Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AgZ58aIjTOZ7VzDFJuoDMtaIfHA.roa
File: AgZ58aIjTOZ7VzDFJuoDMtaIfHA.roa (raw, json)
Hash identifier: 2lkN7tFMPtSgKlfPFkUDKVWXIm1DucQG75RZvjTfw5Y=
Subject key identifier: 02:06:79:F1:A2:23:4C:E6:7B:57:30:C5:26:EA:03:32:D6:88:7C:70
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018AA29248450AFBC406EBDDFE9B48D26687
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AgZ58aIjTOZ7VzDFJuoDMtaIfHA.roa
Signing time: Sun 17 Sep 2023 09:56:50 +0000
ROA not before: Sun 17 Sep 2023 09:56:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47553
IP address blocks: 2a0c:b642:4000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a2:92:48:45:0a:fb:c4:06:eb:dd:fe:9b:48:d2:66:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Sep 17 09:56:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=020679f1a2234ce67b5730c526ea0332d6887c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7f:33:59:ce:a5:58:ac:3e:60:fe:af:07:d8:
95:8c:a2:20:c1:a1:88:b5:45:58:e6:20:a0:98:9f:
73:e9:bd:89:d6:90:2e:6b:10:90:07:7c:e2:41:93:
1f:16:02:fa:4f:ba:97:b5:8d:8a:a7:d3:96:9a:6d:
3e:31:d1:8f:0a:5d:33:41:ba:88:c1:27:d8:d6:15:
07:bf:c6:df:3e:a0:1d:19:f7:59:cb:7b:95:95:09:
71:f6:70:48:50:d0:6a:42:4e:33:4c:a3:aa:91:91:
28:0a:57:cb:25:ee:58:82:dd:bf:1a:40:a9:34:f9:
8f:65:9e:24:1f:5c:c5:3e:a1:c7:52:68:0a:3e:5f:
3e:54:86:08:20:94:bc:d3:6c:1f:8f:81:89:e0:a9:
34:15:5c:9d:79:59:3e:8d:15:77:a3:cd:9d:f5:0b:
e5:ab:ec:50:36:6e:1d:d5:4d:b8:20:e1:32:b0:b2:
82:27:ab:6c:bf:05:aa:0e:cb:8b:7e:e0:9e:10:85:
e2:76:6e:49:5e:81:5f:0a:7b:d9:18:29:a9:82:4b:
df:1b:b7:9e:ba:d7:8e:35:d5:cb:51:39:15:a6:3c:
eb:bb:2d:99:6c:34:02:0e:40:ef:a9:70:6b:f8:5a:
2c:26:03:7d:42:0d:01:65:c2:00:e5:a3:b4:75:ac:
00:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:06:79:F1:A2:23:4C:E6:7B:57:30:C5:26:EA:03:32:D6:88:7C:70
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AgZ58aIjTOZ7VzDFJuoDMtaIfHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:4000::/36
Signature Algorithm: sha256WithRSAEncryption
81:3a:ad:8b:62:7d:2f:63:19:28:a2:6f:45:e8:36:3f:3d:33:
33:e8:84:8b:d1:ae:b5:e8:77:a8:22:cb:1d:01:94:4a:3b:7c:
4e:cb:fb:b7:9b:ae:16:66:4f:61:c2:d5:d8:8d:2e:74:e9:11:
ca:7e:41:1e:56:0f:5e:70:f1:9f:32:23:87:af:fe:af:35:75:
da:62:21:42:26:a0:6a:17:47:8e:b2:e7:b6:46:6f:d2:c2:c7:
17:ae:e0:35:ab:32:fd:56:27:b9:9f:ef:3e:fa:fa:20:1e:d7:
69:50:9a:f8:6c:e5:a4:e0:35:1c:f6:ad:1b:28:e9:d2:f6:54:
62:f4:6d:a4:95:36:fb:d9:88:17:6e:ce:9a:f1:fd:5a:a9:2b:
2e:90:e2:c4:3c:9b:8d:87:be:84:bd:5f:48:45:52:70:c3:e0:
46:d2:ce:54:af:3e:55:5e:a2:13:ae:b9:a3:7e:bc:0b:39:5b:
45:a7:38:67:6a:e6:a1:5d:be:da:3e:76:21:e7:e6:5b:31:ed:
6a:e0:e4:8f:27:00:a5:1b:46:70:6a:57:55:9f:99:ef:50:68:
19:e6:e6:3f:52:7f:39:1b:d7:87:d8:ef:4e:bb:3b:81:93:33:
57:6a:f0:c5:d6:32:ac:ac:2a:9a:0e:b8:e4:cd:c3:65:7b:67:
c3:a5:05:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:47 2025 by rpki-client