Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/ozO4gfxYJ2HQtnljSyt_YfJ0OOY.roa
File: ozO4gfxYJ2HQtnljSyt_YfJ0OOY.roa (raw, json)
Hash identifier: 2hPuRlDckxAWqMHzTycOTepx/1zSLLYDyLhPr0PlRf0=
Subject key identifier: A3:33:B8:81:FC:58:27:61:D0:B6:79:63:4B:2B:7F:61:F2:74:38:E6
Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial: 018563A565023543D99FDA63762CD8FBEEC7
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/ozO4gfxYJ2HQtnljSyt_YfJ0OOY.roa
Signing time: Fri 30 Dec 2022 15:27:41 +0000
ROA not before: Fri 30 Dec 2022 15:27:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200258
IP address blocks: 2001:67c:b50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:63:a5:65:02:35:43:d9:9f:da:63:76:2c:d8:fb:ee:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Validity
Not Before: Dec 30 15:27:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a333b881fc582761d0b679634b2b7f61f27438e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5f:b6:d1:30:93:59:3e:4b:54:97:25:e3:18:
ee:9f:7f:0a:45:99:78:ab:bd:12:4a:77:4f:d1:bd:
fe:fa:0d:98:cf:84:2d:24:6f:ae:05:43:29:f0:b7:
dc:a8:53:70:3e:e1:10:12:2e:49:be:69:1d:79:ec:
2b:48:ec:59:34:df:d8:11:24:62:ac:ef:9d:7a:0a:
01:11:6b:a1:a5:af:10:11:32:94:c0:84:5c:05:94:
1a:77:18:ce:3f:50:2c:74:55:3f:d1:5d:4e:f4:fd:
7e:f3:e0:cd:f0:1f:ee:1f:ec:77:dc:fe:45:84:fa:
04:0c:14:50:28:fa:20:af:96:ec:14:c1:60:06:e4:
1c:dd:f4:6b:f6:b1:aa:0a:1b:11:6c:79:31:6f:0f:
0e:6a:9e:59:cc:51:b6:80:e4:c8:c5:6b:35:b4:f6:
21:19:4d:c5:e2:37:ea:47:39:51:86:d3:5f:c9:6a:
22:e2:3b:81:0a:e6:64:10:f8:e0:b9:97:ff:8c:ae:
04:1d:a4:aa:2d:e2:c8:e3:35:a0:34:d9:5b:55:fd:
ff:56:06:85:54:03:47:71:3d:8f:8e:cf:2e:f7:8d:
c3:7f:ec:7d:e2:a9:81:03:3f:bb:92:11:0c:2d:3e:
d8:7f:0b:33:c1:bf:84:38:9a:56:f5:0c:45:e0:14:
d1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:33:B8:81:FC:58:27:61:D0:B6:79:63:4B:2B:7F:61:F2:74:38:E6
X509v3 Authority Key Identifier:
keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/ozO4gfxYJ2HQtnljSyt_YfJ0OOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b50::/48
Signature Algorithm: sha256WithRSAEncryption
4e:8c:a5:44:b0:3a:52:1f:7a:38:30:60:73:83:13:14:12:b9:
59:be:48:1e:ea:1c:2b:7c:ae:94:ee:38:b8:04:44:e7:bd:d2:
d1:c7:87:12:5e:dc:7e:71:2f:11:6e:f9:3b:51:e5:07:f2:ce:
57:3a:bf:22:e4:e9:ed:00:49:43:9c:43:a3:af:9d:fb:71:ef:
84:d1:d5:f4:4d:28:ad:5a:d9:bf:4d:5c:3e:09:f4:5c:7f:04:
99:0e:90:13:5e:99:a1:d8:d0:f9:7a:7e:28:53:87:6c:b7:52:
e5:c2:d7:7a:cc:c1:b9:93:a9:e7:47:e3:26:e5:81:e4:e1:ea:
69:0a:a3:e3:da:1a:33:26:17:de:bd:4b:d2:e2:e3:0f:c3:39:
a2:f4:e1:5f:92:83:4c:45:fa:7b:f8:e1:e4:ce:14:91:d9:2a:
4d:f1:5d:96:39:4c:8d:8d:f3:2d:4d:49:d5:6d:6d:ea:3f:d7:
6e:d6:07:a8:b1:5c:61:62:9b:4f:9b:1c:44:c0:00:56:1a:3b:
ff:13:f0:3f:da:79:fa:62:cd:f5:bd:2d:33:b0:a7:4f:f6:26:
d3:6e:43:ef:5f:1b:b9:7f:1f:f6:fe:35:00:38:09:ae:0e:1a:
b1:70:f8:d3:5b:80:c2:9a:aa:fe:ed:a6:18:f2:46:5e:c4:a7:
54:9b:f4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:54 2024 by rpki-client on console-fra.rpki-client.org