Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/CcNakw907gusadFZkBa1lgMJf48.roa
File: CcNakw907gusadFZkBa1lgMJf48.roa (raw, json)
Hash identifier: rs91aoWeuH2q1xUI/tWgl95NDZkyTqkOP1w08+2MidM=
Subject key identifier: 09:C3:5A:93:0F:74:EE:0B:AC:69:D1:59:90:16:B5:96:03:09:7F:8F
Certificate issuer: /CN=785840e3a0f0474a4acce45ed5fc9cff77858d93
Certificate serial: 0136B442
Authority key identifier: 78:58:40:E3:A0:F0:47:4A:4A:CC:E4:5E:D5:FC:9C:FF:77:85:8D:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eFhA46DwR0pKzORe1fyc_3eFjZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/CcNakw907gusadFZkBa1lgMJf48.roa
Signing time: Sat 01 Jan 2022 12:55:51 +0000
ROA not before: Sat 01 Jan 2022 12:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48329
IP address blocks: 2a10:9640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20362306 (0x136b442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785840e3a0f0474a4acce45ed5fc9cff77858d93
Validity
Not Before: Jan 1 12:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09c35a930f74ee0bac69d1599016b59603097f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f8:9f:27:de:c8:ae:cb:c1:ef:17:b5:c5:9a:
b2:ce:e2:91:c7:1e:db:7b:b2:32:91:83:eb:17:c1:
15:11:49:12:4b:26:05:49:3c:b7:a5:09:12:89:cb:
ed:03:3c:fd:bc:e0:84:01:10:82:5f:75:e9:d5:5d:
de:2a:68:91:69:98:4e:f7:fc:54:11:ff:e9:0c:82:
b9:f4:8b:f9:9d:d7:9f:ec:9b:6b:a5:ed:ab:47:0e:
dd:8d:ff:5a:da:ab:2a:fe:4e:7c:1c:a1:62:3c:aa:
1c:40:55:f7:1e:28:ca:05:8c:0e:b2:d3:aa:46:a7:
7c:30:11:aa:1f:80:98:07:dd:65:c4:ad:8d:7e:39:
d7:1f:2d:cf:bb:e8:f0:56:b7:b6:c7:d9:78:23:79:
f9:37:92:87:3c:fb:27:80:c0:93:e9:e6:e5:ed:7d:
e7:46:4f:2d:ff:89:dc:ed:2b:ae:9b:c9:13:c1:a2:
6d:cb:b6:c6:2d:c1:02:96:85:d5:d8:e8:15:5e:40:
d1:31:89:4c:4d:46:5f:a3:8b:b0:47:0a:6d:b1:bf:
b5:6c:dd:a8:2d:09:fc:dd:0e:8f:f2:91:f8:61:71:
f1:3e:1a:ef:47:fc:ac:00:e2:0e:93:ec:2d:3a:f2:
72:aa:bc:32:f7:a3:c8:be:80:a5:af:bf:d8:4c:82:
91:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C3:5A:93:0F:74:EE:0B:AC:69:D1:59:90:16:B5:96:03:09:7F:8F
X509v3 Authority Key Identifier:
keyid:78:58:40:E3:A0:F0:47:4A:4A:CC:E4:5E:D5:FC:9C:FF:77:85:8D:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFhA46DwR0pKzORe1fyc_3eFjZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/CcNakw907gusadFZkBa1lgMJf48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/eFhA46DwR0pKzORe1fyc_3eFjZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9640::/29
Signature Algorithm: sha256WithRSAEncryption
be:79:75:80:d7:37:66:76:dc:53:5a:a4:59:62:6a:b6:16:54:
bd:a2:f4:08:a1:04:10:3a:1a:39:34:88:ce:85:9d:36:07:77:
05:00:58:03:b0:2c:5a:5a:73:78:b9:b4:15:f1:e8:d3:f7:fb:
a8:b8:cc:9e:dd:72:2e:1e:be:6a:14:c8:9a:d2:4c:c6:a7:60:
c1:20:f3:dc:c6:36:3e:f9:65:9e:36:75:9a:64:a0:aa:55:3f:
65:c1:92:24:27:d9:80:18:d2:af:00:f4:cc:1d:74:51:49:a9:
d6:03:91:da:9d:12:e1:82:45:36:16:0b:2f:10:77:30:30:a4:
61:c9:24:e6:c0:c4:34:f7:01:38:49:77:d9:42:de:e5:0c:01:
2b:8c:df:3e:fb:c1:b8:f3:b7:77:71:58:39:1b:f8:be:7c:85:
89:6b:9b:4b:6a:99:35:de:b0:f5:c2:1e:da:87:f8:2f:34:fe:
72:52:a6:9f:f8:05:c8:1b:d0:74:58:ff:28:62:8f:a7:52:7b:
58:a1:ba:f4:27:c6:48:72:7d:8a:64:f8:54:df:c9:38:7d:57:
6a:8e:53:c5:81:e2:5a:a3:dd:b4:1f:0e:da:78:7b:0e:76:d7:
ea:e3:58:6f:20:4c:d2:60:48:53:68:5e:6b:aa:e6:56:30:e9:
56:82:4d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:14 2024 by rpki-client on console-fra.rpki-client.org