Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/Z1eF3y5621ifajzrTp6fy5j8EPo.roa
File: Z1eF3y5621ifajzrTp6fy5j8EPo.roa (raw, json)
Hash identifier: crfViz6Fwl3CiyIvi5YckYyOqC9OVwmXRRXgjPb1B4Q=
Subject key identifier: 67:57:85:DF:2E:7A:DB:58:9F:6A:3C:EB:4E:9E:9F:CB:98:FC:10:FA
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 118B0556
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/Z1eF3y5621ifajzrTp6fy5j8EPo.roa
Signing time: Sat 01 Jan 2022 11:04:06 +0000
ROA not before: Sat 01 Jan 2022 11:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60927
IP address blocks: 2a0b:b600:3c01::/48 maxlen: 48
2a0b:b601::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294323542 (0x118b0556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 1 11:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=675785df2e7adb589f6a3ceb4e9e9fcb98fc10fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:20:00:79:60:09:b7:01:b4:29:a7:a7:27:80:
9a:84:05:f3:3b:89:73:e8:bd:ad:74:69:c3:66:4d:
84:54:bd:e5:c4:6f:83:48:1e:1d:b4:b0:4a:46:fa:
a8:b9:d9:96:a3:22:33:a2:e0:08:60:de:63:d4:f8:
ee:72:73:4c:93:53:d0:d9:6d:67:38:23:76:39:fb:
88:78:bf:eb:e3:2f:86:67:aa:70:70:e5:41:7f:85:
87:d9:84:25:d9:2b:b5:aa:88:45:d2:4f:01:4c:df:
4f:61:7b:02:99:49:1c:20:1a:0d:6e:9c:0a:d8:68:
79:7f:c8:e8:85:d9:b0:4f:7c:f5:d0:df:f0:5c:c6:
43:0e:de:fb:5d:aa:29:00:26:0f:15:75:c2:e7:90:
63:49:c1:f5:a4:a0:f6:ea:9b:a7:66:16:f4:c7:2e:
7a:e8:a5:25:28:91:9b:b3:62:43:b9:29:79:29:24:
a1:81:2a:95:b2:c0:77:2a:ca:59:b2:9b:cb:47:f4:
c3:ed:18:47:31:0a:48:b0:44:29:ea:7c:d6:8b:62:
b6:ff:f9:42:1f:e2:68:be:b4:2b:6e:55:a0:3d:c5:
a3:2d:67:fc:99:c7:9f:18:57:3e:2f:4c:65:89:3c:
c2:da:89:e8:59:c9:92:c6:0d:77:8c:b3:dd:cb:15:
fb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:57:85:DF:2E:7A:DB:58:9F:6A:3C:EB:4E:9E:9F:CB:98:FC:10:FA
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/Z1eF3y5621ifajzrTp6fy5j8EPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:3c01::/48
2a0b:b601::/48
Signature Algorithm: sha256WithRSAEncryption
a2:70:20:5a:dc:c3:03:a7:69:2e:82:9d:3e:61:c4:5e:d2:f7:
aa:61:89:32:c4:22:96:d9:b8:22:c0:cf:b7:97:e4:d7:07:ad:
eb:98:c0:c5:8f:3f:9d:1c:ec:7d:87:e5:fd:92:f1:c1:e1:8a:
25:1b:23:8c:68:cd:7b:35:24:35:b3:4b:0e:32:1d:dc:ae:d6:
e0:cb:d9:f5:c3:eb:21:29:18:04:39:15:c3:8f:7f:a9:75:52:
7b:21:3b:e8:12:96:68:86:a8:16:29:dd:d1:aa:4c:f8:73:ce:
67:b0:17:97:76:2f:10:bf:2d:d9:25:7f:09:5a:aa:99:f3:37:
ba:ab:61:09:29:e8:37:a2:cd:a7:00:cb:02:20:5f:e0:97:69:
77:f2:13:b2:5a:78:7d:05:47:1c:2b:f5:9d:7e:da:84:03:8c:
ba:c6:1b:55:9e:50:fa:fc:61:61:e8:1a:b1:1a:91:ac:3c:4a:
a8:43:02:02:ae:e9:76:95:1f:a4:a9:ae:8d:05:07:fa:bc:75:
9d:a7:7d:32:a7:cb:68:db:dc:38:94:ed:67:82:18:47:1f:84:
79:ee:6d:73:a8:e2:32:ba:bf:7c:c3:d4:88:6b:e1:ea:14:2c:
af:ce:9c:fb:eb:d0:02:20:5d:9e:65:ee:a3:78:e7:47:47:59:
25:ff:d7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:14 2024 by rpki-client on console-fra.rpki-client.org