Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/C2ZeyePRPx34ZPjIeYeP8OS8E9w.roa
File: C2ZeyePRPx34ZPjIeYeP8OS8E9w.roa (raw, json)
Hash identifier: uBOAI0EJPsBfL5lAKrF0M6AfX0pYz30ZE6UEZfPejAY=
Subject key identifier: 0B:66:5E:C9:E3:D1:3F:1D:F8:64:F8:C8:79:87:8F:F0:E4:BC:13:DC
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 01848BF84C8E94F195DA957E711B2F6D2D99
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/C2ZeyePRPx34ZPjIeYeP8OS8E9w.roa
Signing time: Fri 18 Nov 2022 18:20:16 +0000
ROA not before: Fri 18 Nov 2022 18:20:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202000
IP address blocks: 2a05:4140:900::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:f8:4c:8e:94:f1:95:da:95:7e:71:1b:2f:6d:2d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Nov 18 18:20:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b665ec9e3d13f1df864f8c879878ff0e4bc13dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f4:46:37:a3:63:a2:29:51:96:24:24:8c:dd:
81:20:89:9a:e8:98:dd:9b:16:23:75:c5:b4:86:f6:
7c:9a:6a:fc:a1:f4:5c:7a:dc:5e:3c:68:78:f0:4c:
31:13:4c:79:c0:32:9d:15:6c:00:11:bc:4c:9e:5b:
f9:bb:d3:6b:74:9a:b3:db:2d:a2:fb:e0:b0:d5:63:
16:f3:60:3c:94:e4:a2:bf:1d:6f:8a:19:71:1c:0f:
52:f1:2f:06:6a:b8:92:f2:9c:08:a8:c4:06:03:bf:
14:55:80:68:37:66:3f:9b:34:9c:8a:f4:28:6d:68:
32:91:e5:b2:26:82:a0:b7:d0:ba:97:60:a2:c2:97:
5a:ac:2b:f0:e9:f5:8c:60:f5:a4:99:36:d1:b8:4c:
2c:95:f9:96:4d:b9:74:ac:65:29:44:d7:1d:5c:f2:
c1:50:2d:d2:07:1d:0f:06:c6:59:7c:0d:62:91:10:
f1:4a:0a:c5:fc:11:cc:4b:ed:c7:2e:60:22:19:57:
a4:21:bd:7b:af:d5:bc:b5:7c:f7:c0:4d:bc:cc:e7:
d9:04:66:7c:18:38:66:49:f1:f2:6c:72:47:62:91:
04:21:92:af:b4:fe:e7:30:80:cd:f5:19:f3:a9:f9:
4a:be:25:28:08:4b:74:46:96:cb:b3:84:89:86:66:
cf:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:66:5E:C9:E3:D1:3F:1D:F8:64:F8:C8:79:87:8F:F0:E4:BC:13:DC
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/C2ZeyePRPx34ZPjIeYeP8OS8E9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:900::/40
Signature Algorithm: sha256WithRSAEncryption
52:26:28:0c:8f:73:b7:eb:ed:38:ee:50:a0:ec:d0:5e:f2:f0:
15:0a:d0:dc:0e:2e:44:79:30:41:49:b8:24:b0:d2:32:cc:5f:
1c:d3:23:2e:40:7d:97:cc:c2:37:66:0c:5f:04:e1:98:31:a7:
38:b6:2e:ab:81:df:c9:6c:59:96:e2:37:48:5e:dd:8b:ce:88:
66:79:af:77:b3:7c:bb:cc:52:e7:be:a3:0a:3f:02:c7:8a:81:
9b:11:4e:98:bc:51:38:8c:21:96:f5:6e:a3:57:36:a7:8c:9a:
a3:7b:b7:d0:ba:42:b7:c0:35:f8:d7:2f:dc:b5:4f:80:1b:2a:
7d:47:8d:a3:4a:b3:3d:81:ee:3d:88:f4:f5:d0:7b:e2:e7:b8:
fb:8d:86:5f:79:44:d9:54:96:fe:04:ff:e2:8f:6d:49:01:8a:
cf:06:f5:91:13:2f:07:06:0e:08:fe:20:f8:62:a0:61:17:fe:
38:6b:bf:6d:01:96:99:1f:bb:f8:89:e2:06:c7:88:e5:6a:c4:
4d:44:dd:6f:f0:a0:5c:0a:3c:fb:7a:39:8f:76:22:f8:0f:26:
ac:7b:81:24:96:c6:ba:9d:cd:7e:af:6c:78:df:c6:af:dd:c6:
eb:8c:44:4e:6b:52:d2:23:fb:7e:2b:22:a5:6f:11:dc:eb:2a:
ce:cf:ae:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:30 2024 by rpki-client on console-ams.rpki-client.org