Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RJD4N_ODcInIftlx72AOWP-u9Vo.roa
File: RJD4N_ODcInIftlx72AOWP-u9Vo.roa (raw, json)
Hash identifier: gvhnGqkMOckjUmR1Cs3pxpkA1dhMcNKpFhoR95n+9EE=
Subject key identifier: 44:90:F8:37:F3:83:70:89:C8:7E:D9:71:EF:60:0E:58:FF:AE:F5:5A
Certificate issuer: /CN=44007172df9fc2d4a2ddbba934cebc9f0286d3ca
Certificate serial: 16008E2F
Authority key identifier: 44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RJD4N_ODcInIftlx72AOWP-u9Vo.roa
Signing time: Sat 01 Jan 2022 14:02:18 +0000
ROA not before: Sat 01 Jan 2022 14:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210374
IP address blocks: 2a05:9f04::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369135151 (0x16008e2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44007172df9fc2d4a2ddbba934cebc9f0286d3ca
Validity
Not Before: Jan 1 14:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4490f837f3837089c87ed971ef600e58ffaef55a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:53:45:47:36:ae:92:84:1b:f9:2f:b5:e0:f6:
82:57:d5:16:42:8b:29:5f:ee:0f:5d:c2:c5:bf:a5:
6c:47:da:07:d5:85:87:3f:84:2a:69:b9:db:4d:1b:
5c:75:60:38:6d:f2:36:12:80:6d:f7:ca:5e:42:cb:
63:2f:64:84:b9:d2:b3:90:27:c5:4e:24:c3:a8:b2:
fb:4e:41:a7:97:66:36:f5:9f:8f:12:40:4e:80:96:
67:8a:db:18:8c:6d:28:6b:d4:59:7e:7b:42:1b:b3:
e9:f0:32:53:d2:fe:38:ba:89:31:6e:38:c0:5e:ae:
d9:38:c8:f5:11:2f:58:99:05:e3:5f:a4:2f:e6:a2:
29:13:7d:f4:25:87:a3:d9:92:8d:93:7b:15:0b:45:
83:8f:33:b4:42:c6:dc:6c:cd:d5:20:06:6c:fb:34:
64:ee:66:24:bf:b4:9c:29:88:69:49:e4:7e:0c:32:
cc:08:7c:1e:1d:17:ce:86:56:92:1b:4b:39:1f:02:
e2:ec:84:14:5d:0f:10:a7:b9:f9:26:4d:f5:6f:77:
ac:3b:30:88:1a:5f:c8:dc:d0:b5:bb:44:82:96:6c:
81:05:f7:4b:bd:10:63:ce:4e:e8:bf:f8:9f:2e:ab:
fc:01:c7:7f:9b:f9:1d:06:36:55:72:f3:72:7c:ed:
bc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:90:F8:37:F3:83:70:89:C8:7E:D9:71:EF:60:0E:58:FF:AE:F5:5A
X509v3 Authority Key Identifier:
keyid:44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RJD4N_ODcInIftlx72AOWP-u9Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RABxct-fwtSi3bupNM68nwKG08o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9f04::/40
Signature Algorithm: sha256WithRSAEncryption
6c:f8:9a:39:37:b5:cf:11:62:38:20:40:a6:70:76:3e:8b:c7:
ce:b0:84:52:3f:0b:b3:00:c0:b2:3d:0e:a3:a2:ab:53:91:4d:
d4:07:2c:13:73:54:86:42:22:d6:b5:ce:d5:8b:05:3c:a3:a8:
57:49:54:34:dc:fd:fe:28:ca:32:5a:7f:8f:8f:3b:e3:57:5a:
c5:79:7e:38:f0:ef:96:22:6e:32:c9:28:15:bd:cb:c2:04:ca:
4d:bc:ce:2d:eb:c8:76:d7:96:e4:de:99:52:de:c7:c8:86:e5:
ac:72:c6:71:56:6f:34:3a:d2:65:f6:c3:b6:0b:0c:3e:1b:b8:
c5:42:97:6d:9e:68:f5:d7:22:84:7d:bf:26:cd:4b:81:52:d0:
07:cc:70:91:8b:d5:bc:b3:81:9f:60:5c:b8:a3:3f:ac:6b:79:
ce:47:32:99:ce:e1:ab:1e:ff:81:33:13:e4:56:c4:3e:66:7e:
1d:f1:97:a9:af:53:77:80:0e:b1:77:63:b7:92:c8:3b:3b:7b:
00:c9:7c:c1:f2:d3:db:ed:b3:87:f9:fc:ce:d4:69:7b:b4:b6:
54:32:af:4d:71:cc:c6:14:d2:99:36:b6:20:45:8d:f5:0f:5b:
7c:a6:eb:d8:6a:ff:84:8e:eb:ad:63:ac:af:25:db:ad:d9:53:
35:23:1b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:51 2024 by rpki-client on console-ams.rpki-client.org