Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2lZPzM0LYlkfZAD2siIh_T8BzBg.roa
File: 2lZPzM0LYlkfZAD2siIh_T8BzBg.roa (raw, json)
Hash identifier: /vOle9m98j7vwzm8+V8GJrsCssmNgn55t6qQtyCmxAw=
Subject key identifier: DA:56:4F:CC:CD:0B:62:59:1F:64:00:F6:B2:22:21:FD:3F:01:CC:18
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0184393030529FC418F25D24C72B2AC1AFEA
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2lZPzM0LYlkfZAD2siIh_T8BzBg.roa
Signing time: Wed 02 Nov 2022 16:32:50 +0000
ROA not before: Wed 02 Nov 2022 16:32:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201671
IP address blocks: 2a0c:b641:3b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:30:30:52:9f:c4:18:f2:5d:24:c7:2b:2a:c1:af:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Nov 2 16:32:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da564fcccd0b62591f6400f6b22221fd3f01cc18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:30:ec:43:e2:4e:fc:c7:8a:ea:3c:ed:d9:16:
d1:12:4b:55:cd:63:d5:ef:f1:bf:ec:80:ed:96:f7:
30:bf:6b:6e:69:b1:2f:00:39:c1:93:ad:93:b7:fc:
7b:8a:98:b0:af:7d:aa:d9:55:1e:8d:15:2c:b1:04:
ee:73:49:2f:48:53:cf:a1:6f:64:1d:3c:36:7f:a7:
b0:d0:8c:2b:65:e4:37:1e:f1:0d:36:6f:69:8c:78:
6e:45:49:4b:6f:45:5a:69:51:8a:10:ea:d7:50:e7:
a0:f6:52:76:6c:66:28:95:b8:2d:bd:b2:89:62:54:
74:03:c9:d6:02:b9:e1:86:63:d8:ea:ea:f0:ba:f3:
73:f5:f6:f9:77:6d:27:70:3a:57:d3:76:01:90:db:
ba:a9:56:02:44:68:b9:0c:89:89:eb:68:92:8a:ff:
8e:91:0e:19:7a:92:f2:75:50:74:59:88:6d:7d:dc:
80:1f:c7:0e:c8:0c:aa:1a:1f:cd:4b:48:b5:c9:71:
e9:72:7c:64:87:39:a2:bb:76:3b:eb:d6:f6:97:c6:
84:c2:ce:29:b7:9d:99:b4:2a:b4:f5:f7:bf:37:3d:
6c:f1:de:79:1a:4d:ff:77:22:69:b2:24:a3:8f:45:
53:89:15:ae:1f:55:ed:e1:8d:fc:c0:06:df:4e:a3:
3a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:56:4F:CC:CD:0B:62:59:1F:64:00:F6:B2:22:21:FD:3F:01:CC:18
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2lZPzM0LYlkfZAD2siIh_T8BzBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:3b0::/44
Signature Algorithm: sha256WithRSAEncryption
03:94:e0:c0:82:ac:fd:2d:94:54:69:12:2a:04:5e:c5:b8:de:
26:4b:fd:0e:0f:41:13:b4:f3:fc:fa:33:47:c9:08:90:6d:41:
b1:73:20:4a:98:56:87:a4:15:30:cd:df:76:8a:73:41:bc:7c:
86:38:f1:5b:ae:cf:2d:b8:99:92:af:dc:57:9b:7d:db:2c:fd:
93:4a:e8:7c:44:5d:11:ff:c2:52:8a:74:5c:c5:61:0e:6d:2a:
85:b0:36:c8:12:ce:ce:aa:85:da:c0:bd:a4:72:f9:df:0f:95:
45:f4:d4:0b:b5:04:33:3a:c6:e4:d9:32:69:79:99:b5:7b:13:
2b:9e:0f:36:66:52:ed:b0:81:2b:51:5b:17:26:8b:18:9d:ad:
dc:2c:2d:81:d3:52:9c:53:12:11:8a:80:e9:79:84:f8:6d:f8:
50:0b:42:b2:0c:20:21:58:c8:da:ab:21:6d:3a:33:f9:80:4b:
07:42:d2:2c:0c:ec:e7:fb:10:b2:8a:c9:3e:b2:35:93:13:2f:
0c:c4:1b:ba:44:c6:30:d0:9f:48:06:9a:9a:8d:ef:4f:fd:f3:
3c:ab:28:81:c5:76:ad:f8:7c:6f:71:c9:3f:19:f4:5c:33:c1:
18:38:14:7b:7e:86:08:38:ed:11:6b:cc:21:51:f4:9c:5b:30:
be:e2:90:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org