Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZndpK1SK73JLTayp_lD0eowEchg.roa
File: ZndpK1SK73JLTayp_lD0eowEchg.roa (raw, json)
Hash identifier: BtojeFGMIuoPrhpJLHhWnTBK6PC9zuJ+QD8QV7ZiEfA=
Subject key identifier: 66:77:69:2B:54:8A:EF:72:4B:4D:AC:A9:FE:50:F4:7A:8C:04:72:18
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0184C79C04FC2CF6A434888202E1E05C3CA1
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZndpK1SK73JLTayp_lD0eowEchg.roa
Signing time: Wed 30 Nov 2022 08:16:41 +0000
ROA not before: Wed 30 Nov 2022 08:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204655
IP address blocks: 2a0c:b641:3c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:9c:04:fc:2c:f6:a4:34:88:82:02:e1:e0:5c:3c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Nov 30 08:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6677692b548aef724b4daca9fe50f47a8c047218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:c3:b7:49:98:f3:94:d8:4c:06:e9:c5:b5:
8b:9b:c7:40:dd:40:0e:61:fb:81:fa:9d:a7:5e:d7:
e6:0f:dc:22:94:50:88:c3:c7:d5:ad:76:60:94:33:
79:db:6c:57:a3:c6:92:0f:e0:83:c7:e5:a6:05:e3:
3e:2d:45:30:45:81:44:f9:20:1c:30:e4:82:77:8f:
6f:ec:4e:64:58:25:a6:a8:32:73:bd:fa:6b:19:3b:
bb:30:a7:dc:b3:62:dc:52:e4:a9:b4:e9:88:b7:3e:
b9:08:4c:b0:97:13:83:7e:12:2d:cd:c4:d0:74:f4:
4d:c3:ec:c0:b4:48:5f:3c:33:ac:73:2c:8c:a7:30:
26:69:49:65:fe:87:b2:50:65:3b:57:78:51:19:55:
47:24:dc:41:e1:64:b2:e9:5a:51:ec:38:59:2d:97:
86:01:37:b4:67:ba:c5:51:0c:2d:3e:31:ee:bf:cb:
9b:17:bd:df:4c:09:30:4b:8f:3d:8c:d5:b5:88:f4:
d2:da:07:34:6d:a3:2a:98:bd:41:f3:ca:15:f1:6c:
b1:c7:5e:3d:98:1e:32:a1:44:3b:a0:2a:87:c9:19:
b9:5e:bf:5f:0c:70:0d:9c:74:3f:26:14:da:85:14:
36:d6:96:31:50:52:56:71:61:ba:f8:05:07:b8:02:
47:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:77:69:2B:54:8A:EF:72:4B:4D:AC:A9:FE:50:F4:7A:8C:04:72:18
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZndpK1SK73JLTayp_lD0eowEchg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:3c0::/44
Signature Algorithm: sha256WithRSAEncryption
6f:53:8c:6d:1b:32:26:d7:2e:56:6b:1c:99:e8:0f:cc:8e:80:
a6:0f:16:fa:ac:81:69:fb:10:7a:bc:07:5b:24:ef:3c:a2:a9:
40:20:8d:b5:97:dc:55:a7:19:f7:be:bd:e4:62:53:d4:a4:5f:
6a:5e:b7:5f:c3:f3:02:15:e4:39:9d:43:e5:18:7e:fd:f7:03:
c8:b0:07:c8:41:6d:a2:b1:21:ec:15:f8:e9:3d:ca:ee:7d:0b:
37:23:8e:6e:5d:5c:87:1d:48:06:4e:74:04:8d:53:31:d9:e0:
5f:e7:e7:60:dc:f9:68:a3:23:6f:11:2f:14:b1:38:67:f7:c8:
c4:21:88:be:68:fd:b4:34:1d:29:3f:3c:1f:16:1e:33:64:25:
19:b0:62:f3:f2:fd:5e:10:0b:93:e3:09:5a:f4:26:71:a6:d0:
6b:4c:7d:1b:2e:75:3f:9f:19:a1:2a:98:75:5d:44:c0:06:15:
7b:c3:89:68:79:a4:ad:bf:3d:05:6d:f8:ea:59:36:20:30:b7:
99:72:f2:ce:2b:30:83:33:12:82:62:dc:a7:06:41:02:9c:36:
da:8c:93:6b:2c:7b:7f:55:28:1a:d3:ad:56:3d:a8:a0:7f:46:
da:84:e6:5d:96:e8:0b:46:1d:11:c1:83:cc:42:d2:19:56:63:
7a:e8:ab:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org