Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/svyrTexmiE2Nf6dHwzj2oRdjQf0.roa
File: svyrTexmiE2Nf6dHwzj2oRdjQf0.roa (raw, json)
Hash identifier: lbpCq0OT3AB1eqpppVma4BL/ucfCvLyl/TDVzDEUMms=
Subject key identifier: B2:FC:AB:4D:EC:66:88:4D:8D:7F:A7:47:C3:38:F6:A1:17:63:41:FD
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: FA62EB
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/svyrTexmiE2Nf6dHwzj2oRdjQf0.roa
Signing time: Sat 01 Jan 2022 00:59:21 +0000
ROA not before: Sat 01 Jan 2022 00:59:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0c:b641:160::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16409323 (0xfa62eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2fcab4dec66884d8d7fa747c338f6a1176341fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:9c:35:39:6d:a2:c7:ed:96:b0:c4:e0:04:
20:8f:9e:93:ad:e1:3b:1d:6e:18:21:d2:1e:31:39:
93:c7:d3:da:d3:75:93:a8:43:3c:a1:6b:b0:68:95:
e0:84:b9:72:f0:4c:1b:a7:0d:d3:b9:41:b6:a1:dc:
c1:98:a7:70:1a:df:d6:f6:cc:37:5f:7b:37:0c:82:
0c:16:91:74:93:ae:b2:d7:44:b3:44:7c:a1:58:c7:
9c:2c:be:43:cc:57:52:9a:3c:e8:ba:0b:5b:fc:a9:
31:3a:d3:2d:35:88:72:b5:22:1f:71:f4:dd:75:40:
65:fd:a4:e8:d1:05:b2:01:68:20:06:72:55:db:06:
f3:b7:30:46:10:23:ee:b1:c1:e4:4e:dd:e6:af:10:
b4:15:cb:ef:55:9e:ca:b0:7f:ed:2b:aa:2f:1b:47:
22:71:f8:75:d8:28:9b:6d:c4:73:d3:e7:eb:59:0e:
1b:a2:fe:db:c6:89:1e:14:c6:ef:f8:40:6b:76:a3:
25:d0:c1:2d:92:68:cf:34:be:8a:32:d2:9b:97:c4:
5f:74:8c:60:aa:23:b6:a8:b2:16:7f:13:7e:0d:78:
79:a8:a1:2e:20:aa:46:3b:bd:0b:43:e8:6a:a8:4d:
dc:79:18:83:ae:1e:8a:03:84:51:8f:66:94:df:90:
eb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FC:AB:4D:EC:66:88:4D:8D:7F:A7:47:C3:38:F6:A1:17:63:41:FD
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/svyrTexmiE2Nf6dHwzj2oRdjQf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:160::/44
Signature Algorithm: sha256WithRSAEncryption
2a:e7:21:c7:f8:51:34:bc:21:e8:3e:60:76:ab:8b:13:c7:85:
9a:52:b7:66:cc:da:1f:27:2f:ec:40:b0:7d:5f:fa:d8:d4:8b:
35:45:cd:65:3e:d0:3e:69:4b:fb:29:61:14:d4:dd:ac:95:60:
82:5e:0d:6c:7b:af:5f:a6:8f:be:95:ef:66:8f:5d:e2:6f:e7:
3a:8a:97:c6:f5:91:dd:bc:de:0c:3c:ad:a6:ba:04:37:21:12:
74:56:eb:97:aa:cf:c6:5d:d8:b1:c2:89:48:c5:cf:a1:84:4d:
3c:a6:9c:3f:d0:26:b9:26:e4:36:42:45:65:7c:e6:2d:db:7f:
55:58:4b:95:26:8e:3e:42:7c:ef:f0:66:70:f9:a1:09:3c:b4:
16:92:e2:ef:19:92:c6:af:0c:06:66:ae:8e:14:25:df:74:87:
57:30:74:d7:f3:12:42:a5:69:f3:cb:92:8d:6e:63:99:16:59:
77:41:df:9e:61:ef:78:d7:75:80:98:38:6f:d6:56:68:93:58:
4f:55:98:4c:83:e5:cc:40:4b:01:76:d9:b9:9f:93:4d:88:c4:
ba:63:14:06:0f:bb:a3:35:63:fe:59:a4:b7:7c:49:68:e0:c6:
d2:fb:fc:35:2b:40:52:83:ec:87:0d:95:23:04:b3:09:d5:f3:
18:51:26:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org