Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/errmtNI5lfOFvvalukTvoFPzhXA.roa
File: errmtNI5lfOFvvalukTvoFPzhXA.roa (raw, json)
Hash identifier: +gyJj+e+JpaDqrykyGKQKIj/iQvpTxWWjGIDm4x+zUs=
Subject key identifier: 7A:BA:E6:B4:D2:39:95:F3:85:BE:F6:A5:BA:44:EF:A0:53:F3:85:70
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018291B5BAE41AF4B9713410E7D145746195
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/errmtNI5lfOFvvalukTvoFPzhXA.roa
Signing time: Fri 12 Aug 2022 10:59:42 +0000
ROA not before: Fri 12 Aug 2022 10:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211449
IP address blocks: 2a0c:b641:150::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:91:b5:ba:e4:1a:f4:b9:71:34:10:e7:d1:45:74:61:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Aug 12 10:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7abae6b4d23995f385bef6a5ba44efa053f38570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f4:c1:a0:8f:63:62:9c:b2:7b:42:79:b4:8b:
8c:35:eb:0f:88:7a:0f:fc:46:d9:39:ea:91:24:27:
46:c2:63:8e:40:b0:6d:87:50:8f:40:c7:0b:b8:ab:
d7:85:ea:22:e7:fc:d0:38:32:48:d7:fd:8b:1c:5d:
7e:56:0f:4e:78:44:fa:84:8b:2a:a3:53:d8:4e:c1:
50:f8:82:4c:ab:f4:d3:a1:47:64:b7:ed:b8:04:ea:
8f:ee:20:e2:df:34:b1:ef:78:70:a0:81:09:3a:20:
3c:c7:a0:10:9c:71:29:8a:be:d7:1e:1e:f2:f3:63:
92:56:fd:67:ff:fc:c5:62:3c:49:8d:83:19:9d:2e:
0e:de:f8:cd:21:7c:98:52:cd:3d:89:f1:86:e2:10:
0f:5a:d7:9f:fd:43:d2:59:ac:12:cb:90:88:65:76:
44:0c:ec:5e:d1:9f:87:ed:ab:0e:e4:46:61:10:e4:
b4:d5:a6:71:93:79:2a:f7:44:9a:b7:b8:d6:9f:a3:
51:4a:d1:65:9c:a8:df:44:cc:2a:a4:d9:66:a1:9e:
86:64:71:8c:32:f3:f8:e3:b6:fe:c5:61:02:95:5c:
66:d3:9b:6f:91:67:e0:c3:a5:16:8c:4e:11:61:3b:
46:e6:1d:c4:c0:80:cb:a7:51:74:1b:fb:c1:2b:63:
7a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BA:E6:B4:D2:39:95:F3:85:BE:F6:A5:BA:44:EF:A0:53:F3:85:70
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/errmtNI5lfOFvvalukTvoFPzhXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:150::/44
Signature Algorithm: sha256WithRSAEncryption
4c:5f:3f:f4:fb:ef:82:78:c5:8f:ef:92:69:e6:f5:cc:a6:1d:
99:7c:c2:76:38:a6:14:ff:c4:36:e5:18:8e:35:4a:02:d0:be:
68:01:9c:4a:b8:64:76:95:fa:44:ae:58:26:be:8d:e7:be:9b:
8c:e6:ea:9e:fc:bc:22:5d:64:61:a5:5e:e9:b5:4d:93:e0:5d:
97:94:9d:b5:c8:33:63:29:83:ec:19:aa:62:91:5f:04:8f:09:
93:5f:9e:9b:fb:d4:97:dd:f2:7c:9b:34:38:12:4e:0f:bf:c4:
69:23:4c:d4:f2:90:6c:2b:79:e3:01:e2:96:c9:24:ce:d4:da:
16:26:d4:15:be:c5:d1:0e:80:bf:2d:77:c2:de:38:42:0a:83:
09:c5:25:0a:26:be:9c:eb:2d:f7:82:58:80:df:7a:b6:bf:4a:
02:95:1f:58:33:db:33:80:12:69:4f:c1:5d:ce:40:bd:eb:89:
3b:5b:8f:62:1b:aa:30:a9:d5:ee:a7:85:44:78:1a:41:a9:aa:
08:90:47:d3:21:59:21:e7:83:5a:65:88:8f:92:b3:7e:43:e6:
82:aa:69:1b:7e:82:2c:ad:d7:f0:53:ab:48:c6:50:ae:ae:e4:
bd:47:26:53:59:78:5f:6a:7a:53:f6:a5:d0:56:ce:ef:4e:ec:
94:37:db:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org