Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-Ow69NQ5eqEh5f_GH-LxdwCDqXo.roa
File: 1-Ow69NQ5eqEh5f_GH-LxdwCDqXo.roa (raw, json)
Hash identifier: K1i0Xcp92H4j6wMooZ30Uzspoq6LDu9V7pipouhcL4U=
Subject key identifier: F8:EC:3A:F4:D4:39:7A:A1:21:E5:FF:C6:1F:E2:F1:77:00:83:A9:7A
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 011F5698
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-Ow69NQ5eqEh5f_GH-LxdwCDqXo.roa
Signing time: Sat 01 Jan 2022 00:59:42 +0000
ROA not before: Sat 01 Jan 2022 00:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207338
IP address blocks: 2a0c:b641:730::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18831000 (0x11f5698)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8ec3af4d4397aa121e5ffc61fe2f1770083a97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ba:19:a0:d8:5b:d7:50:51:d2:a4:c9:1a:97:
c2:c8:e7:25:02:98:73:6f:34:37:ac:5d:cc:84:0d:
3e:27:72:60:12:6c:03:d6:b7:aa:de:9e:67:0f:ed:
f1:07:10:50:1b:32:a4:b9:58:ed:6b:b8:9f:42:23:
f3:41:69:58:6a:45:98:61:32:27:56:f8:07:69:7b:
c0:78:ef:6c:48:7f:a9:5f:79:d2:68:f2:67:9b:46:
c7:c5:0d:5d:0f:c7:bb:a3:f8:bf:8a:7d:33:9c:8c:
67:80:d4:92:e0:4a:96:63:b7:e8:b1:b7:9c:9f:90:
d7:4c:7d:3d:81:17:c2:be:79:c4:64:ca:6e:5b:fe:
cf:d9:75:7a:5f:bb:d5:06:e2:30:f5:aa:63:de:5a:
08:c5:a8:1c:01:59:87:61:a5:b7:a7:41:ad:af:72:
25:ee:de:0f:c8:cc:06:a0:88:fb:83:58:a1:e2:3f:
c6:ed:67:4e:b2:bb:5a:74:a4:af:8c:2c:99:a8:e0:
b2:1d:91:48:d5:fc:b9:8b:5c:3b:1d:c5:64:e6:6c:
8d:a4:a2:a1:d3:2c:dc:b1:b0:df:01:4c:11:68:2c:
8c:23:69:ff:d3:a1:a4:0b:b8:38:b4:69:0a:e5:ca:
32:91:80:57:0f:8c:fe:ee:2f:6f:e1:10:33:5e:de:
82:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EC:3A:F4:D4:39:7A:A1:21:E5:FF:C6:1F:E2:F1:77:00:83:A9:7A
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-Ow69NQ5eqEh5f_GH-LxdwCDqXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:730::/44
Signature Algorithm: sha256WithRSAEncryption
68:6c:89:25:ce:2f:0f:d5:19:f1:dd:bb:36:92:42:65:49:c3:
cf:9e:30:46:e2:b4:ed:76:16:01:2b:88:b8:87:4a:1c:f2:81:
f7:a5:86:d1:02:00:e7:2a:f3:ec:ba:20:09:d5:15:34:a3:aa:
ce:6c:b5:a8:f4:06:7f:93:42:c1:8f:64:6c:b7:92:77:17:b5:
14:ae:73:b9:7b:13:e8:bd:c2:62:51:47:7b:ab:a0:f4:25:77:
23:81:2e:23:de:74:d0:12:53:c0:38:ee:62:87:fa:a4:6f:ff:
93:df:56:0b:92:62:3b:ae:ce:d5:c2:77:c9:09:f8:cf:8b:09:
c4:2e:eb:c0:bb:b6:6a:b2:3d:f1:b9:b1:a3:22:9b:77:c0:ae:
f7:00:6b:a5:41:df:ba:fc:48:63:2a:5c:28:af:48:54:28:1c:
c9:85:db:16:9b:df:31:77:1f:22:44:91:bb:51:ec:3d:fd:a1:
f2:71:40:30:26:07:99:91:15:f8:bf:a4:cd:3e:62:7c:98:a9:
d5:fc:94:43:fa:41:85:da:5c:89:6d:a6:f1:3b:5a:37:fc:b6:
43:f9:3d:62:70:2e:cf:8f:04:71:c2:0e:4d:40:c9:e4:13:c5:
cb:b3:42:95:b3:e2:6f:d4:5e:49:b3:6e:e8:a6:64:78:47:45:
7a:da:5f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org