Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UEtbwqgJaHNosep4uHtq5X9Nhdw.roa
File: UEtbwqgJaHNosep4uHtq5X9Nhdw.roa (raw, json)
Hash identifier: +YuPaFyftvYA2ikhOvjuiiY0NFS7WuZz+Aihx5h6Bus=
Subject key identifier: 50:4B:5B:C2:A8:09:68:73:68:B1:EA:78:B8:7B:6A:E5:7F:4D:85:DC
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0116C1CD
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UEtbwqgJaHNosep4uHtq5X9Nhdw.roa
Signing time: Sat 01 Jan 2022 00:59:39 +0000
ROA not before: Sat 01 Jan 2022 00:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205591
IP address blocks: 2a0c:b642:1a09::/48 maxlen: 48
2a0c:b642::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18268621 (0x116c1cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=504b5bc2a809687368b1ea78b87b6ae57f4d85dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:57:29:d3:99:4d:86:8d:b3:52:54:bb:b3:55:
60:30:0e:cb:0c:e3:cc:b8:a4:ae:d2:99:88:d7:81:
2a:8c:67:a6:25:13:a0:66:5c:2a:7b:20:90:88:5e:
67:c8:60:95:da:66:cf:83:d2:bc:f7:ac:38:43:d9:
14:65:fb:f1:a4:45:0a:80:75:e3:06:9b:d1:fe:76:
cb:ce:be:ca:ce:6b:c8:41:b2:7f:d0:9c:8a:77:9c:
5c:87:86:1d:16:b6:e8:f0:a1:a6:d7:fd:5f:62:3d:
1f:8f:d8:6a:f1:98:f5:5f:ea:b7:4f:23:ee:fc:93:
a5:d3:db:bf:63:d5:a3:46:03:3e:ae:0a:85:06:ad:
bb:ad:f2:f0:c0:37:9b:6c:a5:6e:72:42:8c:2c:87:
35:df:eb:c1:4f:14:9b:e6:73:81:0e:6c:65:b3:4a:
1c:8c:cc:93:30:68:46:aa:0c:80:3e:83:b4:3c:5c:
dd:af:21:8f:fa:d1:49:8a:5e:88:ac:0b:e4:d8:7e:
f4:f5:9c:af:49:8a:64:41:11:d2:4c:6c:2b:c7:6d:
a9:f3:b5:63:3c:b4:e8:80:0e:70:5d:da:d8:69:4c:
5d:f8:49:ed:a3:8e:ba:5a:7a:00:cd:4f:0b:da:f7:
51:78:bd:d6:2c:48:8a:5d:46:54:28:ad:47:4b:77:
86:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4B:5B:C2:A8:09:68:73:68:B1:EA:78:B8:7B:6A:E5:7F:4D:85:DC
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UEtbwqgJaHNosep4uHtq5X9Nhdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642::/36
2a0c:b642:1a09::/48
Signature Algorithm: sha256WithRSAEncryption
39:aa:2e:a3:83:38:6f:0a:5c:f8:79:30:6b:f5:d3:5d:53:f8:
25:d6:87:4e:d6:5e:2a:d2:32:13:1b:18:dc:ac:08:65:a5:39:
58:a3:fa:a1:a7:ef:9e:67:fd:0c:ca:59:3b:b6:4d:ae:d2:da:
81:d1:ea:25:6d:38:06:d6:fd:d7:cb:7e:8b:12:ff:68:de:a5:
44:8e:1c:9a:5b:75:8d:0e:a7:72:28:d0:f1:f9:a9:9f:aa:c4:
02:3d:b2:4a:2d:d7:b5:e7:bf:6c:6f:18:f1:9f:96:ad:65:19:
97:03:bc:a0:0a:fa:76:40:eb:d4:1d:c9:d0:48:88:04:db:41:
1f:3b:68:bc:85:fe:98:1d:8e:13:6e:e1:fc:03:e6:79:79:6b:
6b:69:65:b0:77:ab:54:8d:cb:35:33:41:ea:79:45:0b:e1:01:
c8:f1:7e:b6:60:74:e5:08:28:08:9e:71:a9:16:4f:28:50:cf:
7d:48:c0:29:b8:a7:d6:31:a9:e0:75:02:3a:b2:52:46:bd:db:
e1:b4:a9:03:97:12:17:8d:cc:25:cb:c2:74:57:ae:05:18:ad:
b3:88:7c:45:1a:6d:96:28:4b:74:75:6c:ec:af:45:4e:e4:1d:
3d:2c:11:de:bc:b8:3a:06:2d:ce:6b:52:38:0e:be:d5:7a:b3:
4b:58:b1:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org