Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/cEySjaA94CncTcSVbDSz-mqlpGg.roa
File: cEySjaA94CncTcSVbDSz-mqlpGg.roa (raw, json)
Hash identifier: OZX4z22xDyeEoNK7XrM28jcJ/qEg0Sh0UTyGRi/NKP0=
Subject key identifier: 70:4C:92:8D:A0:3D:E0:29:DC:4D:C4:95:6C:34:B3:FA:6A:A5:A4:68
Certificate issuer: /CN=35d45f2ac5bce1569df6b2ad80d16f1b92fbd85c
Certificate serial: 1336AB67
Authority key identifier: 35:D4:5F:2A:C5:BC:E1:56:9D:F6:B2:AD:80:D1:6F:1B:92:FB:D8:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdRfKsW84Vad9rKtgNFvG5L72Fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/cEySjaA94CncTcSVbDSz-mqlpGg.roa
Signing time: Sat 01 Jan 2022 04:02:10 +0000
ROA not before: Sat 01 Jan 2022 04:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203600
IP address blocks: 2a06:e540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322349927 (0x1336ab67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d45f2ac5bce1569df6b2ad80d16f1b92fbd85c
Validity
Not Before: Jan 1 04:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=704c928da03de029dc4dc4956c34b3fa6aa5a468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a0:ee:e9:a0:bf:10:c5:e2:14:04:cd:a9:4d:
3a:07:c4:a8:44:13:de:a2:4f:40:e5:99:3e:2d:31:
e9:3a:ba:7a:89:15:fd:ad:24:98:a1:13:7e:c9:17:
9c:86:6c:da:7e:78:4e:d7:c8:96:b8:80:dc:f3:88:
b2:77:0c:5d:13:cb:e3:5f:58:b5:e9:69:ce:83:b8:
c4:b4:17:47:40:5b:86:16:30:5e:a9:02:24:4c:e0:
ca:9e:0b:f1:3c:d0:38:69:a3:ae:e5:8a:a2:2b:4f:
5a:6d:f3:fb:39:bb:09:ef:5d:b9:f3:96:20:22:1d:
20:3c:d2:c5:6b:c2:80:b8:2e:e7:f6:8c:b8:ea:1d:
f8:70:1b:ea:00:9e:bc:bf:82:5a:4a:de:7a:02:46:
d1:be:0c:83:2d:19:de:ce:43:e1:f1:1a:a3:cc:52:
40:74:4c:45:55:87:5c:7b:c8:de:1c:12:55:33:67:
e7:5a:a5:3f:17:b6:aa:ba:39:c3:a0:ff:f0:09:5c:
b8:22:0a:89:1b:1d:c9:3a:32:87:cd:95:c6:26:15:
d3:7d:4a:6c:6a:6a:50:51:67:0f:fd:30:6d:c4:28:
64:b7:42:3e:14:9f:c8:c5:29:26:00:da:f0:8c:29:
ca:5b:90:af:69:47:51:d9:0c:42:7d:82:2a:4b:0a:
bc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4C:92:8D:A0:3D:E0:29:DC:4D:C4:95:6C:34:B3:FA:6A:A5:A4:68
X509v3 Authority Key Identifier:
keyid:35:D4:5F:2A:C5:BC:E1:56:9D:F6:B2:AD:80:D1:6F:1B:92:FB:D8:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdRfKsW84Vad9rKtgNFvG5L72Fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/cEySjaA94CncTcSVbDSz-mqlpGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/NdRfKsW84Vad9rKtgNFvG5L72Fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e540::/29
Signature Algorithm: sha256WithRSAEncryption
08:85:12:b9:71:12:9a:66:c7:6f:ee:1d:0f:ad:c8:4d:f6:53:
30:48:d4:80:79:eb:a0:a6:1f:a4:c0:46:0e:18:67:98:0a:fe:
a0:e5:92:93:13:d0:df:70:e1:74:88:ab:1f:ca:b3:0d:9a:b9:
19:73:89:c7:95:95:f3:d8:81:d0:e6:00:fe:4d:92:eb:df:b1:
bf:d2:a9:fe:73:f1:7e:a9:18:23:4c:d2:53:16:44:a7:1f:ea:
a9:d1:bb:48:79:c8:5b:1d:b1:92:5c:64:8e:15:dd:49:aa:17:
3e:50:3b:95:6c:c2:4e:88:e9:49:a0:8f:57:3e:cd:49:2e:e6:
ef:bf:9f:bf:bc:ce:c3:83:26:65:9c:d7:87:fc:14:23:91:ed:
5f:0c:c3:3f:71:91:bd:41:83:83:8a:8d:e5:4f:0a:d5:9e:7a:
07:61:01:69:6e:cb:89:5b:42:cc:c4:93:a0:09:98:4d:47:35:
fa:cd:14:36:a4:7b:da:32:c3:a1:c2:88:cc:fd:ba:24:a1:c0:
66:0c:e6:30:2d:44:47:db:1b:27:9a:c5:be:ae:81:f6:3e:9c:
b3:68:fe:b1:d0:d3:83:38:31:53:1a:af:fd:dd:3f:3a:6f:2c:
4d:2a:3c:75:7c:c2:6f:15:87:f7:4c:99:92:39:23:fe:06:67:
f4:58:07:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:47 2024 by rpki-client on console-ams.rpki-client.org