Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/U1qwtzx6vA8vYeEcJ0KC1n-g8Zs.roa
File: U1qwtzx6vA8vYeEcJ0KC1n-g8Zs.roa (raw, json)
Hash identifier: G+kT+XCalZ6PVFv5gYZqw/kDVHLi2LT8NSf+IJwJjKw=
Subject key identifier: 53:5A:B0:B7:3C:7A:BC:0F:2F:61:E1:1C:27:42:82:D6:7F:A0:F1:9B
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0146BF65
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/U1qwtzx6vA8vYeEcJ0KC1n-g8Zs.roa
Signing time: Sat 01 Jan 2022 01:00:16 +0000
ROA not before: Sat 01 Jan 2022 01:00:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211317
IP address blocks: 2a0c:b641:1b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21413733 (0x146bf65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=535ab0b73c7abc0f2f61e11c274282d67fa0f19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9e:cf:39:01:a9:a7:7b:e6:8f:34:b0:71:0d:
15:a5:f7:bc:52:9d:c1:31:fc:1a:cc:3a:7d:22:4b:
b1:1b:c7:eb:39:75:d6:fd:5a:d9:89:68:aa:80:72:
85:c6:74:6d:1f:97:40:4a:f9:f9:68:69:d4:ba:f6:
58:a3:b0:b4:91:73:db:4c:38:d9:a3:2c:ff:26:ce:
a7:84:01:8c:5f:6f:9f:82:6a:dd:79:fa:4f:53:9f:
e5:a6:f0:0f:be:4a:03:f3:f0:3d:ae:ff:9c:ab:b8:
36:d7:b4:5a:3e:06:da:3b:49:24:64:3e:f7:62:83:
3d:ea:83:3f:47:4d:3c:33:0f:f1:d9:fb:34:74:39:
a2:99:fc:dc:f9:f7:1e:49:d8:3c:a1:a8:da:a4:ac:
40:c9:8a:71:33:1a:17:1e:fb:88:e1:91:fc:01:65:
44:88:8a:66:b3:fe:3b:9e:05:e5:46:85:4f:ca:09:
4b:8b:dd:f3:c5:59:41:70:e8:b4:9b:2c:cc:f1:ec:
b1:5c:fe:82:32:2a:c9:95:1a:b0:50:75:a1:1d:e0:
b2:53:3d:bb:7f:77:30:94:a4:43:bb:bc:44:a5:46:
60:cc:17:11:fd:ce:e8:ac:bc:14:72:ec:8d:4b:8b:
9f:10:30:7f:75:0b:05:de:9e:76:81:54:fa:35:89:
60:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5A:B0:B7:3C:7A:BC:0F:2F:61:E1:1C:27:42:82:D6:7F:A0:F1:9B
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/U1qwtzx6vA8vYeEcJ0KC1n-g8Zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:1b0::/44
Signature Algorithm: sha256WithRSAEncryption
05:c1:05:9d:2d:05:20:59:3f:58:47:be:f3:65:46:cc:0b:35:
f4:69:d4:a2:17:46:8f:50:b0:9c:1c:dc:ac:37:99:53:e5:9a:
9b:f8:62:ec:e1:29:82:93:bc:2b:82:db:35:b4:17:27:51:f2:
7f:0e:99:b6:6e:73:6d:e3:76:f7:d2:36:32:34:92:86:5d:39:
19:cb:59:1d:e9:88:fa:f6:7a:2d:ff:11:5e:fa:2c:f7:33:8c:
77:48:98:e3:e7:e3:11:c6:24:c5:26:e1:d5:8b:cf:1e:5a:8b:
5d:f2:bd:fa:0b:61:f1:59:0a:89:bc:90:36:f7:a9:d0:74:30:
7b:9e:47:4c:79:e0:c7:04:73:97:eb:65:92:7f:e2:06:cf:df:
67:cd:52:b6:cb:c4:ba:5e:7e:a1:24:ea:da:5d:37:64:4c:a9:
2f:3f:76:d0:e0:15:35:23:f6:05:b4:d6:e0:91:f4:e5:e1:4f:
4e:e0:ee:06:b4:ff:a8:9e:be:8b:e3:bf:37:f4:0b:11:c1:93:
81:15:e1:80:59:5e:16:9a:9b:bd:dc:b7:48:e8:39:8f:4d:95:
d6:15:09:7b:6e:54:42:2c:67:bc:a7:45:59:b9:42:e9:e0:66:
ef:44:ec:ea:61:63:2c:da:c8:7d:a7:b6:18:f2:88:8a:20:c5:
d1:10:86:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org