Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tzyCIrLpxLdpzBPnG-kOjK1_rik.roa
File: tzyCIrLpxLdpzBPnG-kOjK1_rik.roa (raw, json)
Hash identifier: IpalI27pRLcjYWnhEp3xw2Kd6rmT1ki7N3/qXwKaowI=
Subject key identifier: B7:3C:82:22:B2:E9:C4:B7:69:CC:13:E7:1B:E9:0E:8C:AD:7F:AE:29
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 092860BA
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tzyCIrLpxLdpzBPnG-kOjK1_rik.roa
Signing time: Sat 01 Jan 2022 16:00:50 +0000
ROA not before: Sat 01 Jan 2022 16:00:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210614
IP address blocks: 2a0b:b87:ff15::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153641146 (0x92860ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b73c8222b2e9c4b769cc13e71be90e8cad7fae29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:91:1c:a1:da:71:29:b8:ed:dc:04:f5:87:ea:
97:50:b6:93:1e:23:78:ec:dd:1e:ce:db:c5:3c:ce:
99:c2:42:dd:d9:6e:f8:e0:15:27:f7:bd:2e:05:07:
be:17:67:89:1c:fe:08:54:15:03:82:28:42:44:4f:
89:5a:04:30:28:f5:6a:4f:3e:0c:10:1d:88:32:7d:
81:73:00:71:c6:25:3c:26:35:2e:e4:a6:01:10:41:
2d:87:c3:14:84:e1:fd:2a:0d:aa:e7:68:a7:2c:2b:
55:aa:0b:57:58:78:0f:f9:df:bc:8f:d1:13:2e:59:
e3:1a:41:4c:39:9b:82:b0:69:9e:a4:99:26:fc:f5:
95:76:30:9d:e1:e9:88:98:f1:8c:3f:31:9b:02:53:
82:28:28:71:ec:9c:3c:ec:c5:de:9b:04:37:3b:c7:
c0:a1:47:d9:be:d5:f8:0d:a8:bc:32:f7:ce:d2:e9:
5a:e6:26:cb:da:4e:b0:71:eb:ee:ba:df:1a:c2:2c:
b6:15:fe:da:cb:36:99:f4:42:38:8e:eb:cb:76:74:
cf:63:b2:c1:ae:2a:8c:ca:bb:da:f9:4f:f5:5b:48:
79:50:61:c8:f4:9b:b9:7a:dc:d1:c1:19:62:54:8e:
c1:a9:30:29:95:48:51:ac:a6:eb:f1:91:c3:76:5c:
4c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3C:82:22:B2:E9:C4:B7:69:CC:13:E7:1B:E9:0E:8C:AD:7F:AE:29
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tzyCIrLpxLdpzBPnG-kOjK1_rik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ff15::/48
Signature Algorithm: sha256WithRSAEncryption
60:89:00:e8:2e:16:65:ce:b4:a4:de:de:c9:30:ee:b9:6b:40:
7a:8b:6a:49:06:42:15:eb:d4:2a:d3:96:1d:0a:e5:ab:a7:b6:
70:b8:c0:17:66:04:21:04:3f:30:23:f5:f2:9d:1d:dd:29:d0:
75:41:bd:3e:82:e4:25:3d:7f:dd:61:00:8a:76:98:0a:ce:5f:
54:e0:96:3b:3b:ef:63:df:8a:8c:30:e7:2f:a0:2b:6c:89:b9:
f9:f9:5e:4e:40:da:3c:fa:a8:bb:21:7f:be:93:37:5b:c7:a0:
2d:8e:54:a3:d1:6a:76:99:e9:6e:e2:8d:72:e0:e1:bb:9a:bd:
8f:91:d8:45:4f:df:1b:08:5e:c8:7e:c0:cd:a9:23:cd:7a:49:
85:c3:f1:f5:35:ca:f9:45:7f:11:2c:1f:b9:a9:65:84:6d:57:
38:d8:d2:09:78:ea:2f:a0:54:ea:98:2c:65:c1:a9:c0:cf:2f:
39:36:da:63:b4:b8:8e:b2:06:4f:06:17:61:d8:3a:49:db:6b:
db:6f:fb:d0:bb:fa:95:89:39:97:56:72:50:07:54:22:f8:5c:
8c:c7:13:ba:73:51:b3:1b:9d:94:c6:71:a5:1e:e8:44:6c:6d:
38:69:5f:49:65:4e:43:72:e7:3b:12:10:2f:12:78:73:b6:7c:
75:97:ea:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org