Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b61cf-80ba-4e8e-a2e5-20a0d130c456/1/xCek0brNMLxL7JAdgwhuWNyKGjw.roa
File: xCek0brNMLxL7JAdgwhuWNyKGjw.roa (raw, json)
Hash identifier: CJR8UIDDVCahm14+k8kks6kgrkVGL9oEpc4mmLMRLds=
Subject key identifier: C4:27:A4:D1:BA:CD:30:BC:4B:EC:90:1D:83:08:6E:58:DC:8A:1A:3C
Certificate issuer: /CN=2add438a7ce3cb379f28cfa051cf63d5ad8fe3ca
Certificate serial: 144905
Authority key identifier: 2A:DD:43:8A:7C:E3:CB:37:9F:28:CF:A0:51:CF:63:D5:AD:8F:E3:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kt1DinzjyzefKM-gUc9j1a2P48o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b61cf-80ba-4e8e-a2e5-20a0d130c456/1/xCek0brNMLxL7JAdgwhuWNyKGjw.roa
Signing time: Sat 01 Jan 2022 02:59:25 +0000
ROA not before: Sat 01 Jan 2022 02:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209907
IP address blocks: 2a0f:ca00:8002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1329413 (0x144905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2add438a7ce3cb379f28cfa051cf63d5ad8fe3ca
Validity
Not Before: Jan 1 02:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c427a4d1bacd30bc4bec901d83086e58dc8a1a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b8:dc:9d:04:fa:11:8f:ca:1a:66:de:63:c6:
30:1a:2d:81:9c:ea:1c:f6:2b:ba:db:20:21:3a:c3:
52:cf:f2:01:68:97:3d:b4:97:b6:58:ce:be:d5:c6:
39:24:5f:ae:15:ad:0e:ec:19:cb:6e:48:d1:7b:54:
fd:32:12:88:1c:ae:b7:6d:bf:1c:74:0b:12:a6:bc:
29:c9:6f:ed:a2:a5:1b:fa:3f:d1:b3:0c:5b:f9:63:
09:c6:ad:76:a1:7e:68:7a:32:62:3a:d5:3a:4b:07:
90:b7:5e:e4:b2:df:70:be:d1:d1:1b:f4:92:42:2a:
a4:33:68:94:7a:e1:e7:ff:4c:51:f9:87:e2:ac:65:
af:82:3e:40:bd:64:4a:8e:61:de:31:37:ea:76:ab:
fb:07:f4:93:46:de:f5:f9:88:aa:94:ea:58:07:ea:
0d:22:51:08:8a:e6:12:50:c9:2f:7c:25:35:fe:eb:
ef:fb:ec:99:9b:38:e4:5d:8a:fe:61:d6:e6:6f:ff:
b5:2d:1a:d9:ac:13:7e:86:3e:8c:50:9d:b5:3b:05:
b9:71:8f:29:5b:bb:cf:3f:62:80:4f:ed:4b:99:48:
04:f7:ce:8d:e0:e2:04:68:30:7d:13:24:a6:21:6d:
fe:5d:23:88:39:70:5a:de:e9:fd:3f:a7:6f:42:6d:
cd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:27:A4:D1:BA:CD:30:BC:4B:EC:90:1D:83:08:6E:58:DC:8A:1A:3C
X509v3 Authority Key Identifier:
keyid:2A:DD:43:8A:7C:E3:CB:37:9F:28:CF:A0:51:CF:63:D5:AD:8F:E3:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kt1DinzjyzefKM-gUc9j1a2P48o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b61cf-80ba-4e8e-a2e5-20a0d130c456/1/xCek0brNMLxL7JAdgwhuWNyKGjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b61cf-80ba-4e8e-a2e5-20a0d130c456/1/Kt1DinzjyzefKM-gUc9j1a2P48o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ca00:8002::/48
Signature Algorithm: sha256WithRSAEncryption
8e:ef:b6:2a:78:79:3c:a1:5c:b4:3f:b1:7d:94:1a:cd:64:57:
f6:29:71:a7:25:98:75:4c:a9:e0:68:32:82:2b:39:01:84:da:
ba:69:72:b6:90:27:36:5c:c9:df:bb:1c:4f:2a:04:cd:29:c4:
08:6e:f4:29:f6:23:a1:f5:cb:2e:ac:34:1d:0e:2b:af:a8:d4:
0f:f3:89:87:32:5c:10:b3:71:c4:2d:c7:c8:c9:7d:05:1a:2e:
c3:6e:37:3b:9f:66:b9:9e:d0:b7:7d:bb:0f:6e:c7:2a:31:99:
e1:12:13:ae:89:b9:17:19:f9:0d:78:1f:e7:49:83:a9:9c:f8:
87:f2:99:73:2e:05:21:b6:65:88:6d:cf:12:fb:2d:91:e3:61:
4f:73:96:7c:e4:0e:d7:b8:67:fe:19:3e:ac:f2:e4:27:a5:1e:
53:2a:d4:8a:86:e1:68:f9:10:50:6f:d2:04:db:d8:89:23:48:
66:84:ec:a5:0d:07:48:2f:24:ed:03:a9:dd:f9:0a:2e:fc:d0:
84:d1:f1:95:75:95:82:94:b7:e4:59:19:88:81:1a:24:42:ed:
d0:8d:ff:7f:1f:e6:65:2c:3f:32:75:b3:f1:a6:a9:a9:a0:e3:
cd:4c:f6:88:df:66:5a:27:8d:a1:80:17:99:7c:21:30:57:3a:
4a:f6:cc:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:52 2024 by rpki-client on console-ams.rpki-client.org