Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/I8jgJlDXAWQlpDnDLLQj1vv6oWY.roa
File: I8jgJlDXAWQlpDnDLLQj1vv6oWY.roa (raw, json)
Hash identifier: S9HW09w1RqGdiAg8NRUy5/ypW7+XfpOK1FgqJR5jbFw=
Subject key identifier: 23:C8:E0:26:50:D7:01:64:25:A4:39:C3:2C:B4:23:D6:FB:FA:A1:66
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17E28EB2
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/I8jgJlDXAWQlpDnDLLQj1vv6oWY.roa
Signing time: Sat 01 Jan 2022 04:54:41 +0000
ROA not before: Sat 01 Jan 2022 04:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206499
IP address blocks: 2a0c:da04:c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400723634 (0x17e28eb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23c8e02650d7016425a439c32cb423d6fbfaa166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:34:7a:13:ae:a2:d8:1b:d4:20:1f:8a:15:
ba:a4:fc:5e:85:f4:f8:fa:d9:a6:c1:95:e8:72:79:
9a:ae:ea:fd:24:3e:a2:8f:ca:f3:10:5e:f7:39:18:
6a:f1:1c:72:d5:5d:f6:ef:9a:f8:b0:30:77:d4:1f:
a5:e3:c9:d8:11:b6:e8:8f:4b:e2:77:ac:fc:8f:3e:
74:60:00:bb:95:c7:20:4b:02:37:a3:df:64:b4:66:
f1:c6:21:8c:17:cf:fe:96:5e:2c:b6:65:8e:f5:7b:
30:c9:1c:de:8f:39:2b:90:e9:a7:d4:c2:f6:a4:b3:
1c:5b:f6:37:ea:af:7b:d7:77:e9:a8:4c:08:33:87:
0e:04:f2:6a:ab:a4:e8:97:fb:10:c5:36:1e:70:cc:
20:b0:7a:b1:8e:95:72:19:41:b5:c8:4e:60:64:82:
98:c3:93:1e:57:ff:2c:b1:f1:a4:66:66:ca:84:a2:
cc:eb:0f:3a:3f:e7:a7:95:aa:6b:4e:a3:54:66:88:
9e:6b:c8:ab:82:86:31:df:f0:8f:91:23:99:ca:4d:
29:c5:29:9d:66:9e:a0:ff:9c:ca:17:75:d2:ef:03:
66:c2:9f:8e:75:04:b6:99:4f:fe:b8:60:cd:30:c2:
67:21:13:40:ec:11:0d:bf:35:49:63:38:42:0e:bb:
b9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C8:E0:26:50:D7:01:64:25:A4:39:C3:2C:B4:23:D6:FB:FA:A1:66
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/I8jgJlDXAWQlpDnDLLQj1vv6oWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:da04:c::/48
Signature Algorithm: sha256WithRSAEncryption
b1:f6:c7:a5:db:6d:3d:d7:03:2c:0d:26:93:94:ad:c9:f0:67:
1a:9e:66:90:87:29:c6:96:d4:fd:4b:dc:85:a7:7c:fb:22:ca:
09:9e:4e:12:27:15:c9:cc:78:3b:9b:b1:e5:8c:66:7f:e0:c6:
07:bb:10:c2:ee:f5:22:2e:09:b9:b2:72:7b:c9:3a:f7:ee:e3:
64:62:9f:0d:24:7c:f8:51:b4:2a:e9:5a:c2:ba:aa:90:59:79:
33:d1:38:2e:8c:27:63:39:dd:66:3e:6c:e9:8e:cf:cc:08:a7:
5a:f1:7b:92:cc:b1:71:da:23:59:60:93:44:4c:ec:5a:9e:eb:
34:3d:26:93:ec:1a:ec:d3:5f:e1:54:b0:f6:35:45:9c:40:45:
ef:04:96:f4:ce:d1:a1:86:53:f7:b3:e4:f6:d9:cb:14:6a:3e:
f7:a1:6b:8b:ba:2f:14:f6:5d:ba:1b:e9:c9:4b:7b:cf:33:e8:
0d:d4:ad:8d:3a:b3:7e:d7:27:f1:32:48:f6:71:5f:76:7d:81:
63:7b:d7:5e:92:45:ee:90:1d:fd:4c:a6:2c:46:d6:e3:50:63:
94:0e:e6:cf:b3:cd:3e:31:1e:14:4a:12:1e:a0:9e:dc:19:fe:
68:8d:79:c0:bc:bb:1f:82:00:3d:5f:06:f3:6a:8a:4a:cb:73:
0f:d1:aa:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:32 2024 by rpki-client on console-ams.rpki-client.org