Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/fZbuAG2FLjBaRyiAM_0oidqvgOs.roa
File: fZbuAG2FLjBaRyiAM_0oidqvgOs.roa (raw, json)
Hash identifier: lTy/9G443Im8gXrjXrvO2I9n1fzrGv4Gej4qK0ax3qU=
Subject key identifier: 7D:96:EE:00:6D:85:2E:30:5A:47:28:80:33:FD:28:89:DA:AF:80:EB
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38B965E7
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/fZbuAG2FLjBaRyiAM_0oidqvgOs.roa
Signing time: Tue 17 May 2022 05:30:27 +0000
ROA not before: Tue 17 May 2022 05:30:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198941
IP address blocks: 2a01:288:4008::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 951674343 (0x38b965e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:30:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d96ee006d852e305a47288033fd2889daaf80eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d8:19:09:26:8b:b9:f9:ee:f4:67:ae:c7:7b:
0c:c4:07:34:cc:be:fc:94:bd:9b:22:d8:5a:ad:57:
55:3e:a7:13:fe:ed:8a:ac:4c:5e:72:06:65:55:d1:
1e:c4:91:1e:da:32:3c:cf:b2:d8:68:e2:cc:ac:a4:
4c:61:91:d7:af:9b:53:e5:c8:80:18:2e:1b:89:5b:
b0:19:63:ac:f8:5c:4f:26:67:d5:fb:fc:71:a6:d6:
75:23:db:f8:21:40:aa:6c:0a:6f:86:9f:60:b6:d4:
58:97:68:7e:f8:c7:f9:26:44:0e:78:61:c1:24:9a:
9c:c8:9f:f4:9b:14:55:a9:96:02:53:44:bd:f1:d0:
7e:05:9a:27:13:46:1c:57:85:63:4e:b8:8d:df:50:
84:cf:01:12:4c:4e:fe:4b:cc:76:fc:d0:e9:c4:96:
a9:94:98:38:89:d0:2f:87:98:60:2f:fa:ad:52:02:
d2:c5:90:4a:7c:73:b0:b3:b8:16:01:9e:b4:5e:82:
01:09:4f:6e:b4:a9:a9:19:02:29:ef:a3:6d:9b:07:
40:cb:d7:83:d4:b0:f1:b3:dd:8b:f7:ea:8f:6e:79:
3c:f1:09:52:ea:95:e2:27:d1:3f:b3:2a:3e:5c:bb:
9e:69:bb:e8:31:e8:cd:b3:a2:ff:93:7c:b9:6b:c7:
97:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:96:EE:00:6D:85:2E:30:5A:47:28:80:33:FD:28:89:DA:AF:80:EB
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/fZbuAG2FLjBaRyiAM_0oidqvgOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:288:4008::/48
Signature Algorithm: sha256WithRSAEncryption
2c:03:98:52:5d:b8:80:c1:1c:42:32:96:75:b1:aa:57:ce:db:
55:2a:40:94:55:f9:50:85:66:d9:f4:fb:b9:22:c8:41:b7:fd:
8f:ec:a7:88:00:3e:2e:4b:12:6a:77:7b:83:2b:87:59:f3:8f:
5b:16:32:c7:b2:e4:b2:bd:6e:9a:87:ab:9f:f5:f7:18:c6:d8:
15:f6:b0:53:e3:7f:4e:2f:7c:ee:cf:71:86:a0:6d:8c:67:c5:
ea:0c:15:5b:4e:0e:d4:72:e9:e5:12:36:d0:ee:1e:ca:32:c7:
ee:6b:5b:b2:bb:e3:ad:c9:4a:fb:14:f8:5e:34:28:64:2f:6e:
0e:23:50:1a:80:7e:c3:86:59:a5:54:49:c8:d2:6a:31:3d:9a:
73:6d:5f:2d:2a:98:a8:98:b0:aa:65:bc:c3:1f:81:b5:02:b2:
1d:3b:a3:59:0e:01:ba:f7:18:11:c4:95:c1:c7:0d:26:5b:f7:
5f:6c:dd:e2:52:ae:1d:0d:5a:74:76:76:94:71:24:87:7f:aa:
41:2a:34:82:f1:3d:7d:be:11:6c:95:77:66:53:9e:ca:3c:c8:
2d:f5:cb:fa:60:c1:ad:b2:e2:12:8d:62:a0:e1:28:0d:ac:4f:
86:fb:1b:6f:c7:bc:4d:c7:18:9c:00:3e:b9:f0:a1:a6:d3:4a:
69:ee:76:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-ams.rpki-client.org