Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/rZ4vsc6Sibv1hhYUMbXrQu84Cz0.roa
File: rZ4vsc6Sibv1hhYUMbXrQu84Cz0.roa (raw, json)
Hash identifier: yd0zGpr9+Zr7BtwOecny1DsCfSgl/14Ja3OGWAC3M/s=
Subject key identifier: AD:9E:2F:B1:CE:92:89:BB:F5:86:16:14:31:B5:EB:42:EF:38:0B:3D
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 050A9941
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/rZ4vsc6Sibv1hhYUMbXrQu84Cz0.roa
Signing time: Sat 01 Jan 2022 07:52:59 +0000
ROA not before: Sat 01 Jan 2022 07:52:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210140
IP address blocks: 2001:67c:2e48::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84580673 (0x50a9941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Jan 1 07:52:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad9e2fb1ce9289bbf586161431b5eb42ef380b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:67:a7:6d:5e:d2:11:54:43:8b:e6:82:73:a0:
ca:08:a2:3c:9b:e2:8a:50:13:21:ee:3c:2f:09:8e:
b7:e4:b5:bb:a0:6b:fb:9f:82:55:74:4b:93:27:66:
c1:a9:f2:e4:66:c6:4f:6d:b6:4e:95:ab:77:70:f5:
fe:d3:66:55:63:36:39:00:3d:22:9a:a7:79:89:18:
45:5e:35:eb:75:e2:04:70:ac:c0:1c:7f:af:9c:67:
ce:71:1e:f6:fe:08:03:be:c2:e9:aa:ba:3c:bd:b1:
0a:f1:b4:0e:65:ad:6f:08:c8:c0:1f:5b:53:45:22:
41:2a:c0:f6:b4:a1:8d:d6:af:c8:dd:e6:f2:ad:84:
20:90:ac:fc:eb:b3:fc:e9:94:f6:97:32:f0:43:ed:
18:5e:ca:ab:08:14:07:f2:b1:ee:ae:71:bd:55:6f:
cb:0e:f7:90:3f:10:c9:4c:ad:55:b9:14:da:4e:38:
00:20:80:a1:e6:90:d7:a2:bc:6e:fd:a3:b0:a1:d3:
09:fd:99:77:cb:f2:e4:1a:b9:ab:42:a5:1d:3d:af:
e2:cd:ec:f7:05:70:ee:6c:6d:28:ba:10:f4:28:53:
37:43:34:59:ff:0b:bf:0f:97:8b:82:8e:85:6a:35:
9d:ca:c7:1b:24:1e:14:54:50:04:bb:c7:dd:69:5b:
9a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9E:2F:B1:CE:92:89:BB:F5:86:16:14:31:B5:EB:42:EF:38:0B:3D
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/rZ4vsc6Sibv1hhYUMbXrQu84Cz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e48::/48
Signature Algorithm: sha256WithRSAEncryption
17:7e:b2:ba:06:1f:21:9a:9d:d4:63:b7:e6:f3:55:41:3a:96:
49:74:67:a3:3c:d5:65:46:1e:fc:4e:ec:9e:52:57:55:e7:f1:
41:0a:ed:0d:34:89:94:98:cc:fe:59:68:a4:16:60:0d:76:c5:
cc:99:ac:9f:1e:a0:36:b2:e8:3d:e8:1c:c6:a5:42:6c:43:e7:
bd:9c:8b:12:d1:c2:5f:e1:8b:62:73:cf:57:22:f3:59:1a:36:
c9:f7:69:ef:c6:80:f6:88:44:ec:a7:89:4f:d8:12:d7:a0:bb:
9e:6b:c5:15:b6:a9:19:2d:87:92:a0:97:d6:1f:34:be:f3:28:
11:ac:b9:81:71:3d:d5:67:7d:c1:ee:fa:23:d5:44:2e:fb:7a:
26:66:07:ab:21:90:c2:d1:99:31:85:c2:af:cf:06:7e:43:b0:
ed:5b:a7:84:d2:e3:1e:f5:8a:6d:5a:b0:6a:e3:fc:62:f1:23:
b9:fb:45:62:02:93:8b:6c:8f:55:97:ae:7d:1a:cc:4a:ae:89:
4d:d0:86:48:09:88:ae:14:26:c1:57:f7:15:98:e0:4e:f1:05:
7b:d3:d0:42:57:b5:7f:e1:11:75:1f:7f:49:67:5c:2b:eb:08:
6b:c9:63:34:a0:4e:99:26:d1:ba:17:6b:76:94:fc:89:2e:77:
7d:e2:80:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:41 2024 by rpki-client on console-fra.rpki-client.org