Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jOCfBSSnL692CaUX1TNytB_cY2Q.roa
File: jOCfBSSnL692CaUX1TNytB_cY2Q.roa (raw, json)
Hash identifier: ED2hx49uL+IedKSl7QmJNLcWANpfZ+GFPjVXLZ8DKz0=
Subject key identifier: 8C:E0:9F:05:24:A7:2F:AF:76:09:A5:17:D5:33:72:B4:1F:DC:63:64
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19F2EECB
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jOCfBSSnL692CaUX1TNytB_cY2Q.roa
Signing time: Sat 30 Apr 2022 23:09:29 +0000
ROA not before: Sat 30 Apr 2022 23:09:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49072
IP address blocks: 2a06:7a07::/43 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435351243 (0x19f2eecb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 30 23:09:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ce09f0524a72faf7609a517d53372b41fdc6364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d6:a2:06:c9:10:2f:75:f6:88:f6:2d:a2:cd:
05:e4:5a:08:0b:5f:73:ac:8f:f5:97:2b:44:b4:d2:
3c:0e:e1:3d:6c:75:d3:8f:38:2c:02:f7:2f:cb:29:
87:db:15:74:46:fa:e8:fc:34:a6:37:3c:ed:a9:1f:
42:4c:88:0f:8f:50:06:99:5f:bc:92:e7:eb:73:c0:
46:d0:f2:42:3c:91:38:cb:0b:b4:04:8b:54:99:4e:
7b:08:00:06:d7:37:b4:aa:b7:42:f8:1b:83:59:8d:
1a:7d:f1:6a:c2:9c:43:9b:55:92:4f:c5:f4:dd:31:
aa:56:2e:8e:5a:74:90:ef:d1:ae:e7:b0:8c:dd:55:
32:ef:44:26:46:b1:4d:bb:bf:60:55:a0:20:92:2d:
44:bd:ce:24:5f:f2:f5:c0:84:f2:76:c2:37:1e:2f:
29:70:dc:16:4f:33:fc:45:ae:9f:58:2e:e4:ed:f7:
58:0b:95:11:88:b1:db:1d:3b:a4:66:cc:f7:98:88:
9e:a2:1b:dd:b5:20:79:7f:7b:fd:35:b6:3d:27:1e:
cf:47:b2:f0:36:9c:18:f7:18:90:7e:8e:b6:c1:49:
bc:66:0d:04:09:e4:78:4e:2e:ae:f5:8c:7b:99:15:
c5:c5:18:3b:e4:f9:ab:64:99:53:56:86:14:cf:56:
df:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E0:9F:05:24:A7:2F:AF:76:09:A5:17:D5:33:72:B4:1F:DC:63:64
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jOCfBSSnL692CaUX1TNytB_cY2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:7a07::/43
Signature Algorithm: sha256WithRSAEncryption
a0:34:49:2f:59:5a:54:62:6c:3d:c0:2a:16:ed:1a:de:10:71:
d0:6f:e2:15:69:4f:b7:50:8e:f2:5a:b8:e7:cb:60:56:c9:fd:
24:27:04:d5:64:71:91:66:07:8a:5c:13:5b:dd:a1:2f:47:dc:
b2:35:65:32:7c:7f:5e:19:a0:f8:0e:40:fa:01:95:e0:3b:64:
55:2e:cc:b6:eb:b5:ef:70:5d:69:d7:ad:b6:67:03:65:5c:90:
81:10:c0:c7:c3:ba:fb:65:8e:fb:e1:c1:7a:ba:0d:18:ad:7a:
ed:94:1a:46:0e:89:23:67:b2:cd:00:0a:8a:4d:cc:67:6b:b6:
01:9f:ce:f7:51:45:0e:07:1a:d9:1a:10:9d:9a:8d:90:01:64:
20:a9:65:b8:79:ff:e5:59:40:66:02:94:88:33:f1:25:05:8b:
6a:d4:82:15:95:14:06:93:22:b4:a5:54:f6:3d:43:95:e0:0c:
99:25:57:2d:f3:6e:9d:68:0e:24:d3:4b:99:1f:ba:ef:08:0a:
ab:e1:58:cd:4b:a5:f3:b5:dd:eb:53:48:d7:9e:78:9f:be:5c:
8b:37:cb:a7:a1:e4:27:9b:f7:1b:f6:1f:6e:e9:73:e9:19:57:
96:b1:7b:ec:eb:a4:51:27:30:0a:e3:a4:bc:e6:55:f2:7a:42:
70:b2:19:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org