Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7NYMB35wV-iIZ29dbkklvuUzWf0.roa
File: 7NYMB35wV-iIZ29dbkklvuUzWf0.roa (raw, json)
Hash identifier: TX9d6o4a0MhXperAiVxyYsusB79+khZekkEpgjFOelc=
Subject key identifier: EC:D6:0C:07:7E:70:57:E8:88:67:6F:5D:6E:49:25:BE:E5:33:59:FD
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 012129E9
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7NYMB35wV-iIZ29dbkklvuUzWf0.roa
Signing time: Sat 01 Jan 2022 00:59:43 +0000
ROA not before: Sat 01 Jan 2022 00:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207466
IP address blocks: 2a0c:b641:680::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18950633 (0x12129e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecd60c077e7057e888676f5d6e4925bee53359fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:01:07:65:6c:59:63:29:f3:37:c6:58:54:76:
52:5b:df:51:fd:87:0e:f1:cf:f3:f2:30:9f:2e:16:
ae:85:b2:cf:6e:f1:ff:c5:82:3b:d2:f2:0b:63:75:
da:e5:ed:ed:ab:0a:bf:e2:fd:c0:ed:fd:a3:9c:3c:
c6:ca:53:02:1d:a3:c0:e6:c0:25:af:83:9f:3d:e5:
dc:1a:b2:47:1f:22:8b:ff:df:70:ac:28:5c:da:79:
9a:4e:bf:f3:38:61:ae:f3:ed:a9:ad:32:0c:56:5c:
50:79:d7:69:45:a9:00:81:a4:cc:e7:26:e6:2a:c1:
e5:f4:87:23:ce:a8:54:80:67:f7:f6:2b:3d:1a:c7:
d6:ce:89:d8:e4:ac:14:b4:66:fd:2e:88:82:03:05:
d2:b2:0d:83:d1:80:4c:dc:46:3f:32:67:62:4f:d9:
02:ee:cc:73:9e:2f:a6:3a:c3:1d:8f:27:6e:ab:fd:
06:3d:1d:db:ee:92:fe:8a:0e:4d:18:9b:3d:96:b9:
d0:92:04:87:c0:91:7f:a0:02:6b:83:cb:90:d8:06:
3a:9b:14:88:e8:78:3a:07:15:df:79:b7:4f:7a:e8:
bd:46:df:90:bd:9f:66:5d:fa:a5:16:47:b9:04:cc:
b7:13:39:d8:86:f9:c0:4b:91:fb:fa:57:14:f1:d8:
44:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D6:0C:07:7E:70:57:E8:88:67:6F:5D:6E:49:25:BE:E5:33:59:FD
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7NYMB35wV-iIZ29dbkklvuUzWf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:680::/44
Signature Algorithm: sha256WithRSAEncryption
37:73:aa:00:4f:71:eb:92:82:52:ea:47:fd:79:b5:cf:af:e2:
eb:d3:e7:fd:dd:2b:d4:88:fa:55:8d:98:ca:fd:a8:92:3c:0d:
45:4a:4e:03:c5:a1:a1:a1:70:57:53:2f:5f:38:43:cd:4e:25:
95:5c:da:ea:4b:6c:60:d3:ab:1e:8d:87:ac:52:db:6f:10:3b:
5f:b3:10:97:e9:83:fa:c9:2f:a2:cc:1e:10:ae:ba:01:39:6b:
9b:a9:de:1d:8e:8d:07:8e:cd:c7:2e:eb:a6:33:79:07:e2:63:
93:92:d8:ae:ba:46:fd:cf:a1:20:db:8f:ab:4c:5b:24:a7:0e:
09:b7:3d:4a:fd:0d:f1:82:2f:fb:91:79:92:8c:0a:f6:e3:73:
ae:19:eb:6b:57:1d:7b:7d:35:52:e5:b0:f0:5d:01:9b:d9:7b:
79:b7:3d:90:0f:f2:2a:5c:c7:d6:86:01:51:73:b2:de:0d:ee:
52:82:e4:e0:02:b3:4b:ce:ec:fa:aa:32:8c:4c:44:eb:94:af:
99:c3:ae:13:be:58:bc:0e:ba:70:db:4f:af:dc:fe:87:7c:d2:
9e:3c:03:ad:e7:8b:1f:cb:75:22:7e:5a:5d:0d:80:f0:88:8d:
aa:68:4b:2a:ed:77:cd:fb:9f:91:c9:82:e3:07:64:5d:70:ae:
d9:db:18:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:36 2023 by rpki-client on console-fra.rpki-client.org