Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/9BzG0nA7TkZfyES_xkVteGRC8GI.roa
File: 9BzG0nA7TkZfyES_xkVteGRC8GI.roa (raw, json)
Hash identifier: AofF2QeabVdxcBOaHn8w91HUV2kbGgDUTC1ddtIUUgo=
Subject key identifier: F4:1C:C6:D2:70:3B:4E:46:5F:C8:44:BF:C6:45:6D:78:64:42:F0:62
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01128D85
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/9BzG0nA7TkZfyES_xkVteGRC8GI.roa
Signing time: Sat 01 Jan 2022 00:59:36 +0000
ROA not before: Sat 01 Jan 2022 00:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141694
IP address blocks: 2a0c:b641:240::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17993093 (0x1128d85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f41cc6d2703b4e465fc844bfc6456d786442f062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:42:09:51:72:f8:96:9f:af:31:f8:05:bd:b1:
6c:f8:0b:81:33:c0:c2:b0:e4:d1:fe:3e:57:8d:c1:
7b:f7:5c:c5:ed:24:37:81:17:ff:88:c6:0f:80:46:
bb:93:36:58:45:42:dd:94:07:80:38:73:08:12:61:
d4:d1:95:bd:bc:c1:11:8a:09:54:dc:96:5e:72:98:
1b:7d:90:33:59:d9:be:36:72:29:ee:fb:e2:d8:de:
33:d7:87:6b:cf:7f:26:74:aa:04:ed:cd:e6:1a:df:
26:e8:82:bb:a9:5f:5c:18:89:fa:ee:a9:af:ad:76:
c5:7f:85:e3:7a:8f:1f:cd:a0:cf:d6:f4:86:a0:a0:
f0:81:18:2f:20:9a:cc:36:22:91:48:9c:c4:ff:51:
68:f5:b2:21:5d:76:00:08:c1:6c:d7:a7:1a:10:c7:
60:af:87:26:a0:7f:9f:21:e2:d8:ed:e4:94:04:57:
b6:3c:6c:8f:63:c4:c2:ed:28:2b:e6:b7:2e:b8:4f:
5f:a3:a3:e3:01:ee:e4:31:67:ab:7a:75:da:be:1a:
80:fb:6e:5f:53:7b:ff:f9:13:14:45:24:ed:8e:14:
67:ae:d8:1f:50:69:10:de:52:63:84:a4:24:59:f3:
fc:78:fd:83:39:84:e1:ba:e7:85:07:8c:00:b5:0e:
03:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1C:C6:D2:70:3B:4E:46:5F:C8:44:BF:C6:45:6D:78:64:42:F0:62
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/9BzG0nA7TkZfyES_xkVteGRC8GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:240::/44
Signature Algorithm: sha256WithRSAEncryption
3d:33:55:1b:04:05:82:1a:e9:41:4d:de:f0:54:ee:77:cf:72:
16:5c:57:e2:c3:67:77:ee:54:de:cb:4a:53:09:2f:74:37:64:
31:05:18:89:fd:01:ee:77:0f:80:4e:51:e3:9f:42:11:67:e5:
9e:1b:7e:e2:3a:36:72:7d:e7:48:d2:62:2e:cc:3e:f1:4d:9e:
c4:72:55:db:3e:24:c9:cb:41:11:cf:31:27:20:e2:cf:31:8e:
7a:81:95:d8:ae:69:c5:89:6e:4a:7a:d8:57:ef:dc:f6:eb:dd:
59:5a:6c:f9:89:f3:0e:68:d4:4c:c9:73:f6:7a:93:5f:1e:ef:
88:12:9f:c7:4c:69:81:12:44:35:97:69:30:e0:4b:5c:8a:68:
b3:7a:05:ce:4d:4a:ba:88:11:9c:56:01:65:10:2a:48:02:80:
aa:65:fd:3c:8c:db:6c:39:aa:71:99:06:1a:7a:9c:4c:0b:e7:
50:81:3a:4f:18:91:15:97:92:f4:3b:d7:d0:d7:5e:06:a8:21:
68:0e:e7:7d:82:06:f2:cf:d9:dd:74:0b:ed:7b:21:fb:ee:bc:
37:b1:ce:7d:c0:bd:56:6b:5e:21:37:95:66:c7:92:73:da:f5:
21:9e:e8:5f:8a:d3:77:e7:a9:66:78:92:a1:df:6d:e3:d9:ef:
bf:39:e8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org