Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/wv2dky7lh6kcHXJLk96uoGYf0lA.roa
File: wv2dky7lh6kcHXJLk96uoGYf0lA.roa (raw, json)
Hash identifier: 0g1O5TWTfduKGW9CRvtKh686hOYlncLdnBjzvru1UmY=
Subject key identifier: C2:FD:9D:93:2E:E5:87:A9:1C:1D:72:4B:93:DE:AE:A0:66:1F:D2:50
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 02E0DCB9
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/wv2dky7lh6kcHXJLk96uoGYf0lA.roa
Signing time: Mon 30 May 2022 11:38:14 +0000
ROA not before: Mon 30 May 2022 11:38:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211754
IP address blocks: 2a0c:b641:890::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48291001 (0x2e0dcb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: May 30 11:38:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2fd9d932ee587a91c1d724b93deaea0661fd250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:85:e3:d1:cc:69:62:34:60:71:25:22:f2:5d:
6f:f7:c6:0f:6e:04:88:78:bd:73:e3:c2:33:df:84:
d4:6c:a0:8e:7f:82:a6:f6:e0:61:be:21:52:25:ca:
5b:80:08:18:19:ed:11:09:c6:63:b3:e4:61:13:ed:
c2:2c:2c:1d:48:81:e0:be:88:1c:c0:20:95:cf:a9:
3c:e5:74:55:04:07:52:49:02:ab:8e:bd:4c:49:1f:
1f:c1:f7:b6:4f:9a:06:af:cd:71:27:5f:38:21:4e:
02:00:5b:19:95:30:b0:67:eb:d3:01:68:3c:0d:6c:
90:a3:c7:22:1f:ef:c1:d2:a1:54:e0:2b:f6:06:ae:
1c:a4:aa:40:d4:8a:bd:c5:84:92:5e:89:aa:f5:e4:
3c:b1:a2:ea:fe:ec:b1:66:ab:ca:5c:d5:23:ea:bd:
03:5f:78:2a:bc:85:25:37:28:59:12:8d:9a:32:ca:
39:86:3b:53:50:f1:a7:8e:dd:c8:dd:c3:0c:20:9b:
e8:8e:92:25:f2:1a:1a:18:92:7b:9e:59:96:d9:01:
4f:91:38:db:6a:65:93:0f:27:d8:16:25:cc:cc:5d:
03:ce:83:53:3c:53:ea:56:60:37:c8:e8:e1:0f:d5:
28:83:ba:c6:ff:6d:06:74:af:d8:4d:be:70:c5:58:
d6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:FD:9D:93:2E:E5:87:A9:1C:1D:72:4B:93:DE:AE:A0:66:1F:D2:50
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/wv2dky7lh6kcHXJLk96uoGYf0lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:890::/44
Signature Algorithm: sha256WithRSAEncryption
49:78:64:19:8b:09:72:38:9c:10:04:fd:f8:5b:94:80:42:41:
32:14:0f:98:a2:c5:8e:15:99:41:cc:0d:19:f6:42:4b:47:6f:
f2:59:e1:b2:39:17:4a:bb:6b:36:ae:98:11:92:6d:ba:ac:25:
6a:ca:8b:b6:05:97:1d:d3:a8:c7:82:5c:35:be:9a:de:fb:0c:
63:bf:d5:3e:53:3d:52:84:7c:21:6a:51:f6:1a:36:98:64:e5:
69:50:f9:65:41:9d:82:8b:bc:14:17:b0:bb:44:fc:4b:c9:62:
e0:23:71:d0:59:bb:2f:6f:b5:83:77:7b:84:aa:bd:f3:55:1f:
e1:e0:e5:d9:a4:95:c6:a6:f9:bf:be:2d:ad:25:6d:27:0f:20:
8d:82:a2:c7:1a:0d:39:23:3f:f5:55:56:2a:22:52:74:78:28:
94:dc:0f:7f:64:f3:4e:18:a8:a3:cf:ca:5d:08:25:c8:32:aa:
88:da:87:e4:aa:0f:95:ee:a4:2a:e7:72:4d:b2:1e:c3:95:b3:
50:1a:b3:d5:5e:29:46:ba:f7:44:37:79:eb:c4:15:d2:9f:1e:
4b:fe:f2:92:eb:cd:69:f8:c3:34:a8:fb:76:b5:f5:4b:6d:b8:
a8:f7:14:19:3a:79:1e:e8:69:75:dc:f0:7c:33:cf:31:11:35:
82:24:8d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org