Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/CcaWXIRj6x7m2_EikJykyeKdtIk.roa
File: CcaWXIRj6x7m2_EikJykyeKdtIk.roa (raw, json)
Hash identifier: wwjJENp3I2sv24vVBaRjycsFRcRDCZ2I4Om8tVau6dE=
Subject key identifier: 09:C6:96:5C:84:63:EB:1E:E6:DB:F1:22:90:9C:A4:C9:E2:9D:B4:89
Certificate issuer: /CN=ceb5929361e1d0de160b871f29bdd5a4040ca111
Certificate serial: 105C9624
Authority key identifier: CE:B5:92:93:61:E1:D0:DE:16:0B:87:1F:29:BD:D5:A4:04:0C:A1:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrWSk2Hh0N4WC4cfKb3VpAQMoRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/CcaWXIRj6x7m2_EikJykyeKdtIk.roa
Signing time: Sat 01 Jan 2022 14:08:10 +0000
ROA not before: Sat 01 Jan 2022 14:08:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 134.106.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274503204 (0x105c9624)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceb5929361e1d0de160b871f29bdd5a4040ca111
Validity
Not Before: Jan 1 14:08:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09c6965c8463eb1ee6dbf122909ca4c9e29db489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a7:a6:01:6b:9d:e4:db:05:5d:2f:ef:84:40:
1b:46:06:63:13:17:c2:b2:69:2f:2b:e8:f4:44:21:
4d:e9:86:4b:b7:09:61:c1:c6:dc:31:d8:78:a3:45:
90:48:2f:79:36:20:c6:9b:35:e8:a0:c4:a3:9e:e1:
e4:74:04:5b:fa:bf:7d:93:58:5b:e0:41:15:96:84:
d2:ba:a4:a1:2b:90:ed:f8:7f:03:bf:75:1f:d2:24:
dc:51:0c:ea:51:c4:74:32:c6:df:c0:e5:51:b3:07:
76:df:f4:7e:f9:cb:f3:19:9b:f4:e5:0c:47:59:b1:
96:66:3e:77:69:c9:79:46:d6:4a:f3:8d:3e:2c:90:
cc:b9:01:62:36:90:9f:4d:e4:66:d6:19:09:fb:39:
d0:81:0a:14:0d:0c:6f:3b:f3:59:72:88:75:c8:83:
18:c2:89:fc:a5:3b:60:d9:9f:12:bc:75:07:66:90:
0f:32:d2:5f:5a:a8:91:4e:10:42:4e:ae:4b:d5:3f:
57:f1:ce:09:70:22:27:ed:78:94:87:5d:3d:a1:7d:
27:43:98:f3:89:56:e0:51:d8:32:5e:23:21:ca:d3:
94:ae:2b:3d:2e:7e:80:bf:3d:63:30:ee:74:da:e7:
cf:2a:3b:8a:f1:71:a1:d5:34:d0:4a:99:bc:b5:0f:
42:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C6:96:5C:84:63:EB:1E:E6:DB:F1:22:90:9C:A4:C9:E2:9D:B4:89
X509v3 Authority Key Identifier:
keyid:CE:B5:92:93:61:E1:D0:DE:16:0B:87:1F:29:BD:D5:A4:04:0C:A1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrWSk2Hh0N4WC4cfKb3VpAQMoRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/CcaWXIRj6x7m2_EikJykyeKdtIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/zrWSk2Hh0N4WC4cfKb3VpAQMoRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.106.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1a:80:3b:aa:ce:8d:4d:fa:14:b6:17:b9:23:dd:05:db:2b:33:
ea:86:77:f7:52:a2:75:8a:86:e7:01:f0:fb:7d:da:56:2c:6c:
da:b2:0a:72:08:09:76:50:44:0f:2f:6a:f1:c7:7f:0c:92:5d:
55:aa:07:2b:9d:90:af:6a:96:95:2a:ea:ea:f9:8e:b1:f0:dc:
f2:f5:14:bf:45:d7:15:d5:b9:26:16:95:14:6a:3e:12:c7:8e:
d2:2b:6d:08:a6:ab:2e:a0:ab:00:a4:a3:26:4b:10:02:92:70:
c3:92:74:4a:0e:c0:2e:f8:a7:e1:c4:c0:7b:32:cc:0a:a8:c0:
e7:e9:6a:35:cd:c4:dc:70:5d:cc:99:a9:a8:9a:f1:f8:b2:81:
26:ed:24:4c:3b:d4:dd:22:70:74:86:80:19:48:4a:05:2b:7d:
ca:02:19:15:ea:78:b3:94:a9:c9:89:d1:e2:a1:b3:d1:33:21:
ca:c5:da:a3:39:f1:ac:44:00:a7:f4:ec:11:76:78:c7:58:0d:
67:c0:0f:95:cf:6b:b0:85:2b:e3:66:5e:c0:05:6b:ad:fa:94:
3e:24:dd:6d:b4:09:2c:0a:33:f6:05:18:b1:35:55:df:6b:00:
a2:8f:bb:df:35:a9:82:3f:62:87:e1:cc:48:65:02:c8:39:a4:
25:92:84:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:27 2023 by rpki-client on console.sobornost.net