Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/rK9TDTJ7P7IJ4-WIv9QejWkhqqE.roa
File: rK9TDTJ7P7IJ4-WIv9QejWkhqqE.roa (raw, json)
Hash identifier: JXNXcsll3+fqfm9RBqQC9gKM0rpP1rciB5JrBuzYXdY=
Subject key identifier: AC:AF:53:0D:32:7B:3F:B2:09:E3:E5:88:BF:D4:1E:8D:69:21:AA:A1
Certificate issuer: /CN=6583d322ef24c87198b765ea1d1c42c283a7f8f6
Certificate serial: DC5AAE
Authority key identifier: 65:83:D3:22:EF:24:C8:71:98:B7:65:EA:1D:1C:42:C2:83:A7:F8:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/rK9TDTJ7P7IJ4-WIv9QejWkhqqE.roa
Signing time: Sat 01 Jan 2022 07:56:39 +0000
ROA not before: Sat 01 Jan 2022 07:56:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209209
IP address blocks: 2a11:fe80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14441134 (0xdc5aae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6583d322ef24c87198b765ea1d1c42c283a7f8f6
Validity
Not Before: Jan 1 07:56:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acaf530d327b3fb209e3e588bfd41e8d6921aaa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6f:94:6a:e3:ce:a5:ec:a7:29:75:87:01:0d:
c5:ae:3b:9e:3a:40:70:9a:aa:8a:d1:17:06:c9:3a:
3d:e0:c7:56:50:3e:68:ab:9b:27:be:39:55:2c:f7:
91:be:12:91:9f:0e:6d:a6:e6:31:37:29:1c:09:2b:
e1:41:d6:fb:7d:4f:12:ec:fe:ab:60:27:5f:3c:0f:
1d:7d:51:56:fd:d7:eb:29:2d:a4:ed:e7:a7:45:4d:
87:5a:26:a5:cb:4f:d1:54:18:dd:a6:d1:bb:fb:7b:
7d:36:b0:46:15:4b:ce:48:ff:39:2a:63:51:50:78:
c9:27:43:7e:d6:df:63:ab:6f:35:c2:9b:65:64:ba:
f1:be:5b:ae:a4:88:95:d9:db:06:01:d4:8c:82:b4:
cf:6a:ae:5e:9f:1f:4f:f9:fa:57:18:e6:06:2c:53:
dd:75:cd:60:e7:16:26:cb:58:be:07:d1:e2:7b:e9:
34:c0:23:66:4e:12:e9:a3:c2:f9:3e:da:8f:5e:89:
35:3b:b2:73:d7:4f:0c:e6:ca:4e:41:50:50:25:5c:
0d:c6:ba:54:b0:fa:c0:b4:da:16:08:eb:f8:0a:41:
49:0b:d1:b6:f0:94:5b:c8:77:7b:7a:9f:4d:98:40:
e7:df:2b:76:e7:f4:52:e3:4b:cf:3a:b3:d1:f1:43:
c1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:AF:53:0D:32:7B:3F:B2:09:E3:E5:88:BF:D4:1E:8D:69:21:AA:A1
X509v3 Authority Key Identifier:
keyid:65:83:D3:22:EF:24:C8:71:98:B7:65:EA:1D:1C:42:C2:83:A7:F8:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/rK9TDTJ7P7IJ4-WIv9QejWkhqqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:fe80::/32
Signature Algorithm: sha256WithRSAEncryption
25:06:ce:e6:24:7f:9a:a2:a6:61:a5:a0:13:63:a7:5d:25:46:
b0:e7:a4:1d:1c:df:5f:ff:41:b6:f1:1c:f0:b5:11:af:60:a2:
cb:94:98:65:42:09:58:3b:f9:64:e5:bc:be:ed:13:d9:a4:d7:
6a:d0:0a:f2:9f:6b:88:82:06:e6:68:e6:57:99:ee:81:c9:98:
b8:85:b7:28:17:c1:71:f1:68:1b:65:f9:a1:d6:a0:7a:47:97:
51:ad:d8:a6:dd:3b:d4:8a:1b:97:fb:d8:0d:9f:f5:6f:78:b4:
d0:37:ad:d7:b0:9b:81:c8:d3:74:b3:86:8e:50:ba:14:22:55:
3c:c3:d5:e1:05:85:d6:0a:7e:29:39:fc:1d:07:38:bd:4b:d9:
f0:a0:be:7c:c3:be:87:87:9d:b4:d7:c4:7d:ec:cb:e8:08:ab:
04:8c:e5:e4:66:dc:ad:68:9d:c6:4a:59:b3:c0:a4:c3:83:26:
6f:4b:e7:a2:5a:9a:0a:0d:4a:dc:fb:d4:13:c4:fc:50:1d:33:
58:44:5d:57:3b:d8:91:5e:ec:80:0f:21:9d:ee:db:e6:43:e3:
f1:eb:0b:66:4a:28:f7:9c:01:45:2f:ea:85:52:a4:a0:0b:99:
e8:71:24:26:09:3a:63:7d:c1:ed:46:a6:c6:dd:42:8b:ef:7f:
9f:69:a6:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:21 2024 by rpki-client on console-ams.rpki-client.org