Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/AOZv4JZORjWsywpTgq-DCIvLVKY.roa
File: AOZv4JZORjWsywpTgq-DCIvLVKY.roa (raw, json)
Hash identifier: BFSQ/ZLbh+Mf16ex/hIIAK7QmmppdtR+RZSSt6AEpnA=
Subject key identifier: 00:E6:6F:E0:96:4E:46:35:AC:CB:0A:53:82:AF:83:08:8B:CB:54:A6
Certificate issuer: /CN=4098174db451d9fefdeec15f9b9c7929daae9980
Certificate serial: 1211E2A3
Authority key identifier: 40:98:17:4D:B4:51:D9:FE:FD:EE:C1:5F:9B:9C:79:29:DA:AE:99:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJgXTbRR2f797sFfm5x5KdqumYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/AOZv4JZORjWsywpTgq-DCIvLVKY.roa
Signing time: Sat 01 Jan 2022 05:06:28 +0000
ROA not before: Sat 01 Jan 2022 05:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60019
IP address blocks: 2a02:7d60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 303162019 (0x1211e2a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4098174db451d9fefdeec15f9b9c7929daae9980
Validity
Not Before: Jan 1 05:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00e66fe0964e4635accb0a5382af83088bcb54a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b3:01:d0:b8:2b:0d:0a:7b:8e:34:49:af:bf:
cb:31:52:04:d0:c6:ef:2c:c7:97:a1:b9:35:3e:1d:
be:82:af:05:83:59:38:9f:27:ba:c6:7d:03:6f:32:
01:c8:a6:14:33:d9:f6:d3:0f:62:39:ec:98:64:e1:
ff:f8:bc:3c:71:f8:46:8d:07:62:27:f3:6f:de:ee:
bb:37:cb:b9:9d:7a:ac:06:92:fb:93:3b:82:b5:e1:
a7:0a:93:26:25:a4:0f:53:57:6b:3a:42:aa:b4:0f:
b4:69:b1:9d:81:6f:93:22:76:90:9b:85:73:28:61:
76:1d:c7:c7:4b:95:ca:93:85:23:10:ed:39:bb:f9:
b9:a0:15:80:c0:28:92:6c:ee:7f:81:e5:c9:ff:65:
70:40:79:13:d6:ad:f0:00:0a:19:5c:3d:41:a8:ff:
0e:38:94:6b:25:68:b8:b4:fe:98:0e:b3:78:d9:47:
a7:6c:8b:de:c0:09:43:0c:95:a2:a9:3e:a3:99:7a:
ec:ec:da:30:17:97:73:34:90:91:8c:13:d2:ba:af:
5c:fd:39:00:1c:36:c0:31:a7:07:63:6d:85:89:08:
95:c5:04:da:75:51:34:60:26:f1:bc:31:08:0d:5a:
d9:cf:86:13:1a:97:b8:74:56:c7:ae:d9:ea:d5:60:
d1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E6:6F:E0:96:4E:46:35:AC:CB:0A:53:82:AF:83:08:8B:CB:54:A6
X509v3 Authority Key Identifier:
keyid:40:98:17:4D:B4:51:D9:FE:FD:EE:C1:5F:9B:9C:79:29:DA:AE:99:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJgXTbRR2f797sFfm5x5KdqumYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/AOZv4JZORjWsywpTgq-DCIvLVKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/QJgXTbRR2f797sFfm5x5KdqumYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:7d60::/32
Signature Algorithm: sha256WithRSAEncryption
27:fa:a8:58:c4:13:ec:4a:e9:7f:c0:3a:24:c2:c7:ef:a9:6f:
81:ee:dc:03:12:f7:f4:39:13:5d:0f:d3:56:dc:43:10:df:28:
29:b7:2d:d7:78:86:8f:20:27:5a:18:60:b8:bf:df:d8:29:9d:
24:21:4c:fa:f7:da:2c:ec:74:a6:52:3c:35:0e:7b:0f:41:14:
a4:6a:46:4b:da:74:b7:6b:aa:09:23:26:b1:d8:96:18:7f:44:
be:34:23:f4:6a:dc:6d:61:b2:9a:19:e7:6d:06:b3:89:dd:88:
60:da:16:5b:dc:2c:bf:8e:cd:c7:53:27:02:3e:8e:0e:24:18:
c3:d3:63:96:f9:45:4f:4a:b3:4e:3d:08:da:f6:3d:4b:e7:28:
5f:7a:16:0c:9a:c4:ef:aa:4e:fb:d0:f7:06:5b:40:d1:f4:70:
40:37:15:9f:31:64:c2:73:29:36:33:16:2a:74:b5:4b:6d:e3:
07:b1:55:5d:ca:6b:eb:3f:56:0e:47:35:86:43:ac:ef:23:2b:
fc:22:d7:d2:63:46:ff:3a:01:e2:67:e4:de:27:c0:62:0d:67:
31:5d:4f:27:14:5d:c2:06:66:4f:8b:41:35:1f:d4:71:29:b2:
ba:1e:96:33:70:5a:83:ff:74:4e:09:3b:65:95:d0:17:e5:f4:
4e:95:65:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:14 2024 by rpki-client on console-ams.rpki-client.org