Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/d7bMrWJxRtMQ_uyi0vtD258ZBO4.roa
File: d7bMrWJxRtMQ_uyi0vtD258ZBO4.roa (raw, json)
Hash identifier: lq6E+wmhP8rbGhVqh2H2z3hMKi9iQD5lXIFvXckuwlQ=
Subject key identifier: 77:B6:CC:AD:62:71:46:D3:10:FE:EC:A2:D2:FB:43:DB:9F:19:04:EE
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 011DDCFE
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/d7bMrWJxRtMQ_uyi0vtD258ZBO4.roa
Signing time: Sat 01 Jan 2022 00:59:42 +0000
ROA not before: Sat 01 Jan 2022 00:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207301
IP address blocks: 2a0c:b641:780::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18734334 (0x11ddcfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77b6ccad627146d310feeca2d2fb43db9f1904ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f5:66:72:2d:d4:9b:e2:a6:a5:3c:d9:a2:70:
84:d6:bd:31:8e:74:10:44:15:13:1e:42:20:8e:ec:
73:d8:fe:be:d4:95:22:27:98:b6:23:88:1b:a2:07:
eb:87:e2:2a:88:6b:b7:ff:92:94:b2:f1:f5:dc:69:
89:01:95:9b:b6:85:6c:b7:f7:7e:f3:b2:47:fa:16:
d1:5b:45:2d:ee:a4:51:73:5b:d8:76:64:97:34:a8:
bb:fe:cc:e6:66:4d:e4:04:5e:d8:51:10:58:30:3e:
f9:d8:36:0f:ff:e3:f0:ed:a0:6e:f3:d0:29:9c:54:
49:d0:8a:75:e6:10:aa:59:6f:4c:f0:bf:d7:27:bd:
68:44:66:ae:1c:91:c9:b6:64:80:64:09:40:29:82:
b4:75:35:9d:eb:74:58:ac:b9:f0:12:b2:3e:c6:4d:
3d:1c:a7:93:12:e3:02:f9:2b:88:1e:17:2b:38:95:
67:a2:36:84:fe:2f:58:7d:a4:f3:37:03:d5:ca:a0:
74:3c:bf:74:66:99:08:88:79:47:10:8d:30:52:ae:
15:b2:57:13:5b:24:b6:de:1c:92:17:7f:5c:54:9a:
b1:9a:1c:83:0f:4d:0d:9a:e3:9c:cd:c6:67:85:b8:
b6:af:8a:ec:c6:a9:16:6d:a7:d6:f0:6f:f7:ab:2d:
72:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B6:CC:AD:62:71:46:D3:10:FE:EC:A2:D2:FB:43:DB:9F:19:04:EE
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/d7bMrWJxRtMQ_uyi0vtD258ZBO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:780::/44
Signature Algorithm: sha256WithRSAEncryption
51:dd:2f:f4:82:04:87:2b:68:35:fe:83:50:bf:24:5c:f6:66:
ee:3c:30:4b:08:df:2b:9b:b9:0e:ed:38:bd:2c:dd:79:b1:8d:
96:f1:99:d9:79:75:56:b9:75:64:e8:a3:12:01:35:c4:c2:b3:
0a:6f:00:f2:61:94:51:d6:3e:bb:88:45:23:3a:03:19:75:96:
28:de:f1:01:57:01:05:7a:fc:cd:c1:1a:55:5e:36:3a:88:43:
46:d8:8b:d4:02:72:aa:db:1b:b9:4d:f6:a5:45:1f:99:27:66:
46:a3:e5:74:6b:51:72:47:0e:55:c4:75:56:9a:2e:0a:fa:34:
c2:c2:cd:77:3c:6a:d8:33:33:8b:ba:c3:3b:a9:41:a4:b9:a3:
22:7a:91:42:58:56:62:a2:dd:14:f8:4c:b5:88:82:ed:be:6f:
67:b3:d6:d5:9a:59:33:c2:a6:e0:aa:9a:28:08:1a:da:b0:c1:
22:c0:8b:3d:4e:0d:61:58:09:2a:ec:ee:eb:e9:35:88:a2:17:
bd:98:08:4b:0d:4e:95:5a:13:8e:e3:91:ed:ae:31:c8:15:e4:
28:1b:65:0f:22:c1:0f:a5:5d:7d:c0:bd:7f:0c:77:d5:88:93:
bf:58:05:0c:38:85:98:c7:25:aa:4c:25:4b:54:94:67:76:ca:
d1:12:e3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org