Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Zkal95Re5iqEhXsCb1ZixHabgjc.roa
File: Zkal95Re5iqEhXsCb1ZixHabgjc.roa (raw, json)
Hash identifier: jKoiSJQZvxGas/lC84QR2BVLuwFkCWDkatb/CCfQ6k4=
Subject key identifier: 66:46:A5:F7:94:5E:E6:2A:84:85:7B:02:6F:56:62:C4:76:9B:82:37
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 434F3357
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Zkal95Re5iqEhXsCb1ZixHabgjc.roa
Signing time: Sat 01 Jan 2022 07:59:59 +0000
ROA not before: Sat 01 Jan 2022 07:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59692
IP address blocks: 2a03:f86:3::/48 maxlen: 48
2a03:f86:2::/48 maxlen: 48
2a03:f86:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129263959 (0x434f3357)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 07:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6646a5f7945ee62a84857b026f5662c4769b8237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:19:29:0c:bf:9e:ae:13:36:c7:e1:a8:56:4e:
be:b2:40:04:d5:1a:70:39:ad:00:d3:0f:93:77:40:
1b:72:86:94:b6:41:6e:9f:2f:7c:58:9e:30:ee:73:
0c:aa:ef:ac:c5:9b:cb:f7:7f:30:b2:87:0c:21:09:
71:64:94:82:2a:ec:02:a0:6f:4f:ef:ff:c2:1c:c0:
f6:da:25:95:7b:52:5c:fc:a7:cb:d8:3f:45:6c:47:
4a:b5:db:b6:a4:46:72:ce:c6:a6:79:03:6e:d2:54:
a1:03:4e:82:d8:65:5d:5b:4e:04:35:e8:99:d3:5a:
fc:af:5f:d8:90:53:94:e2:6a:eb:63:d0:a7:83:45:
68:22:d4:94:be:e7:38:37:5d:04:1c:74:f8:e4:d9:
9f:0b:d6:8a:59:eb:fa:90:78:17:ea:8f:7b:cc:8a:
f1:64:75:27:09:9f:cb:91:5f:76:20:1e:d5:c3:7b:
f4:7e:22:8d:4a:bb:8b:94:fb:09:0b:d0:e2:c0:0f:
cd:55:35:4a:2e:59:a1:e3:b7:9d:b6:f5:9e:a1:a1:
af:65:3d:ed:b8:14:d5:86:a6:30:26:70:cd:d7:d0:
2b:c9:cf:e0:00:eb:2d:76:66:45:cc:b5:12:dd:44:
3a:0c:7f:6a:73:c9:1e:d7:0d:3b:10:7a:f9:89:7a:
f7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:46:A5:F7:94:5E:E6:2A:84:85:7B:02:6F:56:62:C4:76:9B:82:37
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Zkal95Re5iqEhXsCb1ZixHabgjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:f86:2::-2a03:f86:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
91:29:f9:e6:8d:08:4c:91:ab:3e:5f:2f:70:02:21:aa:15:28:
fc:4e:79:ad:c3:0b:a6:56:4d:18:37:80:5d:ab:1f:ad:33:0c:
40:3f:64:19:f9:3f:60:86:68:09:aa:f9:1d:31:17:f1:3a:96:
0d:c7:f3:12:03:a3:2f:4f:92:ce:67:62:6f:74:ca:ce:29:e3:
1b:a3:cf:13:1b:19:14:52:e5:5d:eb:10:aa:61:9f:4e:6f:bb:
62:60:27:8c:3e:22:cf:11:d1:b4:3c:f3:1d:9e:d6:a5:55:a3:
71:f1:75:4b:72:41:5f:28:05:3c:69:b6:9a:9e:38:0a:d6:b1:
e9:ce:7c:69:38:77:16:b2:16:c1:29:12:28:d1:bb:d0:05:34:
ea:ae:09:fb:11:63:29:a5:99:f4:18:0a:4e:17:0b:eb:32:db:
d6:2d:77:ab:c2:d5:92:77:2e:fd:e8:72:57:5a:b5:d5:99:bd:
b3:76:f1:2b:09:7a:bb:9f:0c:73:44:cc:39:70:12:a4:c8:2a:
66:e6:e4:87:64:b9:95:ff:f7:79:53:fb:68:93:a7:61:13:50:
3d:32:4c:0a:ce:1c:8f:39:63:c7:c8:00:b1:80:5f:94:e8:4b:
eb:50:79:30:c6:c9:a7:f6:e0:78:0f:ef:14:3b:bd:82:e0:46:
c7:7c:bf:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org