Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/t5cXC7rDB2oQek6XYxPJxPM6wAw.roa
File: t5cXC7rDB2oQek6XYxPJxPM6wAw.roa (raw, json)
Hash identifier: /JVk7cAzlyJ0gjuSauLJxObNK10fqj2J5LPSca6nKO4=
Subject key identifier: B7:97:17:0B:BA:C3:07:6A:10:7A:4E:97:63:13:C9:C4:F3:3A:C0:0C
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 088FF244
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/t5cXC7rDB2oQek6XYxPJxPM6wAw.roa
Signing time: Thu 21 Apr 2022 09:09:49 +0000
ROA not before: Thu 21 Apr 2022 09:09:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38008
IP address blocks: 2a0f:607:1060::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143651396 (0x88ff244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Apr 21 09:09:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b797170bbac3076a107a4e976313c9c4f33ac00c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:bc:70:d8:6c:37:5d:62:91:bf:63:de:71:
c4:3f:36:fa:52:a6:27:c1:2a:3f:32:38:e8:54:46:
24:23:e7:b1:39:0e:e7:ed:9d:36:d7:4f:3c:4f:13:
0f:97:ee:69:98:ec:31:25:74:2b:aa:dd:e9:a7:c3:
ec:80:fb:d1:f4:34:f5:35:b7:56:5b:50:71:2f:6a:
fe:1d:2b:65:85:51:0c:4e:74:4f:25:8f:f1:f0:0b:
47:16:57:d8:52:9b:0a:f2:b8:79:e3:5d:bd:eb:89:
7f:0a:26:2f:ba:34:57:63:1d:6c:09:d6:f3:aa:38:
cc:fc:af:d1:da:d3:e7:df:fa:98:a3:67:8b:83:b5:
af:ba:07:7a:63:c6:75:3d:34:94:a5:cb:3c:e7:06:
11:77:90:51:a3:77:55:b0:f2:8f:67:ed:29:65:c1:
d4:83:a1:82:ba:5c:e1:ac:16:6d:a2:3b:95:17:99:
71:d2:a3:a0:48:0f:a5:7b:b6:e7:fb:84:f1:a5:86:
97:45:30:c5:02:90:8c:a7:3c:53:69:e9:cb:b8:c6:
74:fe:b0:f4:6b:a2:32:14:51:f4:27:76:dd:1b:3d:
99:7e:d9:f1:e7:91:4b:ae:5c:28:7d:81:54:43:e6:
bd:3b:58:19:f1:7f:0f:3f:a3:46:12:22:a1:51:15:
be:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:97:17:0B:BA:C3:07:6A:10:7A:4E:97:63:13:C9:C4:F3:3A:C0:0C
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/t5cXC7rDB2oQek6XYxPJxPM6wAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1060::/44
Signature Algorithm: sha256WithRSAEncryption
36:2b:60:a7:77:45:3d:53:b2:2c:c8:07:35:63:e3:e7:2e:ac:
30:8b:b3:fe:63:ab:dd:7f:43:13:53:ed:ca:83:82:be:73:95:
21:6f:03:26:c8:cf:19:fb:d5:fa:5b:32:8b:a3:ba:da:98:e8:
70:62:d3:60:90:88:81:0e:5a:9f:8a:3d:e8:ad:23:9d:d9:30:
61:27:2e:4f:98:8d:d8:ee:79:10:94:ea:09:49:c7:9b:73:1f:
4b:ba:b8:aa:58:a0:7f:04:fe:cf:21:13:ac:ba:f8:ba:79:61:
86:95:c1:63:0d:2f:41:ef:56:bb:7b:ed:55:03:3f:49:49:b9:
9d:26:d0:91:2f:4c:df:44:ae:67:b1:a1:13:99:f6:48:ca:e4:
ae:40:ec:3f:14:34:46:13:77:c5:ec:74:e5:bc:b9:c7:b9:c4:
6a:62:d2:d1:1c:ed:0b:76:24:bd:0e:b8:85:5f:51:70:f7:eb:
2e:d9:72:f4:69:8f:0f:89:c3:b2:1c:82:76:16:0f:35:5d:13:
55:ee:85:9d:be:60:1a:7e:27:ce:51:73:6b:37:7e:73:54:47:
af:ce:9a:54:20:a6:d4:2b:ed:82:bb:07:55:db:bf:de:b9:63:
2b:1f:00:a9:5d:6c:74:a1:45:38:08:53:b8:ad:09:d9:c3:70:
e7:1b:31:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org