Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c4padz9SrAo-8HzCuvXoVlmBerE.roa
File: c4padz9SrAo-8HzCuvXoVlmBerE.roa (raw, json)
Hash identifier: o5qibqGf20ewv9O73cgW7AF6oXYfMFkhdeyD87A28PI=
Subject key identifier: 73:8A:5A:77:3F:52:AC:0A:3E:F0:7C:C2:BA:F5:E8:56:59:81:7A:B1
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0291B384
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c4padz9SrAo-8HzCuvXoVlmBerE.roa
Signing time: Thu 28 Apr 2022 11:19:52 +0000
ROA not before: Thu 28 Apr 2022 11:19:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206336
IP address blocks: 2a0c:b641:850::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43103108 (0x291b384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Apr 28 11:19:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=738a5a773f52ac0a3ef07cc2baf5e85659817ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:06:c7:39:6f:b7:d8:b6:e5:d9:53:f2:43:83:
30:e8:21:05:0b:9b:29:54:b3:4a:9a:ac:5e:bb:e4:
7f:c9:77:e7:ed:39:d1:8c:af:a4:a6:70:5d:35:f1:
a0:cd:0a:68:01:f6:bf:99:75:ae:76:4a:51:ad:95:
7f:da:49:a4:74:9f:46:5c:83:41:15:bd:4a:05:eb:
4a:67:d6:ee:78:b9:f5:23:3d:82:2a:81:01:c3:a8:
34:31:e4:d1:4d:f7:a4:a8:ca:ee:70:bb:34:33:c9:
88:d4:11:7a:7f:e9:3c:3e:48:0a:40:70:17:65:c9:
7a:b4:dc:8f:f3:f5:74:6f:1f:20:48:de:68:c7:8e:
40:f4:ea:b9:b0:25:a5:e2:f8:81:55:a3:12:f2:5a:
f2:4c:77:48:8d:56:1d:de:95:ab:d1:01:dc:ea:57:
0d:49:83:fa:20:28:cc:46:db:45:7b:19:8e:7a:db:
b5:0e:04:f9:da:7e:4f:a3:f6:73:83:46:e9:d7:ad:
fa:39:7a:11:92:53:a9:7b:a5:7a:84:6f:cb:83:d8:
da:63:1b:84:11:87:58:97:c9:46:5e:0b:b0:63:b8:
c5:10:3c:30:fe:14:50:50:cd:00:3f:01:72:96:2d:
ee:4c:2c:ae:5e:43:8f:97:5c:5b:3d:31:ea:7f:4e:
e1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8A:5A:77:3F:52:AC:0A:3E:F0:7C:C2:BA:F5:E8:56:59:81:7A:B1
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c4padz9SrAo-8HzCuvXoVlmBerE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:850::/44
Signature Algorithm: sha256WithRSAEncryption
5a:09:fd:85:4a:7a:05:98:1d:37:9a:94:69:c4:fe:16:c4:58:
78:33:fe:d2:08:0b:4c:e3:37:82:44:b9:33:65:5c:4c:2f:69:
8c:f5:5e:f0:df:98:91:93:73:17:00:92:51:92:f9:0a:42:52:
36:e0:8f:8a:9b:38:e9:68:db:cd:ef:e7:12:4c:9b:c6:b5:4e:
b9:f2:73:2c:07:a7:85:8e:c1:46:ab:2d:da:90:90:c5:3b:ea:
5a:2c:f9:f5:1f:5d:ee:61:8b:55:76:37:46:fa:9b:ac:ab:40:
e6:d7:78:eb:24:7b:a4:b8:8a:c1:dd:c6:93:3e:b2:d3:28:eb:
aa:9f:a6:5e:ad:f4:ab:4f:ec:2c:4d:08:e9:de:83:a0:7b:59:
89:da:b2:9f:f3:fd:e2:25:ac:08:90:c3:1d:c8:b2:55:08:57:
57:7c:4a:52:53:be:5b:80:c0:1b:fa:c1:2c:82:e6:b8:f2:a7:
73:af:9c:18:15:63:1f:3f:13:55:ab:b2:49:2e:9b:74:e1:3b:
83:ad:c4:18:9a:a1:6e:5d:64:74:b5:13:4c:b6:a5:78:2b:5e:
85:b6:02:79:de:3d:15:24:60:c9:23:6b:6d:93:7c:24:1d:c7:
75:af:95:7d:0f:b0:c1:42:22:5a:6a:14:72:96:21:e0:db:90:
c3:45:52:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org