Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/bHcFwD1yu1r9SvzG8SRzk_vVPEw.roa
File: bHcFwD1yu1r9SvzG8SRzk_vVPEw.roa (raw, json)
Hash identifier: ZYMTMcJYt942SoNgMRZD0D3OU0t6smHQa1MXIia1Jmc=
Subject key identifier: 6C:77:05:C0:3D:72:BB:5A:FD:4A:FC:C6:F1:24:73:93:FB:D5:3C:4C
Certificate issuer: /CN=cb335dc6feb385f6a23344056a13c2c595028e91
Certificate serial: 08697412
Authority key identifier: CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/bHcFwD1yu1r9SvzG8SRzk_vVPEw.roa
Signing time: Sat 01 Jan 2022 08:55:36 +0000
ROA not before: Sat 01 Jan 2022 08:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61361
IP address blocks: 2a0e:3780:c0ca::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141128722 (0x8697412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb335dc6feb385f6a23344056a13c2c595028e91
Validity
Not Before: Jan 1 08:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c7705c03d72bb5afd4afcc6f1247393fbd53c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:96:a1:e7:ac:18:a3:ce:14:c5:b7:47:67:bd:
99:75:b5:a3:50:31:63:f1:b0:68:9b:8b:01:a9:f5:
fc:ce:f6:5c:27:26:9a:1c:82:16:8f:aa:0e:03:0c:
c2:eb:52:de:e6:d0:7a:2c:93:f3:af:10:53:ed:ef:
27:cf:37:14:89:dd:06:69:7c:2b:34:70:b7:f8:b1:
80:df:f2:ee:a7:db:51:cd:4b:f8:0b:58:5b:0e:a0:
e4:3c:94:e1:89:46:7c:9c:4a:89:f0:57:32:b6:7c:
d7:43:76:4e:52:1e:00:8a:f5:a8:e3:7a:06:58:2c:
e0:76:5b:2c:a7:55:eb:d0:aa:26:05:32:69:eb:ee:
0f:cc:64:df:2d:8d:e2:45:f2:a9:bc:1b:c1:81:ef:
21:d4:e3:13:20:f9:24:86:4b:a5:f0:d2:7f:a0:ca:
66:a4:fa:69:e0:30:e7:b8:a6:53:3f:8f:f8:7e:b4:
30:04:97:e7:2f:bb:af:79:8f:7a:73:f7:7c:1a:f7:
15:cc:8d:d3:d7:56:45:e7:0c:27:25:d5:ab:71:09:
c8:66:8c:9c:7b:c0:ed:86:35:ca:3e:ae:09:72:ff:
c9:b5:fd:3b:70:6a:26:da:11:6a:98:86:4c:a3:44:
c1:41:94:92:9f:a7:cf:03:2f:6e:ee:40:a7:75:82:
ff:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:77:05:C0:3D:72:BB:5A:FD:4A:FC:C6:F1:24:73:93:FB:D5:3C:4C
X509v3 Authority Key Identifier:
keyid:CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/bHcFwD1yu1r9SvzG8SRzk_vVPEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/yzNdxv6zhfaiM0QFahPCxZUCjpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3780:c0ca::/48
Signature Algorithm: sha256WithRSAEncryption
81:1d:12:0d:d4:b2:99:fd:2a:31:af:26:6d:47:22:8b:2e:c7:
8c:d2:b4:e9:e2:3c:8c:26:ff:25:21:ce:a5:fc:70:f6:91:53:
ce:d4:2b:ac:6e:ca:6c:57:97:1b:7e:07:0a:70:78:ec:ec:57:
0a:dc:38:86:b6:22:2b:7c:18:ca:bb:f1:77:88:0b:6f:6f:1a:
0a:78:11:b7:65:ea:cf:0a:1d:9d:78:71:6b:54:31:57:d2:b2:
c6:d7:f2:fb:1e:0b:dd:98:8d:45:9b:01:62:55:60:3d:59:73:
42:1e:63:9e:5f:1c:b9:ec:68:3f:d2:1a:73:d9:15:03:c5:0f:
45:99:d7:30:e8:f7:3a:cb:a4:4f:55:b9:1d:1a:e1:b8:23:d0:
43:f5:b1:30:05:b1:65:9b:fa:55:fc:f3:eb:8d:bb:03:8a:0c:
23:2f:62:c5:14:12:21:72:cc:ae:04:ba:46:c4:fd:6d:83:57:
b9:5c:47:72:64:18:0e:2d:97:8b:07:cf:47:f5:d1:b5:5a:7f:
b4:a0:30:8d:07:f3:61:82:ac:a8:d0:5b:44:41:75:3f:bf:e3:
29:90:b6:ec:0d:3e:1c:e3:f2:76:f5:4f:44:3d:b4:88:97:d1:
39:5c:d1:93:fd:60:18:aa:77:3f:8a:ba:fc:a9:07:5e:ca:54:
7a:2a:76:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:32 2023 by rpki-client on console.sobornost.net