Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/62f809-e231-4ef5-9014-74e331dbd07f/1/DJEBU8UbE73WYnrggR0dasCH6rU.roa
File: DJEBU8UbE73WYnrggR0dasCH6rU.roa (raw, json)
Hash identifier: hbDXstTJsTCn8mny1H45pB35HZE+iw6K5kIb+F09YaY=
Subject key identifier: 0C:91:01:53:C5:1B:13:BD:D6:62:7A:E0:81:1D:1D:6A:C0:87:EA:B5
Certificate issuer: /CN=6abd2710c2fcf551b31fd7ccc60df1f6bb4a92c4
Certificate serial: 02677A
Authority key identifier: 6A:BD:27:10:C2:FC:F5:51:B3:1F:D7:CC:C6:0D:F1:F6:BB:4A:92:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ar0nEML89VGzH9fMxg3x9rtKksQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/62f809-e231-4ef5-9014-74e331dbd07f/1/DJEBU8UbE73WYnrggR0dasCH6rU.roa
Signing time: Wed 29 Jun 2022 11:25:02 +0000
ROA not before: Wed 29 Jun 2022 11:25:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197942
IP address blocks: 2001:67c:a30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157562 (0x2677a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6abd2710c2fcf551b31fd7ccc60df1f6bb4a92c4
Validity
Not Before: Jun 29 11:25:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c910153c51b13bdd6627ae0811d1d6ac087eab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:00:96:fb:81:f8:ee:f4:1f:5d:a2:8b:aa:08:
24:3c:a6:a6:12:5b:75:6a:cb:d9:36:27:04:54:04:
5c:14:c1:b1:1e:f8:37:4a:ae:53:12:fe:45:47:b3:
21:ec:0e:46:f6:84:18:10:c8:cc:fb:b1:2d:98:b4:
7d:6f:e4:43:bb:3f:a8:90:3b:8e:93:77:77:62:e6:
29:b0:ee:6d:e0:1e:1a:eb:d4:a9:52:26:b4:81:49:
84:30:c5:f9:a5:f3:ff:7e:63:49:7e:ea:ce:db:e1:
f9:93:e0:41:9e:c2:c0:82:9e:a5:8b:14:9e:4c:25:
67:95:89:06:2e:6a:75:47:07:c2:fd:66:5d:15:e3:
39:fa:93:a9:f7:cf:7b:b4:18:7f:fc:5c:00:a0:76:
dd:c9:39:6e:1d:e2:14:90:71:9b:78:c6:7b:84:53:
c0:0d:8e:6f:77:de:70:93:72:70:62:3d:b2:bc:93:
76:cb:f2:a7:a2:83:64:e2:95:1d:6d:a0:a1:de:f5:
98:d3:56:c4:45:e5:6f:e9:77:ba:9f:29:e2:11:a4:
b7:94:d4:94:aa:5b:5c:97:6c:c8:e1:8e:41:9d:56:
58:bd:ea:94:d0:d0:83:b9:37:b7:24:a1:18:c5:41:
75:53:28:85:29:04:03:40:ba:84:38:d4:65:37:91:
92:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:91:01:53:C5:1B:13:BD:D6:62:7A:E0:81:1D:1D:6A:C0:87:EA:B5
X509v3 Authority Key Identifier:
keyid:6A:BD:27:10:C2:FC:F5:51:B3:1F:D7:CC:C6:0D:F1:F6:BB:4A:92:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ar0nEML89VGzH9fMxg3x9rtKksQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/62f809-e231-4ef5-9014-74e331dbd07f/1/DJEBU8UbE73WYnrggR0dasCH6rU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/62f809-e231-4ef5-9014-74e331dbd07f/1/ar0nEML89VGzH9fMxg3x9rtKksQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a30::/48
Signature Algorithm: sha256WithRSAEncryption
74:66:39:2e:35:9a:23:56:10:55:52:b2:e1:c6:e0:34:ce:3a:
45:5d:7b:0b:49:e2:d0:0d:30:5f:62:f2:d2:63:2b:68:50:8b:
f7:80:87:4d:71:f0:aa:02:16:54:cb:a9:0a:f0:cd:04:e4:9f:
2b:24:94:2f:2a:44:13:38:fb:cb:45:89:fa:63:76:bd:2d:61:
0f:27:fb:d3:97:3a:cc:49:87:d0:18:b7:85:b1:28:0b:e6:29:
9d:19:9d:4c:33:76:34:43:3f:7d:3f:83:cc:e9:6f:ff:5b:be:
57:ee:d6:59:0b:e9:58:6b:15:29:73:04:a5:a0:82:0f:5d:01:
a8:d6:50:a6:f9:f3:39:dd:17:43:cb:9f:9c:3c:02:2a:ec:41:
60:8f:f3:9f:bb:6d:00:d8:7b:99:72:70:f8:46:d6:a9:2b:9c:
b4:ef:a5:25:bb:09:7e:07:f1:3b:87:cb:3d:0d:9e:f8:d7:ed:
09:fd:26:48:3f:75:39:71:90:db:4e:77:ee:9b:a1:ad:87:21:
37:74:a9:74:1d:2c:ff:dc:2b:9d:c1:92:b4:07:3d:ab:a3:4d:
77:1b:06:a0:73:aa:6e:4b:d2:ea:26:4b:0f:a3:62:8f:82:6b:
7d:98:6d:e5:6b:c2:fb:26:00:36:2d:ce:01:13:49:e4:bf:9a:
6b:0e:26:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:37 2023 by rpki-client on console.sobornost.net