Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/zRbOe_Qh4RtOF34w3nZ1IZfZFLs.roa
File: zRbOe_Qh4RtOF34w3nZ1IZfZFLs.roa (raw, json)
Hash identifier: vLNoMyI12Ww2PIHAVjEpZ9IYGwb10KB/Px7QRKzi+qM=
Subject key identifier: CD:16:CE:7B:F4:21:E1:1B:4E:17:7E:30:DE:76:75:21:97:D9:14:BB
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 094408A4
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/zRbOe_Qh4RtOF34w3nZ1IZfZFLs.roa
Signing time: Sat 28 May 2022 21:55:15 +0000
ROA not before: Sat 28 May 2022 21:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50395
IP address blocks: 2a0e:c6c6::/32 maxlen: 32
2a0d:2d45::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155453604 (0x94408a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: May 28 21:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd16ce7bf421e11b4e177e30de76752197d914bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:07:f4:34:6d:b2:da:be:05:ba:1d:4c:23:
70:fa:b3:6b:45:16:96:d2:bd:8f:b4:82:6a:12:8c:
73:98:3c:5f:11:f0:b6:d2:ae:3b:74:23:af:b3:ee:
dd:70:4d:09:b8:24:a3:a4:16:8a:e3:67:df:1b:41:
84:86:53:2c:f8:6a:6b:46:f8:7e:66:30:77:27:e7:
07:15:04:f7:82:e8:13:22:a2:da:97:54:a2:28:61:
68:56:02:41:68:1d:7a:8a:ee:dd:85:0a:2d:3b:2d:
24:d2:0c:df:b3:ed:06:df:ed:d2:da:5b:2c:a6:2a:
c0:6d:8e:a0:3b:d0:f2:60:52:dc:e9:dc:ca:72:06:
d7:f9:8a:ad:01:6d:21:21:3c:fa:ad:a5:a5:2f:b7:
6b:2d:74:ec:63:64:0e:7b:8b:b8:14:14:23:32:87:
cf:46:5c:91:51:61:51:19:13:e5:fa:96:64:05:05:
ab:ff:26:66:1d:24:b0:2c:3f:37:65:5f:17:6d:34:
4b:69:d9:a0:df:8c:6d:cc:57:50:b5:63:40:5c:5b:
18:2b:6a:e8:54:b1:49:ed:c4:7b:5d:eb:8b:7b:34:
b8:72:57:41:50:3c:33:68:28:18:33:5d:55:b9:70:
19:bd:d4:5a:ff:c5:a6:86:58:39:f4:b7:85:06:ff:
fa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:16:CE:7B:F4:21:E1:1B:4E:17:7E:30:DE:76:75:21:97:D9:14:BB
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/zRbOe_Qh4RtOF34w3nZ1IZfZFLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2d45::/32
2a0e:c6c6::/32
Signature Algorithm: sha256WithRSAEncryption
d0:04:23:e1:8e:59:35:55:7d:82:62:96:72:d2:35:b9:b7:37:
bd:d8:55:8f:72:52:7e:fe:56:37:e9:96:b9:f0:05:ce:31:eb:
b8:8f:a3:10:be:e2:99:56:88:dc:07:ed:98:b9:1c:43:53:d8:
ed:7b:ff:42:c0:c2:a2:88:06:86:67:2f:5d:3c:86:f4:49:be:
b9:f5:c7:b6:f5:7b:69:8b:5f:dc:b5:76:d3:92:1d:b7:cb:8c:
26:c0:9e:56:93:49:68:ba:2f:e3:c2:b0:f8:6e:a9:40:db:c3:
81:f1:47:0b:e4:d9:98:3f:8c:9e:c7:33:4f:9e:bb:65:fb:ed:
d8:95:91:48:23:0a:48:d1:0b:fc:5a:14:14:30:8a:55:3e:94:
32:3d:4e:87:d5:cb:3f:f1:f7:a7:a2:9c:95:a8:3d:68:a1:63:
00:12:28:bf:9d:5d:54:38:0c:28:dc:8d:1a:83:d5:01:a2:05:
09:1a:8a:98:aa:72:58:7a:f6:45:4d:85:8e:47:0b:2c:2e:f3:
a2:4d:54:08:d5:85:e4:1a:30:79:ac:ad:3e:c1:4d:71:35:68:
e1:6c:f1:69:24:29:b2:fb:f1:95:54:c6:2a:48:cd:ba:41:21:
b1:be:ad:c0:2e:d6:fd:54:44:22:ef:a0:2d:0e:bc:65:8d:a2:
28:cd:49:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org