Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/df2947-cd05-4405-949a-6a8033dcbe1c/1/jC1Q2-1TJkXonZAMhd3uoneP7Eo.roa
File: jC1Q2-1TJkXonZAMhd3uoneP7Eo.roa (raw, json)
Hash identifier: fj46hOmtOt4YixMisDlXEropabl6SAb7Pp+BH7Tbi84=
Subject key identifier: 8C:2D:50:DB:ED:53:26:45:E8:9D:90:0C:85:DD:EE:A2:77:8F:EC:4A
Certificate issuer: /CN=3d9424b3c8e72f746a59eb199455aa3646a3a457
Certificate serial: 0182AC7893DB030693B7EB455B2C1247A9F9
Authority key identifier: 3D:94:24:B3:C8:E7:2F:74:6A:59:EB:19:94:55:AA:36:46:A3:A4:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZQks8jnL3RqWesZlFWqNkajpFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/df2947-cd05-4405-949a-6a8033dcbe1c/1/jC1Q2-1TJkXonZAMhd3uoneP7Eo.roa
Signing time: Wed 17 Aug 2022 15:42:39 +0000
ROA not before: Wed 17 Aug 2022 15:42:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202283
IP address blocks: 2a0c:d100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ac:78:93:db:03:06:93:b7:eb:45:5b:2c:12:47:a9:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9424b3c8e72f746a59eb199455aa3646a3a457
Validity
Not Before: Aug 17 15:42:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c2d50dbed532645e89d900c85ddeea2778fec4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9e:ed:96:88:8e:4e:aa:da:8d:a9:8f:07:b0:
89:48:3d:04:b2:e8:90:80:70:72:c1:c4:21:2d:a5:
f6:b2:90:d5:31:1d:d5:85:f5:d1:63:39:14:3e:05:
8c:e0:b1:46:ee:ad:d1:f1:4b:ea:63:86:65:c8:61:
f4:96:08:5a:95:2b:e4:cd:fe:59:22:e6:d3:4b:43:
2d:48:ed:28:3a:70:7e:d4:e9:a9:81:e4:54:3f:b6:
85:5a:1b:90:7a:a7:d5:ce:6d:f6:74:f5:d7:7f:45:
83:12:3c:5d:c1:48:78:b6:52:69:32:ef:04:ce:a0:
0b:a5:2f:1d:f7:79:af:c7:d9:49:ab:9c:82:72:31:
5f:5b:9b:25:c9:20:b3:c7:84:3d:0a:a5:01:0a:c1:
79:cd:7a:ce:d1:86:bb:24:d3:6d:25:da:dc:e3:9e:
ec:b1:d5:53:4b:2f:58:18:19:66:04:10:57:e1:78:
cb:b4:66:90:6d:01:e9:20:de:bd:6e:0c:d2:aa:6d:
4d:21:4e:44:7b:5c:37:9d:75:76:a4:be:13:93:ef:
e0:bf:ac:58:b4:7a:8f:e1:84:9e:85:27:0a:24:33:
88:d8:4a:62:50:45:7e:cd:d2:d3:e1:d1:0a:e2:3c:
31:4e:5f:75:a1:d6:11:4f:2d:7c:fe:76:b4:db:1e:
df:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2D:50:DB:ED:53:26:45:E8:9D:90:0C:85:DD:EE:A2:77:8F:EC:4A
X509v3 Authority Key Identifier:
keyid:3D:94:24:B3:C8:E7:2F:74:6A:59:EB:19:94:55:AA:36:46:A3:A4:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZQks8jnL3RqWesZlFWqNkajpFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/df2947-cd05-4405-949a-6a8033dcbe1c/1/jC1Q2-1TJkXonZAMhd3uoneP7Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/df2947-cd05-4405-949a-6a8033dcbe1c/1/PZQks8jnL3RqWesZlFWqNkajpFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:d100::/29
Signature Algorithm: sha256WithRSAEncryption
05:9b:89:13:cf:ef:0c:7a:80:72:17:65:82:c1:d7:9d:e9:fa:
91:94:3e:19:61:2d:a2:71:a2:d9:38:eb:c6:dc:66:d2:9f:ce:
ff:a3:18:24:d4:20:ea:0f:27:fd:eb:ec:e0:07:ab:b2:81:4c:
d7:23:d7:0b:95:c2:13:ee:89:bb:f3:84:c7:be:1b:58:e3:0a:
11:94:ca:af:2e:66:9e:56:36:70:ea:29:74:68:fc:fd:50:fb:
e0:d7:26:f5:83:9f:02:cc:67:50:4c:e7:62:59:e1:8a:79:4d:
9d:3a:b9:89:14:06:4f:0c:ea:44:f0:d7:36:1d:49:15:75:07:
aa:f0:cb:e3:74:22:90:50:60:44:d2:44:40:ca:02:1b:e6:ff:
c7:be:f2:cf:17:ec:24:24:7c:d0:58:02:fa:ec:8e:40:7c:a5:
d6:a5:73:10:0c:65:e4:82:8f:17:36:1e:03:46:16:a7:67:72:
d7:54:9a:3d:df:9d:f6:0d:68:cc:85:91:fc:26:77:f5:a1:64:
53:8a:89:98:dc:4d:9f:b2:e6:c8:1a:fc:53:83:15:aa:1f:2a:
fc:47:3a:8c:1f:80:ec:2f:6d:2b:be:fc:0e:d2:76:b4:07:a8:
76:1e:e9:60:9f:42:19:03:3b:a8:d2:50:48:54:ea:6a:74:37:
4a:6d:33:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:54 2024 by rpki-client on console-ams.rpki-client.org