Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/CBeWy17JzNgFB4-QrKP2vROsqSQ.roa
File: CBeWy17JzNgFB4-QrKP2vROsqSQ.roa (raw, json)
Hash identifier: y71SUrHrAMdzOONv/2CrpC2qhxXjZuLx1AiIcbXk7Bs=
Subject key identifier: 08:17:96:CB:5E:C9:CC:D8:05:07:8F:90:AC:A3:F6:BD:13:AC:A9:24
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 3938E5DC
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/CBeWy17JzNgFB4-QrKP2vROsqSQ.roa
Signing time: Sat 01 Jan 2022 03:52:54 +0000
ROA not before: Sat 01 Jan 2022 03:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5470
IP address blocks: 2001:648:2800::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960030172 (0x3938e5dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=081796cb5ec9ccd805078f90aca3f6bd13aca924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:af:1d:08:f8:e4:3f:f4:2f:5f:05:22:c7:68:
96:89:0b:c4:4d:c8:cb:99:4e:7c:45:4a:22:35:fa:
62:fb:8a:73:89:6f:d0:31:06:16:0f:30:e5:4b:6a:
e3:37:8f:29:1e:ed:77:10:a1:f2:70:8e:2e:dc:a0:
8e:11:a1:6c:cd:62:9e:e2:66:be:cb:5d:1a:6d:12:
48:07:4f:30:d9:fb:6d:b0:76:2d:8e:60:34:e6:a8:
09:e6:81:63:6f:39:10:4e:c8:df:82:ba:82:1c:5c:
c7:a1:c4:d4:6b:92:26:1d:ff:6a:1e:68:aa:2e:c4:
dc:1d:ac:3e:e6:fe:f0:3e:df:74:d8:ec:25:50:0a:
68:d5:4e:06:29:a6:d3:50:0e:6a:c5:15:ef:73:c3:
29:16:87:89:cc:0c:ef:0a:a9:dc:3b:56:c5:1f:6c:
60:0b:15:db:46:18:00:ed:90:fe:5e:02:1e:9a:d5:
af:a8:3f:52:fc:32:1b:b6:76:4d:e7:a8:c8:fa:33:
de:eb:58:03:cf:a3:46:2c:19:e7:58:4f:f7:dc:a1:
0c:29:48:5c:97:ae:a7:f7:cd:d0:0e:58:76:b8:8b:
ef:82:9a:24:4a:b9:d2:ce:d6:a2:ee:63:14:4c:78:
1f:96:21:d0:8c:12:a3:d1:b3:d8:19:5a:d2:4d:20:
5a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:17:96:CB:5E:C9:CC:D8:05:07:8F:90:AC:A3:F6:BD:13:AC:A9:24
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/CBeWy17JzNgFB4-QrKP2vROsqSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:648:2800::/48
Signature Algorithm: sha256WithRSAEncryption
0b:f3:3a:ed:62:bd:34:2a:4c:f0:91:b4:04:82:4d:77:b3:2e:
56:5a:6f:63:ba:35:9b:af:66:b5:37:a0:15:92:65:58:96:ba:
bd:cd:74:58:1c:72:13:28:07:4c:c7:10:16:e7:1e:cb:40:26:
09:dd:26:dd:82:45:6c:c9:41:2e:38:56:77:f7:09:9e:40:dc:
dd:27:83:5b:61:01:d4:e6:08:b4:2f:4b:08:41:8a:ef:de:70:
92:fe:fa:7a:61:b5:eb:b4:b1:59:b6:d2:cb:15:f4:35:88:ef:
b9:b5:8f:21:36:84:a8:44:03:2e:b4:84:7b:da:7b:99:57:f0:
ed:ec:ab:07:17:38:fd:68:79:2c:02:42:4e:c4:60:3f:ab:da:
c9:49:96:d3:fa:7e:44:f1:0b:ad:ed:46:e7:23:09:41:36:34:
fb:5f:39:f6:5d:14:3f:22:81:5e:7a:7e:9a:bc:b6:37:90:00:
fb:3f:9e:cc:84:7a:ca:6c:04:25:ac:7b:00:64:2e:4b:90:0e:
02:89:43:83:2e:2f:01:1b:d4:2d:2a:ef:26:d1:f8:54:5c:67:
c1:2b:21:81:08:74:8d:11:fb:50:8e:57:41:10:00:72:f2:06:
0e:e4:5f:aa:df:de:49:7d:1b:3d:74:12:f5:e5:92:25:0d:95:
cf:c9:44:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org