Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zeq9smsBLfBwCbA03wsEK7m9zoY.roa
File: zeq9smsBLfBwCbA03wsEK7m9zoY.roa (raw, json)
Hash identifier: xYEZkJ1+QSSmZzDL9oQsuUBs9LAqkVGwdcbH7zV9VaI=
Subject key identifier: CD:EA:BD:B2:6B:01:2D:F0:70:09:B0:34:DF:0B:04:2B:B9:BD:CE:86
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: FFBB01
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zeq9smsBLfBwCbA03wsEK7m9zoY.roa
Signing time: Sat 01 Jan 2022 00:59:25 +0000
ROA not before: Sat 01 Jan 2022 00:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 2a0c:b642:1a08::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16759553 (0xffbb01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdeabdb26b012df07009b034df0b042bb9bdce86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fc:6e:8d:7d:f2:b1:25:bd:a1:e7:0f:ad:cc:
0f:1b:1e:bb:3e:3e:50:8e:71:1c:4b:0d:ba:31:42:
ef:01:d0:c5:73:18:e9:bd:60:7f:38:9b:74:1e:e8:
1f:9c:1c:09:9d:2b:bd:d9:ae:b4:b5:bd:01:f1:f6:
07:5d:40:04:73:af:ee:66:2a:c8:60:59:bc:a6:a6:
b3:cb:6a:b5:4a:88:8e:5d:93:5b:75:90:b6:07:24:
56:b7:54:97:25:0e:ab:ce:b7:36:df:66:81:7c:47:
ca:4f:be:9f:46:68:b6:4b:fc:c0:71:d8:23:9c:00:
ff:db:43:9a:a5:28:88:0c:e7:2d:3e:17:45:1f:4b:
bf:c8:99:a0:3b:bd:96:d5:5e:23:d4:27:05:75:4c:
70:d7:7a:cc:3e:bb:db:ec:c0:f8:cd:83:05:8a:77:
93:36:79:bf:94:3f:0e:00:e3:f4:73:1f:51:d6:2a:
23:76:14:34:d4:00:36:3f:88:9a:e4:ee:f9:95:52:
42:b7:2d:14:ce:53:ac:31:2e:10:ec:71:5f:d3:71:
f4:b2:10:c0:60:1b:47:ee:7f:11:d0:80:3f:49:53:
55:fd:97:df:15:77:d1:44:d8:99:3f:62:ba:4d:6a:
31:7a:09:34:f0:c2:ab:09:bf:de:32:45:ac:82:78:
86:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:EA:BD:B2:6B:01:2D:F0:70:09:B0:34:DF:0B:04:2B:B9:BD:CE:86
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zeq9smsBLfBwCbA03wsEK7m9zoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a08::/48
Signature Algorithm: sha256WithRSAEncryption
1d:ed:19:45:58:a4:84:76:8a:47:10:09:74:c9:96:73:ac:70:
8a:04:a8:fb:87:b4:46:ca:b9:47:db:ad:f7:26:2c:16:ef:aa:
e0:38:5d:16:97:ed:30:42:ad:ff:1f:fd:87:39:92:b8:f1:2b:
49:ab:d9:28:bc:ac:fa:9d:05:8e:5d:4e:f6:97:f4:2b:cc:af:
43:3d:25:75:bf:78:9e:f9:5d:77:1c:11:38:94:6c:70:58:eb:
f4:5e:ca:ee:7a:08:5d:72:17:d3:ef:54:a5:63:44:2a:70:a2:
49:61:b3:8a:40:f1:b1:1f:72:f1:f2:b7:1f:7e:af:94:97:19:
e9:b4:be:39:7d:de:b5:a6:56:d1:2e:4b:a3:8f:17:7d:72:d8:
37:a2:d5:12:25:42:6f:10:fa:79:bd:f8:d0:c6:fa:d4:d1:45:
43:f2:b1:f8:00:68:de:d4:03:76:a6:75:cc:be:36:ee:06:9a:
dc:f7:f3:c9:07:9c:6a:80:09:20:9e:c9:6f:3b:fb:cc:17:67:
5c:61:61:45:fe:fc:6c:01:62:f8:1c:8e:37:13:38:de:7c:cb:
7d:92:2c:16:57:7a:9e:0b:fb:3f:b0:cf:4a:25:e9:94:3a:e1:
a6:cf:b5:39:bb:d5:b7:25:4b:20:fb:7f:c9:e0:b0:74:db:7e:
d2:d2:a0:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org