Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ORIZIgPaDHaJZ88NpESe1xMrSVA.roa
File: ORIZIgPaDHaJZ88NpESe1xMrSVA.roa (raw, json)
Hash identifier: LhZDJ7dVeBVczB39W+Xe79vn5yRXhIogrGZe+bsf88M=
Subject key identifier: 39:12:19:22:03:DA:0C:76:89:67:CF:0D:A4:44:9E:D7:13:2B:49:50
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 08F14DA4
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ORIZIgPaDHaJZ88NpESe1xMrSVA.roa
Signing time: Sat 01 Jan 2022 11:59:42 +0000
ROA not before: Sat 01 Jan 2022 11:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139833
IP address blocks: 2a0e:800:6666::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150031780 (0x8f14da4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 11:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3912192203da0c768967cf0da4449ed7132b4950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:52:eb:f9:93:f8:08:16:9f:19:98:d8:a5:24:
71:fe:dc:6b:73:50:0c:bc:66:e4:51:3e:4a:e7:1c:
db:05:33:fd:af:9a:88:42:e0:6f:08:16:2b:89:eb:
fe:ed:60:f2:1c:11:83:c3:cd:a6:ae:a2:46:21:9c:
fc:40:60:8d:43:7b:a7:f8:26:90:32:3f:61:c6:e8:
9f:13:f8:9e:fa:90:24:41:c6:23:16:1b:02:a6:e1:
55:3f:11:48:38:1d:19:31:18:18:0b:80:b5:5f:cc:
8e:70:28:48:4a:1b:97:a2:11:cb:86:43:20:8e:0e:
0f:f2:ef:75:c7:de:03:26:48:26:36:74:c4:b8:3c:
a7:62:51:05:72:a1:df:d2:e3:3a:de:b7:e5:e4:7f:
c1:8a:62:cf:de:ad:41:38:20:dd:bf:7e:19:f3:ff:
75:15:d6:ac:1f:4f:86:30:8e:46:78:1a:e3:b2:0c:
3b:1c:01:84:c9:fa:b9:97:2a:9c:95:ef:56:6d:8c:
24:b7:4c:96:d6:7d:c5:0b:01:07:7a:cc:ba:5e:ae:
cd:e4:ee:4e:92:34:dc:83:c4:dd:1f:48:42:d2:de:
4a:eb:be:98:ad:22:d0:6e:5c:64:a1:2d:50:59:ae:
2a:17:d6:5a:4e:46:e9:5f:e0:68:bc:bb:3f:6c:58:
fa:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:12:19:22:03:DA:0C:76:89:67:CF:0D:A4:44:9E:D7:13:2B:49:50
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ORIZIgPaDHaJZ88NpESe1xMrSVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:800:6666::/48
Signature Algorithm: sha256WithRSAEncryption
45:31:d0:9c:76:7e:c1:14:a7:9d:51:48:01:13:46:6c:4f:38:
6b:13:00:36:80:a4:20:9c:50:96:29:75:7b:b3:a1:3b:f2:b4:
82:af:5d:3c:f4:43:fb:d7:1f:0a:cc:81:fa:5f:a4:c9:62:ec:
52:72:40:77:94:20:39:a7:cf:55:a3:54:83:c2:b0:ac:4d:33:
38:ce:43:d8:1f:a3:3a:25:39:49:cb:55:9c:6d:de:31:42:b2:
da:8d:e5:4a:23:f9:57:42:40:80:ee:70:ed:2d:0d:f7:14:f7:
6a:c8:db:61:66:7b:e3:f8:b3:9b:e1:10:da:7c:91:41:49:4d:
9d:00:f8:18:58:9c:51:1b:99:1e:21:fe:72:23:b2:f7:60:92:
49:66:87:87:31:eb:69:b8:42:4a:66:bb:b7:3c:47:94:e2:81:
8a:bb:c1:42:35:35:8e:c0:4c:b6:f4:68:ba:33:04:b9:92:af:
23:9d:b8:38:01:97:56:18:7a:79:73:6a:08:aa:6a:3f:ce:e2:
d1:35:dc:7a:a3:5d:46:c6:1f:63:0b:68:9b:00:f7:24:0c:8b:
18:a9:46:7a:eb:fe:30:cd:77:07:ed:11:db:99:15:f6:54:ed:
20:41:99:dd:d2:75:65:e6:4c:ce:87:8d:fb:24:f4:c9:72:98:
28:b6:28:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org