Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/ACTiM_3ZYFZJVzGkNO7l7s7ak5Q.roa
File: ACTiM_3ZYFZJVzGkNO7l7s7ak5Q.roa (raw, json)
Hash identifier: VKraerl36xMGfXDCBhW8XMEL+mjmR5SFnn3qc0+oZuM=
Subject key identifier: 00:24:E2:33:FD:D9:60:56:49:57:31:A4:34:EE:E5:EE:CE:DA:93:94
Certificate issuer: /CN=bd974dc8c645ed235145caaa1355ba85f5257634
Certificate serial: 03C3D89B
Authority key identifier: BD:97:4D:C8:C6:45:ED:23:51:45:CA:AA:13:55:BA:85:F5:25:76:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZdNyMZF7SNRRcqqE1W6hfUldjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/ACTiM_3ZYFZJVzGkNO7l7s7ak5Q.roa
Signing time: Sat 01 Jan 2022 08:02:28 +0000
ROA not before: Sat 01 Jan 2022 08:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48724
IP address blocks: 2001:67c:2e4c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63166619 (0x3c3d89b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd974dc8c645ed235145caaa1355ba85f5257634
Validity
Not Before: Jan 1 08:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0024e233fdd96056495731a434eee5eeceda9394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:32:b1:75:bf:a2:37:4a:a2:b6:19:7a:19:81:
5a:ac:88:77:5f:2d:44:8f:d5:bf:30:2b:c3:c4:8b:
75:7f:1d:91:05:76:4f:ca:09:b9:75:27:ff:3a:c2:
a7:71:27:20:20:16:36:9e:1a:3a:3c:c6:e7:50:90:
8b:49:3b:44:cb:ef:12:26:9d:51:99:5e:6c:86:08:
fa:f3:8d:28:5a:96:4b:23:c7:98:86:ab:dc:fe:74:
98:ec:e2:40:1f:85:09:b4:09:79:67:1a:fa:ad:9a:
c6:17:19:49:fb:9d:fe:be:9a:83:9f:44:c4:12:5e:
18:27:5a:6b:2d:8c:50:1e:d2:14:57:cc:84:39:d3:
6d:36:87:c7:d2:b9:55:a9:76:be:6c:7c:ca:b7:c6:
ef:f1:44:c9:ef:ca:ab:2d:8f:8b:8c:67:3a:67:69:
37:a4:17:ac:01:06:70:ba:0c:73:ef:fa:35:3d:e9:
00:68:3d:c6:b7:51:fd:d1:14:1d:3c:64:92:70:93:
81:26:f3:00:6d:f8:e6:bf:16:aa:41:76:28:b9:bd:
22:32:47:8b:29:5f:31:7f:3c:1f:bd:06:de:d4:de:
82:c4:bf:75:d3:b6:e9:0a:13:52:48:91:39:af:44:
77:f4:fc:68:5c:d0:1c:04:44:a6:5a:9d:ce:40:ce:
9e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:24:E2:33:FD:D9:60:56:49:57:31:A4:34:EE:E5:EE:CE:DA:93:94
X509v3 Authority Key Identifier:
keyid:BD:97:4D:C8:C6:45:ED:23:51:45:CA:AA:13:55:BA:85:F5:25:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZdNyMZF7SNRRcqqE1W6hfUldjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/ACTiM_3ZYFZJVzGkNO7l7s7ak5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/vZdNyMZF7SNRRcqqE1W6hfUldjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e4c::/48
Signature Algorithm: sha256WithRSAEncryption
88:18:59:d3:7e:46:23:fe:19:3f:7c:d3:57:25:e5:5c:e2:b6:
0b:d8:18:f3:8a:b0:02:4f:fa:67:fc:56:87:4c:3c:2e:22:d9:
be:cb:b2:9c:ff:45:3f:66:b6:2c:54:e7:ff:4a:ef:a0:7b:8d:
91:e9:25:a2:c9:21:7b:53:b9:9b:2b:a7:8d:54:40:a7:1f:39:
d1:4a:0b:95:07:cf:92:ec:7c:34:4f:c8:b9:76:b0:d6:90:62:
41:97:64:cf:f2:7f:71:40:6a:31:16:2b:fa:90:3c:98:84:29:
96:3d:b7:a6:8e:72:97:0f:17:3c:2d:7b:99:6a:25:f9:af:08:
d7:fd:2c:c4:6a:b7:f5:af:c8:78:79:23:7e:b9:cb:7a:4e:ba:
ec:62:61:d0:a6:a8:3e:0b:e6:40:06:9d:05:ed:93:6a:cf:14:
15:20:02:c4:25:e3:73:93:ee:89:96:d3:1e:fc:2e:b7:95:5e:
13:21:15:6a:0f:73:52:6e:a1:02:93:5a:d2:b2:89:f3:51:af:
23:8a:6c:6c:34:f9:32:dd:f6:42:79:da:7a:d0:8d:a6:50:cc:
e3:fd:f1:4a:d1:e4:ed:40:9e:30:f5:84:34:c1:8a:29:4a:0c:
70:22:06:7b:82:6a:52:0a:33:9c:d4:30:04:81:04:4a:d2:ac:
50:72:65:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:37 2024 by rpki-client on console-fra.rpki-client.org