Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WcGAZfLbgHsPKOVAl_TYTDtzHwc.roa
File: WcGAZfLbgHsPKOVAl_TYTDtzHwc.roa (raw, json)
Hash identifier: Zt2LESgbVvUKoMeZkYLZwtkEmIQ/qSVEiTwIsVpSXLg=
Subject key identifier: 59:C1:80:65:F2:DB:80:7B:0F:28:E5:40:97:F4:D8:4C:3B:73:1F:07
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01835BFDEB00F420126AEED175B51E89A5B6
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WcGAZfLbgHsPKOVAl_TYTDtzHwc.roa
Signing time: Tue 20 Sep 2022 17:41:50 +0000
ROA not before: Tue 20 Sep 2022 17:41:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202827
IP address blocks: 2a0c:b641:390::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5b:fd:eb:00:f4:20:12:6a:ee:d1:75:b5:1e:89:a5:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Sep 20 17:41:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59c18065f2db807b0f28e54097f4d84c3b731f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1e:ba:66:1c:24:2a:7b:42:21:bd:bf:d1:40:
f7:04:78:55:6f:3a:c0:0f:0f:dd:92:4f:04:ec:09:
a3:c7:5b:4f:04:a9:0b:73:3e:12:bd:cf:13:a1:97:
45:86:dd:df:5f:2e:bd:a6:b2:5a:75:7c:25:33:64:
f9:ca:4c:94:55:0c:32:11:bd:4c:75:2d:0f:fe:15:
a4:21:ed:7a:c5:4f:cd:c7:33:11:2c:f1:24:2c:22:
90:4e:05:49:11:58:07:5e:06:e5:8d:dd:71:86:26:
27:3e:20:67:91:e0:98:d1:72:a0:f4:30:83:61:8a:
64:db:b4:d4:21:5d:03:4d:a7:08:54:7a:0e:88:7f:
a3:2e:e4:ee:00:23:87:33:f7:93:ba:de:1b:08:67:
5c:6f:75:87:dc:17:e6:0f:b2:97:ed:c7:70:6f:29:
01:d8:77:16:4d:e7:88:be:04:1f:95:b7:88:52:f8:
99:aa:6d:ba:0b:35:e8:63:d7:40:36:d2:0c:ef:39:
68:f7:7e:cc:ef:1c:cb:07:43:e5:ad:d6:bc:5a:b4:
bc:69:48:28:1c:29:bf:c2:40:fa:47:69:b9:5d:29:
91:2e:d2:d4:23:46:e6:42:14:c7:29:10:82:e6:51:
8b:92:4d:b3:41:03:db:d9:ab:21:1c:ec:2f:2e:cf:
67:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C1:80:65:F2:DB:80:7B:0F:28:E5:40:97:F4:D8:4C:3B:73:1F:07
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WcGAZfLbgHsPKOVAl_TYTDtzHwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:390::/44
Signature Algorithm: sha256WithRSAEncryption
87:68:b1:cb:12:4b:8f:50:55:ab:b6:7f:7c:33:14:30:a8:69:
76:4f:6b:e4:3b:ed:f9:e3:45:bd:b6:08:5b:2c:0c:f0:0c:17:
12:82:e8:dd:eb:91:35:15:e1:e4:13:10:38:e0:d0:f0:0a:c9:
10:06:40:fd:58:91:42:ea:bd:70:38:d8:32:cb:f8:91:c0:39:
ee:94:fa:02:10:5c:f9:70:10:16:bf:70:5d:b3:7d:b1:3f:78:
dc:31:b0:33:56:5d:83:e6:f4:e8:65:b6:cf:0b:be:5f:25:0b:
6a:e4:88:f6:4c:9b:33:f6:dd:7d:41:4f:a0:ab:16:7c:24:6f:
3a:1d:28:94:c9:67:69:8a:be:0b:9f:d3:6b:3c:e5:86:60:d2:
b3:52:04:be:d1:9f:62:a1:07:59:74:2d:24:e6:a2:ef:ed:ab:
74:82:e7:e5:62:dc:7b:7a:58:6d:1d:0b:9c:97:1d:60:2e:20:
3d:3a:26:2e:f0:ca:92:67:ce:f5:c3:64:42:6f:74:0e:2d:64:
87:6c:0d:cc:69:9f:b3:63:cd:a7:72:15:54:b8:49:19:41:cc:
bb:49:6a:24:c2:c8:22:75:89:32:ee:90:0a:c9:42:33:0f:15:
b3:5b:d6:19:14:36:38:2b:57:cc:59:a8:1d:a9:e8:ff:c6:3e:
df:0a:22:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org