:5a:3d:8e:31:87:1e:35:
51:4b:52:54:b7:6f:54:86:37:d2:50:c2:de:79:a9:00:78:71:
88:04:69:b4:c0:03:1d:51:91:45:fa:48:4c:c0:6b:1f:0b:ca:
a2:ad:14:1d:eb:75:32:c2:c0:78:bd:f3:d5:da:29:0e:b3:74:
a9:02:76:27:16:08:9d:95:7a:c0:2d:1a:a6:a9:87:21:f9:ba:
54:d4:d5:34:5b:15:61:0c:a4:d8:64:f1:7f:56:43:08:2a:e4:
46:5a:28:c8:d9:af:92:63:65:f5:76:b0:e9:9a:5e:76:c7:23:
68:54:12:e0:b2:ab:49:cc:53:f6:20:70:1a:8e:3c:42:24:98:
36:26:6e:c6:52:7b:f9:66:25:3b:6d:2e:5d:e8:7a:8f:4b:eb:
04:89:38:75:ef:d5:6f:c6:4f:7c:d1:e5:8c:a8:59:9c:5c:09:
17:53:08:d5:5e:65:49:aa:0e:8d:70:cb:ff:f3:ce:a0:2f:78:
fb:b3:4e:54:ac:5a:f2:71:3a:a6:62:0c:de:24:0a:8c:a3:cb:
49:f1:79:14:4b:0c:12:ae:ff:42:c7:c7:60:57:14:04:0e:11:
fa:cd:f6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:06 2024 by rpki-client on console-ams.rpki-client.org