Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3an4dI9DLEs958Pu-S8OFfZxc5M.roa
File: 3an4dI9DLEs958Pu-S8OFfZxc5M.roa (raw, json)
Hash identifier: DEFatD1+WHtMMBmGc40yh/giMnaeudRNPLV4VEwPjMw=
Subject key identifier: DD:A9:F8:74:8F:43:2C:4B:3D:E7:C3:EE:F9:2F:0E:15:F6:71:73:93
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185455821F898C1D52AD03F7A22573FD0B0
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3an4dI9DLEs958Pu-S8OFfZxc5M.roa
Signing time: Sat 24 Dec 2022 18:14:41 +0000
ROA not before: Sat 24 Dec 2022 18:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200293
IP address blocks: 2a0c:b641:8e0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:45:58:21:f8:98:c1:d5:2a:d0:3f:7a:22:57:3f:d0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Dec 24 18:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dda9f8748f432c4b3de7c3eef92f0e15f6717393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:07:24:a8:86:c0:49:5e:36:49:1a:f5:ee:f7:
48:8f:91:ea:c6:11:3d:0b:73:3c:bf:76:a1:ff:b2:
b2:40:e7:05:e5:cc:ef:51:80:b1:bd:40:a6:b4:52:
ed:23:fb:a5:3f:48:42:68:11:df:36:35:7e:c2:61:
7d:14:9f:4b:cf:42:07:c0:40:b1:f0:b9:5c:70:f2:
12:e9:e0:43:59:cd:b4:91:45:74:d3:e0:b4:15:9d:
48:9d:6f:31:80:77:1a:37:b4:d7:38:54:68:02:80:
fd:08:a2:77:59:4b:27:50:52:18:30:b2:4d:41:57:
7f:29:18:b0:13:1b:67:82:0f:b6:54:71:7b:8c:55:
2a:73:52:52:d3:c7:82:dd:22:3f:9f:68:72:d6:71:
4b:1f:ba:2f:95:ec:a0:ee:c2:31:98:90:3c:fd:aa:
3e:02:4b:3d:75:fb:a7:63:0d:06:6f:16:28:42:10:
73:ed:35:89:a2:8c:93:17:33:42:c9:f3:4c:56:cc:
74:36:6e:68:d7:d7:7b:5f:45:8d:f5:eb:d8:b1:b0:
6b:d4:da:89:89:3e:c8:59:2e:26:41:bb:d3:50:82:
44:92:b4:45:a4:10:a9:d8:af:88:0d:15:83:a2:bd:
8f:2f:35:7a:2d:95:8e:37:e4:8b:b8:06:1e:94:50:
a1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A9:F8:74:8F:43:2C:4B:3D:E7:C3:EE:F9:2F:0E:15:F6:71:73:93
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3an4dI9DLEs958Pu-S8OFfZxc5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:8e0::/44
Signature Algorithm: sha256WithRSAEncryption
3b:f5:75:06:2a:af:0e:47:c5:8b:4c:cf:ec:7a:0d:60:66:7a:
7e:8d:12:ad:65:8d:8f:20:38:7f:bd:30:b7:06:79:fa:e6:54:
46:d0:84:c7:f8:24:b7:e8:e2:a1:b6:bb:dd:e1:c4:2d:8e:64:
61:bd:2d:f3:74:c1:c0:3d:e1:d6:76:0f:33:51:5c:63:c8:99:
7a:52:c1:7e:96:fb:50:e3:d2:7e:85:50:f0:cc:10:ca:b5:ed:
39:84:c4:e0:c5:fb:74:ed:69:f8:6f:a9:49:5e:29:de:7e:19:
da:f6:b0:cc:15:b4:19:85:be:6e:f0:f9:fd:49:3b:11:0f:b1:
10:f7:88:1c:3d:a3:da:ce:b1:6d:65:e9:2e:c3:54:93:1c:c5:
6a:e3:e0:8d:b8:eb:83:50:3e:9d:a6:92:c9:e8:e6:e0:32:47:
89:cc:22:e9:0f:8c:ed:51:80:37:93:ef:14:f2:cf:19:08:f7:
b6:48:25:d6:ef:c6:11:e8:84:47:45:b9:70:e3:67:29:f6:6d:
7e:e3:85:1c:04:b4:17:b1:7d:a8:25:c2:55:a2:f9:fa:b6:f5:
52:28:da:ab:8c:2d:d7:ae:e8:95:a7:80:c8:b6:75:7c:6e:69:
6e:a6:2a:7c:c3:30:85:f1:8a:66:3b:3d:4c:67:07:29:23:ac:
6c:63:d3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:36 2023 by rpki-client on console-fra.rpki-client.org