Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/azCZcDl6conVeZvspLy6QcfJ_ds.roa
File: azCZcDl6conVeZvspLy6QcfJ_ds.roa (raw, json)
Hash identifier: hm1d/S+0AlXeOOK+CJGgFScPKX0OhaNGRAo8nwmk/3A=
Subject key identifier: 6B:30:99:70:39:7A:72:89:D5:79:9B:EC:A4:BC:BA:41:C7:C9:FD:DB
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C6B8800
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/azCZcDl6conVeZvspLy6QcfJ_ds.roa
Signing time: Sat 01 Jan 2022 01:02:34 +0000
ROA not before: Sat 01 Jan 2022 01:02:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47748
IP address blocks: 2a00:1728:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476809216 (0x1c6b8800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b309970397a7289d5799beca4bcba41c7c9fddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0d:2a:0f:8c:76:bc:61:5a:16:35:4f:a9:63:
1d:fa:ac:99:b7:53:e6:3f:3c:6e:cb:bb:18:3b:e4:
29:fa:a6:8b:4a:3a:25:d9:bd:af:c7:7c:9a:01:c5:
e2:02:ad:25:bf:5b:f8:80:0c:94:db:21:8a:ed:ea:
2a:92:d2:98:7d:3b:93:ae:8d:6e:30:fd:6f:37:79:
80:62:5c:4e:ff:7c:b1:0c:ab:cd:32:4d:7c:df:03:
ba:44:f2:6b:57:15:0a:2f:90:11:72:9f:26:ae:19:
3d:fe:dc:ae:4c:69:5e:cd:65:10:fd:05:a3:91:af:
2c:f2:38:5f:67:76:3f:03:04:a0:22:de:ea:e2:58:
91:ca:fc:64:49:c3:21:be:cf:d0:d0:f7:76:bf:af:
c3:30:3d:0a:4b:06:d8:5f:54:90:ff:23:25:63:27:
2f:56:63:28:74:52:e8:b4:d4:1b:2f:d6:9c:d9:15:
a6:5d:5a:1f:74:b4:2a:14:e1:18:58:cf:dc:cb:46:
cb:83:1a:ef:c0:47:99:79:04:f8:11:3b:6b:27:02:
8f:7a:cc:f5:8c:da:aa:ba:33:0a:72:76:49:87:c3:
0f:eb:17:96:e5:5f:96:bb:a5:7d:65:c6:7a:cf:5a:
ed:24:4f:22:d8:80:2f:12:4a:a8:4b:ce:6d:65:2a:
ab:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:30:99:70:39:7A:72:89:D5:79:9B:EC:A4:BC:BA:41:C7:C9:FD:DB
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/azCZcDl6conVeZvspLy6QcfJ_ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1728:19::/48
Signature Algorithm: sha256WithRSAEncryption
4c:e0:07:3d:e4:4f:d4:ff:41:ae:e6:cc:e9:ea:d8:53:3e:42:
31:79:0d:c3:d3:98:0b:a2:97:9d:b2:46:94:87:20:60:9e:49:
d4:2a:2f:61:d0:77:44:fd:3a:ed:97:0f:d1:ee:fa:bc:61:89:
e5:dc:45:a2:43:23:57:16:cc:ce:a1:eb:df:c4:86:8b:ab:12:
70:06:56:b4:71:f0:96:89:88:e5:62:72:21:bb:71:3f:fc:db:
ce:07:d0:b5:16:79:91:39:8e:43:20:52:9b:98:92:7b:0c:55:
ad:99:90:ea:6f:59:5c:a4:c5:aa:ad:74:3d:21:87:32:4f:87:
21:3b:7f:44:05:60:80:94:bf:43:db:0a:61:7e:cf:81:81:05:
a9:bc:ef:ba:e6:c5:43:72:e9:78:1e:de:ce:80:4a:48:7c:dd:
cd:61:83:93:75:0f:c5:d9:cd:02:d3:5e:91:64:f5:a6:0f:8b:
fe:4c:b6:9c:a6:ae:04:56:65:74:39:ba:43:0c:e4:c4:75:b3:
94:b9:26:10:57:7d:f2:0a:2a:28:01:99:5c:b4:a3:ec:f6:5f:
ed:03:09:07:b7:1c:c4:42:0b:32:12:53:8f:02:e4:86:08:a0:
e9:e2:ac:30:82:0e:9b:8b:50:9e:fd:3d:72:2a:b1:bc:f0:37:
cf:a7:75:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:39 2023 by rpki-client on console-ams.rpki-client.org