Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/zSeAA0YDKsuyjJvIU2yNgBwRuH8.roa
File: zSeAA0YDKsuyjJvIU2yNgBwRuH8.roa (raw, json)
Hash identifier: p90iQ15ScsyXudX+n4KGzm+LXZuaeRw7etyk1bmhfKM=
Subject key identifier: CD:27:80:03:46:03:2A:CB:B2:8C:9B:C8:53:6C:8D:80:1C:11:B8:7F
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 0A04E567
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/zSeAA0YDKsuyjJvIU2yNgBwRuH8.roa
Signing time: Sat 01 Jan 2022 04:58:58 +0000
ROA not before: Sat 01 Jan 2022 04:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1267
IP address blocks: 2a02:b000::/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168093031 (0xa04e567)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Jan 1 04:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd27800346032acbb28c9bc8536c8d801c11b87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:8e:dd:d8:d7:59:a2:a0:30:c3:92:5d:e4:
eb:40:7d:47:c9:24:b8:b2:0b:1d:49:b4:ed:13:14:
70:45:4f:d4:ab:2a:04:10:cd:bb:3c:94:e1:08:72:
18:73:d5:43:e4:47:79:65:9c:e9:75:21:4d:87:a0:
a3:d8:13:e0:e4:02:46:bf:f7:b6:f2:c8:08:48:37:
ed:0a:f2:a6:a6:2c:b0:1a:a7:1c:95:37:4e:b9:a8:
f4:c4:32:75:bd:f6:53:31:8d:73:fb:91:fc:f3:cc:
61:4f:94:82:13:1f:f9:81:6c:0c:a3:e6:6a:8f:28:
79:d8:e0:99:25:e3:9a:2b:08:a1:96:de:f7:29:0f:
e1:de:e2:fd:95:e7:45:4d:3d:ee:c9:52:92:2f:d0:
be:51:dd:2e:49:aa:35:12:d2:88:71:6d:8b:58:4c:
75:8e:9e:c9:d2:95:96:54:47:49:25:53:0d:c9:21:
6a:5a:fa:4d:59:55:08:59:5c:b7:ca:17:c3:7d:96:
66:38:c2:2c:eb:cc:83:ea:83:0b:5f:7f:0c:d2:15:
9f:20:4a:de:a8:f3:51:a6:87:6b:72:46:3c:f5:b0:
38:94:2a:eb:a8:95:3a:cf:c3:ea:fb:55:bb:b3:bd:
5d:42:63:7c:80:e3:e5:fb:fc:3f:30:7a:21:d8:c0:
c0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:27:80:03:46:03:2A:CB:B2:8C:9B:C8:53:6C:8D:80:1C:11:B8:7F
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/zSeAA0YDKsuyjJvIU2yNgBwRuH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:b000::/23
Signature Algorithm: sha256WithRSAEncryption
b0:94:ef:f3:9b:04:01:cb:f2:5e:ba:2d:1d:a0:f7:b0:a8:65:
44:91:fd:1e:40:6b:47:0a:be:83:cf:3d:f9:ec:5b:f5:47:c6:
8a:e3:db:7a:c0:b5:d8:80:f5:23:c6:c6:32:0f:7d:ca:5e:78:
3c:25:c2:65:5d:23:7e:dd:3e:f4:ca:fb:3f:b7:fe:b3:b8:13:
b8:7f:02:49:3c:e1:15:e2:9b:4e:e7:21:0f:e5:cf:aa:7a:22:
9b:47:ee:84:71:16:15:f5:43:18:16:66:77:53:9e:91:ea:c8:
b3:1c:35:2b:83:e3:4c:77:f1:48:0d:38:35:e0:50:41:92:7b:
8d:35:26:3a:f9:70:f3:dc:59:de:5c:f7:39:52:48:8c:0b:0c:
9f:26:1b:95:69:2d:5f:0f:3e:ce:9f:9d:71:5d:ee:90:c2:61:
0f:fd:db:af:64:fd:14:ac:f7:d6:3a:d8:3a:e5:99:b5:e4:a1:
8d:75:2a:c9:b6:98:93:15:3b:04:25:15:b4:47:84:c8:e0:bc:
b3:56:20:cd:b1:7d:b7:35:38:d4:ea:c6:00:fe:ea:b1:a9:53:
c2:4e:f3:50:9e:ee:1a:a8:e4:f7:2a:5c:ca:6f:ab:98:ad:b9:
f3:65:c9:b4:6b:5d:f0:bc:5b:74:a7:e3:01:fe:9f:d8:af:29:
70:33:3b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:35 2024 by rpki-client on console-fra.rpki-client.org