Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zlikL4mKVTjBH9UG3z2hjnZ4jog.roa
File: zlikL4mKVTjBH9UG3z2hjnZ4jog.roa (raw, json)
Hash identifier: xgiI2u/nJIKmUEAEduksmn4cEGdKkdths8gFvBodfO8=
Subject key identifier: CE:58:A4:2F:89:8A:55:38:C1:1F:D5:06:DF:3D:A1:8E:76:78:8E:88
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: F6127F
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zlikL4mKVTjBH9UG3z2hjnZ4jog.roa
Signing time: Sat 01 Jan 2022 00:59:20 +0000
ROA not before: Sat 01 Jan 2022 00:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3280
IP address blocks: 2a0c:b642:1a0b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16126591 (0xf6127f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce58a42f898a5538c11fd506df3da18e76788e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:50:64:f4:b0:dc:da:d5:2d:c3:bb:d1:91:
84:06:11:44:d4:12:4b:7d:6d:1a:ca:ea:10:a8:03:
d4:ea:69:5f:3c:7c:2a:08:9e:e7:05:88:96:2c:7e:
80:44:25:5e:07:56:2f:88:fd:58:30:f1:5f:3a:26:
30:a9:fb:a4:e9:97:2f:2e:ae:8c:c4:5b:60:73:6c:
c2:22:37:1d:fd:d8:81:e4:85:3d:f3:dd:3c:12:3c:
3f:28:26:cb:c4:85:9d:52:a3:64:01:c4:b9:f6:67:
ab:30:bb:36:19:d3:d0:4a:d7:57:cd:72:6a:aa:07:
1f:66:5e:26:ca:50:53:40:1d:63:80:82:f2:bc:0c:
fd:82:95:ed:25:c5:e3:4b:4d:5d:30:46:c9:6c:a0:
72:7f:14:53:8a:ba:0a:33:28:ca:50:5b:e2:05:8f:
db:37:31:bb:d9:a4:07:d1:6a:23:c4:ab:60:e7:58:
d0:46:a1:2d:5d:9b:c8:c9:38:67:b0:4f:e4:d6:1d:
af:9c:75:83:3c:57:df:e4:d7:34:8a:87:33:17:b9:
f8:20:7c:2a:22:41:65:92:49:87:25:f5:47:91:09:
35:02:56:ec:8a:83:74:2a:54:0e:8c:51:93:03:e7:
ae:a8:57:41:e1:90:ec:7e:c4:6e:32:bf:26:6d:dc:
91:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:58:A4:2F:89:8A:55:38:C1:1F:D5:06:DF:3D:A1:8E:76:78:8E:88
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zlikL4mKVTjBH9UG3z2hjnZ4jog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a0b::/48
Signature Algorithm: sha256WithRSAEncryption
07:8c:04:eb:4a:3f:53:b7:c2:84:70:1c:d3:2e:4d:66:84:74:
0d:61:95:5d:50:40:b3:0a:ba:99:12:de:86:2d:72:6c:29:e9:
52:d0:17:7f:04:22:19:b0:09:17:79:6c:cb:33:3a:a4:93:85:
67:ec:bd:15:cf:28:92:3b:d3:7f:4b:e0:0e:24:03:5f:b3:4c:
b5:af:4c:5a:3a:b6:98:b2:fc:68:d3:3f:d3:35:f2:c9:43:5b:
88:4c:f4:14:ed:97:79:79:22:0c:af:de:53:63:f1:8f:95:79:
1b:e1:d7:b4:e7:c5:9f:63:7c:de:3b:54:06:62:96:2e:18:28:
0b:a9:70:9b:35:8e:d2:89:19:11:fe:f8:5a:9f:b8:a9:9c:23:
27:e6:0d:b5:e0:ae:24:32:1f:18:25:c8:9b:8b:10:ce:44:6a:
45:be:21:e7:9c:61:c9:3b:dc:02:22:06:ae:cc:9a:89:ae:f6:
f2:25:11:6c:e8:1f:b6:00:13:8e:72:ab:7a:e0:bc:ca:b4:44:
33:dd:b7:76:34:33:f5:ae:be:20:00:48:cb:5f:24:8a:dc:48:
13:ff:bc:bb:88:7a:95:19:3d:c2:c2:5c:c6:31:8d:c6:a0:b2:
f9:4b:42:43:81:9f:06:08:4b:77:75:09:d8:81:3a:6a:d4:dd:
82:8b:05:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:30 2025 by rpki-client