Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DJD8M_OLJlGzFBCKDfVPnTCsvdk.roa
File: DJD8M_OLJlGzFBCKDfVPnTCsvdk.roa (raw, json)
Hash identifier: yCtYZ90q+dS8ELhgkwyg9wiRWRaOgyNxZQ2mqOLrYbk=
Subject key identifier: 0C:90:FC:33:F3:8B:26:51:B3:14:10:8A:0D:F5:4F:9D:30:AC:BD:D9
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 078C6643
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DJD8M_OLJlGzFBCKDfVPnTCsvdk.roa
Signing time: Sat 01 Jan 2022 05:52:20 +0000
ROA not before: Sat 01 Jan 2022 05:52:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211132
IP address blocks: 2a0f:607:1400::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126641731 (0x78c6643)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:52:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c90fc33f38b2651b314108a0df54f9d30acbdd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:44:60:1f:af:a5:04:09:6a:3d:52:d9:c0:ea:
63:c1:86:72:52:76:65:69:ce:1b:70:38:ba:a0:d4:
04:1f:0e:68:aa:87:2c:50:8b:10:4a:e8:99:a0:4a:
97:03:ca:20:b0:67:88:bc:9f:07:c3:db:1f:10:79:
47:ea:5c:f1:72:65:48:66:03:26:28:ad:1e:04:38:
a6:01:a1:b5:42:2f:ff:c2:bb:8e:8f:9e:f7:15:b5:
97:ea:6f:29:18:d2:b7:c1:b8:d5:46:86:16:8f:5f:
e2:78:5f:d0:45:70:d9:ca:85:88:9c:ce:bd:3d:96:
6e:33:f2:c2:0f:e1:c7:85:02:f4:d9:cf:9d:a4:50:
4c:4f:cf:a2:b7:6a:f6:a6:45:3e:03:c5:35:26:02:
a9:92:9b:86:ae:aa:9f:70:48:75:7f:b9:6e:68:16:
09:e5:bd:1a:d4:4d:c9:62:89:e7:03:9e:ed:8b:00:
0b:a8:76:fd:76:08:09:4d:6c:61:65:99:1a:96:e4:
ac:72:d8:7c:19:bf:e8:34:c9:ee:46:ba:f6:20:ea:
45:1b:45:88:d5:b2:39:87:9d:c8:99:68:16:42:ff:
fa:f6:f1:59:e7:58:2c:47:d0:a0:d0:cd:d8:4e:14:
72:eb:9d:52:4a:47:3a:fc:6d:f1:9b:0f:0a:46:cc:
55:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:90:FC:33:F3:8B:26:51:B3:14:10:8A:0D:F5:4F:9D:30:AC:BD:D9
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DJD8M_OLJlGzFBCKDfVPnTCsvdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1400::/44
Signature Algorithm: sha256WithRSAEncryption
8a:fe:17:28:71:1d:58:d0:db:aa:b6:f4:c3:52:9f:2c:a3:6c:
0f:7a:02:bf:0f:28:d1:04:3b:7b:f5:7d:96:2b:e9:88:dd:00:
8a:0f:c3:9c:5c:dc:89:f9:91:be:d9:0b:48:28:dc:42:66:64:
3a:04:9f:cf:33:17:81:91:34:80:28:85:48:c3:b4:93:f6:1f:
8f:88:26:16:87:71:ce:57:af:74:e7:ca:b8:84:86:e0:21:1d:
8a:97:05:a2:9d:f7:3b:01:a3:6b:28:01:b7:e0:6c:1d:3f:e3:
34:89:40:3d:a4:7b:a8:3f:13:02:17:79:b3:96:b9:e4:8a:aa:
ac:ac:cc:f9:6f:5f:79:c7:44:34:8c:bb:bb:d4:c8:06:3e:1b:
b7:4e:f1:43:b9:cb:96:05:62:7a:0d:3c:73:65:eb:63:2f:c9:
2e:00:d3:13:91:b3:fb:77:05:b5:d0:ad:3c:14:e0:81:f0:60:
bb:6a:2d:82:69:03:e6:84:9b:2e:b8:30:32:99:2e:6a:bb:a6:
8b:ac:36:dd:48:63:c3:3f:82:9a:8c:fe:38:a3:13:9e:11:f9:
04:6e:67:99:58:32:1e:c4:1d:86:d3:ea:fa:c4:f9:18:a6:da:
17:b9:e8:c9:cf:5c:a8:51:6c:6f:fc:49:18:7c:19:3d:a5:73:
05:4a:ce:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org