Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/PeTbRqL2nYVhW-_Sqwm92UtBN1I.roa
File: PeTbRqL2nYVhW-_Sqwm92UtBN1I.roa (raw, json)
Hash identifier: eieRc2y1VdOTn8gY3rcEnZr/63PM9RAgLaGiWzomQks=
Subject key identifier: 3D:E4:DB:46:A2:F6:9D:85:61:5B:EF:D2:AB:09:BD:D9:4B:41:37:52
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01373739
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/PeTbRqL2nYVhW-_Sqwm92UtBN1I.roa
Signing time: Sat 01 Jan 2022 00:59:56 +0000
ROA not before: Sat 01 Jan 2022 00:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210351
IP address blocks: 2a0c:b641:b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20395833 (0x1373739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3de4db46a2f69d85615befd2ab09bdd94b413752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:22:83:7e:7e:1a:bf:ab:ab:da:01:be:27:ae:
1e:ff:a0:b0:14:36:7c:6f:c4:85:0e:cd:b5:f3:15:
87:43:60:4e:cc:b3:22:8a:c6:9e:ff:7e:fd:05:02:
c7:1d:c2:de:cc:64:4f:6a:94:95:7c:51:42:8d:ae:
56:66:45:da:4f:7e:52:cc:30:47:b6:0b:7a:18:4d:
99:d3:33:f9:41:9a:5e:75:d1:43:1d:0f:2c:66:51:
9f:3a:34:92:62:6c:8a:28:10:4b:87:a8:79:be:d3:
62:c2:95:1e:3c:6d:0e:e2:4f:e3:c8:e9:07:fd:ce:
80:76:a3:44:c0:b5:4c:04:f1:6f:86:46:27:b3:d1:
ab:4c:27:63:4d:7c:b9:ee:33:22:09:b6:34:53:1c:
b8:8b:8e:b3:f0:16:11:64:ac:51:9e:7a:a4:b0:a9:
18:56:3d:19:48:0c:a2:d0:c4:49:dd:44:e8:64:71:
9f:0d:95:74:95:87:04:f4:e9:ca:2f:c1:59:01:ef:
fc:08:23:99:8d:60:ad:83:d6:cf:ed:27:9f:68:18:
0e:8c:5a:4d:db:49:7d:8a:5c:dd:1b:b8:53:6e:f2:
a8:13:c7:38:49:50:b7:e9:f1:da:27:81:d0:14:d6:
1e:0b:ea:a7:d5:c9:07:08:63:00:d2:cd:0b:fd:01:
16:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E4:DB:46:A2:F6:9D:85:61:5B:EF:D2:AB:09:BD:D9:4B:41:37:52
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/PeTbRqL2nYVhW-_Sqwm92UtBN1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:b0::/44
Signature Algorithm: sha256WithRSAEncryption
0f:7d:39:cb:e1:65:94:59:57:8c:9c:a1:09:cb:47:cb:22:84:
45:1a:aa:45:cb:84:62:00:f4:e1:ba:f1:d9:48:4b:ef:51:69:
cd:4b:05:2e:10:d9:86:9c:bd:1e:6c:f2:02:16:08:5b:d6:46:
e4:51:93:89:4d:7c:da:fe:69:f5:9a:b0:9c:19:ce:b9:e3:02:
9a:8c:27:66:73:ed:00:f9:ac:75:e5:5f:a5:2d:6e:c5:9a:8c:
f2:39:62:70:30:22:46:92:cf:81:c7:bd:a9:ee:9e:fc:30:b0:
08:91:68:2d:0e:95:16:9d:53:37:c5:cf:48:fb:48:a2:2e:9e:
aa:25:94:3c:4a:2c:0c:85:f2:36:b0:96:1c:00:99:7e:52:da:
86:d4:37:29:d4:a1:e2:13:9f:90:49:43:91:f7:e4:78:54:f4:
60:c0:39:af:bf:3b:a1:e1:95:24:4e:8c:95:af:02:be:30:4d:
a1:b3:a6:d6:27:e8:46:f5:4b:e8:5c:cf:41:94:b0:dc:51:04:
3e:d6:84:48:5d:43:a4:1a:0e:3b:fa:d5:b4:b6:b1:8a:34:3e:
28:9c:e8:d4:bd:a3:be:1d:b6:fc:fe:4f:e3:0a:78:c7:29:25:
05:2f:af:a4:aa:6e:3b:1d:cb:e4:d3:15:48:7c:08:99:3f:31:
72:5f:e8:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org