Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/acPZiQ23w7V9lAKo5yWhnypgNOo.roa
File: acPZiQ23w7V9lAKo5yWhnypgNOo.roa (raw, json)
Hash identifier: bAvJiRatOijIV//FVc12SwMYs9oaVZmpYCxwGYayNQ4=
Subject key identifier: 69:C3:D9:89:0D:B7:C3:B5:7D:94:02:A8:E7:25:A1:9F:2A:60:34:EA
Certificate issuer: /CN=ccffe64f42a9f04b9fd6cd758372a1db5cd8b191
Certificate serial: 03B4B4BE
Authority key identifier: CC:FF:E6:4F:42:A9:F0:4B:9F:D6:CD:75:83:72:A1:DB:5C:D8:B1:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zP_mT0Kp8Euf1s11g3Kh21zYsZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/acPZiQ23w7V9lAKo5yWhnypgNOo.roa
Signing time: Sat 01 Jan 2022 11:00:31 +0000
ROA not before: Sat 01 Jan 2022 11:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 2001:67c:2b34::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62174398 (0x3b4b4be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccffe64f42a9f04b9fd6cd758372a1db5cd8b191
Validity
Not Before: Jan 1 11:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69c3d9890db7c3b57d9402a8e725a19f2a6034ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:93:38:b7:59:33:11:81:4f:26:02:96:17:93:
5d:6c:0b:27:22:0c:53:d3:e6:8f:2b:3d:09:b7:14:
19:26:56:41:12:6f:59:23:54:f2:ab:16:5f:79:de:
62:02:58:64:98:d8:7f:5a:13:09:16:15:41:ba:a7:
83:2f:c9:f4:b0:7e:4c:ae:eb:f8:25:9e:a4:8d:56:
a1:cb:9d:b4:b1:f4:60:74:50:3e:a7:6b:5d:9c:2e:
4d:6a:86:18:10:e1:5e:a0:9a:03:c4:6b:be:e9:3b:
5e:46:b5:0f:75:bc:36:5f:67:02:2f:bd:6a:97:f1:
02:3e:41:78:dd:67:40:f1:19:14:dc:94:14:df:59:
f0:e5:bf:68:7c:c4:f6:96:0e:60:bb:fc:b7:47:33:
7c:7c:9f:d4:3d:ff:31:c8:47:e6:4e:21:4f:de:ff:
03:4c:4b:d0:e2:7d:0d:3f:6e:c0:fc:54:df:00:8f:
c2:ca:21:df:7d:8a:97:fa:1e:7c:6e:c5:61:7c:31:
71:ab:38:9e:61:93:e3:c6:6e:e6:2f:c1:83:bb:f5:
4f:c1:1e:0c:aa:88:37:03:80:b6:e7:49:72:99:00:
5d:42:3b:84:3d:30:1f:70:a9:63:3c:ff:51:d3:09:
49:e2:02:2c:78:ac:2f:2a:e2:05:68:9e:88:61:be:
21:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C3:D9:89:0D:B7:C3:B5:7D:94:02:A8:E7:25:A1:9F:2A:60:34:EA
X509v3 Authority Key Identifier:
keyid:CC:FF:E6:4F:42:A9:F0:4B:9F:D6:CD:75:83:72:A1:DB:5C:D8:B1:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zP_mT0Kp8Euf1s11g3Kh21zYsZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/acPZiQ23w7V9lAKo5yWhnypgNOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/zP_mT0Kp8Euf1s11g3Kh21zYsZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2b34::/48
Signature Algorithm: sha256WithRSAEncryption
98:04:10:1e:20:f8:ab:d8:8b:6b:30:fd:57:c7:60:2d:d6:d9:
aa:36:2e:30:d5:5e:54:5d:f1:76:95:8d:25:59:2e:f0:9f:9a:
c1:7c:9e:9f:2c:90:1a:89:a7:cd:8b:4f:85:09:80:c7:3f:6a:
fb:20:ed:c7:a0:93:d1:67:5a:45:a2:08:88:3d:ad:75:b7:3f:
b5:9c:c2:e3:77:7d:ea:2a:42:de:88:b8:ce:09:34:f6:80:04:
3e:f8:fb:66:e6:36:13:32:a4:0d:bc:f1:65:60:a0:66:ac:df:
e9:d6:9e:33:e3:40:1d:37:5b:68:30:6e:2b:8a:38:90:1c:69:
d8:a4:db:29:62:ca:1b:ff:18:01:c5:33:17:34:78:a0:77:c1:
e3:f0:bc:7d:7e:2a:cd:4d:a5:e9:54:bb:0d:dc:96:bb:ee:17:
c6:73:c9:e7:57:c5:69:9e:f2:e6:58:37:4d:a2:4f:6d:a4:1c:
05:22:b0:00:ac:9f:45:1f:2d:48:99:6a:2f:fc:7b:e2:90:06:
cc:2c:20:d1:2b:fc:4d:b0:ca:e2:85:a4:b6:df:ce:2c:16:f9:
d7:a2:ac:2c:3a:20:42:7d:97:8d:f3:b1:28:81:b9:12:86:30:
5a:9f:5c:c3:d2:d5:f4:4d:aa:b2:fc:4d:6a:84:77:fb:5e:b4:
d7:80:e6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:19 2024 by rpki-client on console-ams.rpki-client.org