Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/zGV2FtcNLzcR_aPpoMptjguE6NE.roa
File: zGV2FtcNLzcR_aPpoMptjguE6NE.roa (raw, json)
Hash identifier: QVcZMdoWGwf85GFtzVfys+oNvyxin09B5EnHGmaA/Eg=
Subject key identifier: CC:65:76:16:D7:0D:2F:37:11:FD:A3:E9:A0:CA:6D:8E:0B:84:E8:D1
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 1189A73E
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/zGV2FtcNLzcR_aPpoMptjguE6NE.roa
Signing time: Sat 01 Jan 2022 11:04:05 +0000
ROA not before: Sat 01 Jan 2022 11:04:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48105
IP address blocks: 2a0b:b600:3c06::/48 maxlen: 48
2a0b:b600:1000::/38 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294233918 (0x1189a73e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 1 11:04:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc657616d70d2f3711fda3e9a0ca6d8e0b84e8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a9:d7:a3:da:b5:e1:c2:d2:51:61:f9:6e:b4:
c5:01:a7:04:ea:17:6b:ae:d7:95:f7:52:32:17:3c:
5f:e3:9e:9b:92:ff:c9:31:bb:fc:3c:92:ce:34:a9:
1f:9b:78:88:5c:77:a6:80:1e:47:8e:bd:06:b0:3d:
89:79:15:f3:5c:b1:d5:9a:86:21:cf:c4:30:77:28:
fa:f8:1d:df:15:a9:94:21:ba:5d:17:f3:dc:3e:64:
e5:e9:49:08:be:78:45:99:a0:5d:cb:4f:25:21:6b:
52:aa:db:a1:aa:96:6d:28:1e:b2:32:0f:42:5b:b6:
7e:ea:c6:16:96:97:09:2a:4f:8f:fe:af:73:ca:b8:
ea:72:94:81:6b:c2:ff:ac:b1:e8:f0:4c:d9:31:0d:
f5:3f:c3:dd:c8:f1:3f:42:71:99:bb:c1:b9:be:56:
67:69:10:2e:8a:aa:16:6e:f0:cd:df:cf:05:52:f3:
c1:4b:b6:17:82:44:d7:92:d0:ff:cc:ee:f1:75:67:
f9:16:be:65:27:44:a3:d4:20:e6:00:fd:31:e2:eb:
f3:03:be:10:91:11:9f:ad:9d:53:35:65:c0:1e:65:
6e:d2:ff:9c:6c:c0:4f:48:5f:05:c2:4a:ea:09:af:
4d:52:df:95:39:89:7e:fc:6e:f2:82:50:1a:b7:58:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:65:76:16:D7:0D:2F:37:11:FD:A3:E9:A0:CA:6D:8E:0B:84:E8:D1
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/zGV2FtcNLzcR_aPpoMptjguE6NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:1000::/38
2a0b:b600:3c06::/48
Signature Algorithm: sha256WithRSAEncryption
00:9f:00:7a:8c:1d:84:0d:b6:39:cf:72:66:72:17:c9:1f:58:
54:c3:14:ce:76:77:50:26:bd:21:11:18:b9:f7:8d:9d:4d:9a:
b2:a7:00:33:37:02:19:ef:e6:b8:b0:a0:85:66:34:73:53:a2:
ad:3e:c5:cb:b2:09:ee:59:27:55:b8:13:fd:e3:61:ed:ff:f0:
b5:fc:b2:ec:7e:cd:e6:06:3f:28:51:c8:2d:97:f4:4b:4c:7b:
c6:a5:3e:21:94:c2:5d:08:1f:95:de:09:75:a3:61:cb:1e:45:
90:bb:c8:21:ce:a2:dd:97:53:03:cf:df:85:99:1a:55:57:b2:
c6:ce:bd:95:d9:c3:a3:ad:41:bf:3b:4a:d6:87:e3:06:b8:1d:
93:dc:d5:fb:fa:a2:71:2e:c5:40:f2:84:da:89:72:d5:34:d5:
c9:dd:f8:88:cb:3b:c4:6f:ae:0b:bd:c0:8d:3b:0b:45:38:9f:
69:63:9a:56:45:a7:53:41:77:49:bf:2c:49:0a:f5:99:7f:82:
e1:7e:d8:27:8f:a2:c7:26:24:29:fc:4d:f7:b2:a3:75:e1:b8:
86:d6:07:f0:1c:dd:8d:c6:02:3f:a2:e4:d4:5f:45:43:0d:c9:
26:9e:cc:f8:4f:ce:4c:d2:11:e9:38:da:57:55:1e:2b:1d:d2:
9e:a4:3a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:25 2024 by rpki-client on console-ams.rpki-client.org