Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/nN6QxB82wouhVu5W8KShuNdZUog.roa
File: nN6QxB82wouhVu5W8KShuNdZUog.roa (raw, json)
Hash identifier: XhKt0exTFUp4vUloOhj0UhhX873Tb6EUJTD98z6gdBg=
Subject key identifier: 9C:DE:90:C4:1F:36:C2:8B:A1:56:EE:56:F0:A4:A1:B8:D7:59:52:88
Certificate issuer: /CN=5262505b488581c2ecd7582a34ece52632e3ef96
Certificate serial: FBBFE3
Authority key identifier: 52:62:50:5B:48:85:81:C2:EC:D7:58:2A:34:EC:E5:26:32:E3:EF:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmJQW0iFgcLs11gqNOzlJjLj75Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/nN6QxB82wouhVu5W8KShuNdZUog.roa
Signing time: Tue 08 Mar 2022 17:50:25 +0000
ROA not before: Tue 08 Mar 2022 17:50:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2027
IP address blocks: 2a0b:cbc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16498659 (0xfbbfe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5262505b488581c2ecd7582a34ece52632e3ef96
Validity
Not Before: Mar 8 17:50:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cde90c41f36c28ba156ee56f0a4a1b8d7595288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9a:35:54:6e:02:c9:04:b3:1b:8a:59:d0:3a:
78:f1:1b:7a:42:53:d4:9e:fc:f1:97:fb:99:21:4b:
70:5e:ba:f7:a5:68:cc:34:f9:35:5c:96:3a:57:42:
8c:51:82:4f:2f:64:62:2e:3a:18:ee:20:f5:f1:d9:
3f:1e:00:50:df:54:42:f9:74:88:50:87:32:97:6c:
55:f3:ed:a0:50:a1:7b:0c:6b:46:ce:28:ac:7e:77:
ee:cb:6c:0d:60:59:7e:8c:cd:19:e9:0e:10:59:bd:
3e:1c:48:23:ac:aa:e8:11:0a:24:24:71:3d:a8:c1:
06:8e:dd:a1:5d:90:c9:1a:55:02:64:f8:2f:f6:d0:
26:55:ee:45:31:23:35:1c:86:e0:d1:7d:46:c3:5f:
81:14:c2:0d:f1:d7:a3:de:ec:dc:23:4d:8a:d4:b2:
39:7a:7c:87:33:91:53:db:7e:6b:ce:64:93:81:67:
7d:8b:2c:26:cb:52:d3:3c:ae:33:6e:d8:f4:82:96:
89:11:e9:32:f6:b7:71:b5:9f:77:84:3f:cd:0a:dc:
ea:e2:9f:89:5b:e6:6a:7c:de:ab:a7:3a:ae:07:56:
e0:48:22:b4:90:b0:36:fd:56:18:6b:f3:b2:2e:bc:
64:aa:31:c9:d9:65:03:e7:53:e2:e8:e2:4d:de:b6:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DE:90:C4:1F:36:C2:8B:A1:56:EE:56:F0:A4:A1:B8:D7:59:52:88
X509v3 Authority Key Identifier:
keyid:52:62:50:5B:48:85:81:C2:EC:D7:58:2A:34:EC:E5:26:32:E3:EF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmJQW0iFgcLs11gqNOzlJjLj75Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/nN6QxB82wouhVu5W8KShuNdZUog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/UmJQW0iFgcLs11gqNOzlJjLj75Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:cbc0::/32
Signature Algorithm: sha256WithRSAEncryption
27:18:70:7c:44:b2:46:33:22:24:98:eb:d3:4a:3e:fe:50:45:
bd:b4:47:3d:80:69:bb:0f:d1:17:0c:74:78:47:74:e7:28:d6:
ca:ed:da:b7:82:91:97:d3:1e:e3:33:0b:a0:91:01:f4:a2:ff:
ba:fd:f8:d0:ca:89:a8:a7:27:96:69:a2:0f:e9:ae:fe:95:eb:
cb:dc:48:ce:e4:cd:0f:f5:39:fd:b3:41:76:ab:0b:1d:2d:e3:
40:dd:6f:c6:c9:9b:2a:a9:54:4b:b1:ca:a3:16:8d:37:95:a8:
e7:27:f7:42:29:7f:eb:20:6c:dd:13:76:02:87:18:4f:0c:ac:
36:9f:3f:63:a7:e4:77:53:21:d5:2a:45:79:cb:c4:1c:c1:41:
3c:7c:53:f3:2c:8a:12:19:4d:84:d1:b2:da:e7:45:dd:ba:f8:
50:89:00:12:22:cc:9d:f4:8b:3c:c5:a3:77:4e:7d:2f:53:91:
a3:16:4c:df:de:90:28:3e:1a:2d:87:14:11:49:fa:d1:61:4d:
fe:e4:1b:c9:46:82:71:bf:db:15:4a:26:db:fc:63:db:bd:85:
f2:3f:31:7d:38:c2:d1:f4:6c:a2:51:20:d5:d6:79:d2:f2:82:
30:e0:80:5b:67:ce:7e:d7:59:ad:82:bf:c2:4a:50:f5:0e:4e:
67:d3:31:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:54 2024 by rpki-client on console-fra.rpki-client.org