Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/EZImyTnofALaUZ5rZhyD56nzAag.roa
File: EZImyTnofALaUZ5rZhyD56nzAag.roa (raw, json)
Hash identifier: 4JqisLKBJcDP2DmxaBQCFD23ENu1njPvAhzMuWZ0LlQ=
Subject key identifier: 11:92:26:C9:39:E8:7C:02:DA:51:9E:6B:66:1C:83:E7:A9:F3:01:A8
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0184C946A5E5C7487D31252AC27273E351FD
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/EZImyTnofALaUZ5rZhyD56nzAag.roa
Signing time: Wed 30 Nov 2022 16:02:41 +0000
ROA not before: Wed 30 Nov 2022 16:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207036
IP address blocks: 2a0c:b641:3d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c9:46:a5:e5:c7:48:7d:31:25:2a:c2:72:73:e3:51:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Nov 30 16:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=119226c939e87c02da519e6b661c83e7a9f301a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:83:ca:f5:36:a7:9c:ce:44:2c:b4:45:4f:72:
51:fa:a8:85:71:d2:3d:ed:07:7c:d6:f8:d5:bd:0c:
2e:da:50:0c:80:14:ef:a8:69:b7:10:22:2a:9a:0c:
55:33:6c:b1:e2:0e:f8:61:60:d9:bd:c0:1b:d6:94:
b6:67:32:86:e3:6c:f1:3a:93:fa:e5:84:c5:99:27:
6c:bf:9d:45:76:4f:31:a4:e2:19:bc:c0:87:38:56:
d7:de:db:80:51:bc:e0:98:24:02:cb:f8:de:9a:b8:
38:cd:7f:c0:0f:3b:2f:a7:2a:dc:fa:9d:82:4f:66:
47:24:f7:12:ad:75:f6:dd:8e:4c:0f:80:96:76:c3:
e8:1e:e1:80:db:88:0a:9a:2b:3e:8b:0c:18:cd:bc:
8e:40:ea:42:34:e9:a9:fa:0f:28:ab:da:b4:e3:43:
b9:6d:c4:57:3c:87:c3:92:d8:14:d2:47:0c:e5:30:
f9:ae:c8:34:72:1d:84:51:2a:c9:fc:62:c0:52:95:
b0:4c:f4:81:85:2a:bc:9c:d2:7b:73:a8:90:91:28:
93:4f:fe:75:4f:5f:26:64:65:9e:95:26:a5:de:d0:
53:6a:1c:37:76:2b:d1:3c:ae:16:d3:15:84:94:84:
40:97:5c:d5:04:3d:1b:13:11:48:c1:9e:a1:42:50:
07:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:92:26:C9:39:E8:7C:02:DA:51:9E:6B:66:1C:83:E7:A9:F3:01:A8
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/EZImyTnofALaUZ5rZhyD56nzAag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:3d0::/44
Signature Algorithm: sha256WithRSAEncryption
61:a4:1b:ee:4c:d2:41:d0:ac:ac:fd:22:bd:db:aa:ad:07:fc:
f3:6f:2e:7f:be:fa:81:54:7f:0c:1a:06:91:f8:fb:45:ca:4f:
37:de:14:3f:0e:5e:4a:49:3f:52:f2:53:88:6e:67:f9:9a:3d:
75:16:6e:61:56:e0:13:2b:90:e1:9f:cf:98:4b:69:ec:5d:09:
9b:be:88:5b:d5:b5:65:8a:56:5b:38:63:5a:1d:0c:92:aa:1c:
b4:f2:b7:7b:62:ac:ae:4a:c8:ef:ff:82:90:76:33:a9:e5:0d:
52:1d:4e:28:0a:32:df:fe:df:28:d5:ae:ee:f4:4d:ff:a9:fb:
f8:c7:f1:ae:2e:47:0d:bf:ca:27:ae:13:42:69:38:04:b3:02:
4c:56:ac:15:b3:a4:26:ba:a2:18:ad:d8:e2:26:bc:f2:f7:87:
47:08:3a:18:a4:19:8a:56:bf:a5:5e:09:ee:1c:92:ae:54:74:
3e:7e:95:71:41:1b:4d:52:b5:fd:41:86:92:ee:d1:8e:7f:71:
07:17:1f:6f:63:e8:08:80:83:cd:db:a4:80:d5:69:42:43:d0:
1b:f7:1c:0e:e3:97:47:0e:7b:8f:cd:0d:7e:2d:d3:4f:f6:cb:
0e:64:37:56:cd:d1:7c:f3:ed:45:51:fb:3d:3f:65:cd:f8:5a:
3b:d4:85:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org