Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AUseTnPjhWgh8iW3MxzvV__X_f4.roa
File: AUseTnPjhWgh8iW3MxzvV__X_f4.roa (raw, json)
Hash identifier: SDmslznv5CzY1z1V7ESHieFF9oMSTGArknU+ERKsCn0=
Subject key identifier: 01:4B:1E:4E:73:E3:85:68:21:F2:25:B7:33:1C:EF:57:FF:D7:FD:FE
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0181D475A6A20A01E19665A60D91F60D363E
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AUseTnPjhWgh8iW3MxzvV__X_f4.roa
Signing time: Wed 06 Jul 2022 17:01:29 +0000
ROA not before: Wed 06 Jul 2022 17:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209294
IP address blocks: 2a0c:b641:310::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d4:75:a6:a2:0a:01:e1:96:65:a6:0d:91:f6:0d:36:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jul 6 17:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=014b1e4e73e3856821f225b7331cef57ffd7fdfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2f:7e:94:31:03:33:03:85:a0:af:5d:ce:3f:
8d:76:ea:f7:44:46:b4:e7:9c:61:48:90:77:f3:40:
0a:4d:e6:b9:d0:a8:e3:84:12:dc:38:95:7e:bc:5c:
99:ad:17:73:15:da:be:20:2f:89:26:47:c6:72:cb:
89:fa:1a:93:04:f9:d9:d4:c0:d0:24:02:c6:ee:11:
f3:a4:2d:49:2a:32:89:cb:30:08:6c:83:fd:9d:38:
d1:a1:32:db:ca:8e:b3:8c:aa:78:57:83:cb:08:ba:
36:5c:6a:bf:97:07:7f:0c:b0:8f:6f:43:8e:43:96:
02:fe:7e:9e:b7:68:47:50:4e:40:7b:2c:63:1e:a6:
af:87:4f:14:66:43:c5:48:12:2d:c9:57:8b:c0:23:
d7:4f:a9:bf:26:82:f1:e2:15:b6:f0:ae:f7:e6:3d:
34:1e:ef:45:5d:01:ce:45:b3:1b:04:5a:4c:ed:8a:
bb:be:98:3f:50:64:78:96:88:bc:88:96:a9:4e:31:
c1:7b:9e:e0:39:cb:33:13:15:4a:80:b9:44:e0:a8:
80:1c:50:9f:37:57:35:08:d9:e0:98:62:a6:94:92:
10:a1:91:e9:db:1e:0f:f7:04:bd:69:aa:a4:cd:32:
dd:bb:f2:f7:d9:a4:c4:6e:1e:ec:df:ae:db:49:44:
2a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4B:1E:4E:73:E3:85:68:21:F2:25:B7:33:1C:EF:57:FF:D7:FD:FE
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AUseTnPjhWgh8iW3MxzvV__X_f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:310::/44
Signature Algorithm: sha256WithRSAEncryption
50:3d:e9:07:24:dd:c7:b0:0e:85:75:19:75:cd:c5:cb:84:cf:
86:32:43:fe:fd:50:20:32:82:70:19:10:ab:57:53:06:e6:bf:
81:8f:37:8f:6a:f9:ee:9c:97:86:92:a1:d5:cd:78:c4:60:3c:
66:95:71:14:0b:59:e5:c4:67:c0:87:13:a2:6a:fb:da:02:2e:
3a:8f:36:cd:2d:8a:13:f1:92:df:a0:79:3b:09:2c:cf:89:e3:
29:3e:99:fd:08:d9:a0:ef:07:d5:2c:15:fe:db:a4:4a:58:05:
32:f5:da:a2:5e:b3:ab:2d:4c:8f:8b:16:1e:eb:10:25:21:a8:
94:11:b3:20:e7:1b:96:5b:7a:e3:f0:95:ea:17:84:4c:69:b2:
d2:75:b5:23:5a:fc:79:b1:30:b5:e5:cf:8c:bf:4f:6c:84:4a:
3a:50:a6:1a:ac:b3:62:2c:a8:1f:45:39:1c:4e:ad:69:fc:84:
29:0e:1c:15:52:ef:16:bb:a8:19:24:87:e0:56:47:21:f5:fd:
09:5b:89:76:f6:8e:20:ff:0d:74:9c:ca:f5:62:2f:a4:95:d3:
55:3b:da:1f:6c:35:93:3e:78:ee:f3:a2:d5:da:ab:6d:5d:9e:
01:29:1a:ff:a8:99:71:91:ac:31:9a:37:4f:0b:46:0f:6b:e5:
f8:60:9d:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org