Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/z0JMu8Jmy7oA30RMx3iW2ZLb-eE.roa
File: z0JMu8Jmy7oA30RMx3iW2ZLb-eE.roa (raw, json)
Hash identifier: vpIoVnYrrAhNm1EKcvdyfIJdPKFtntYKxZkXE+tUYow=
Subject key identifier: CF:42:4C:BB:C2:66:CB:BA:00:DF:44:4C:C7:78:96:D9:92:DB:F9:E1
Certificate issuer: /CN=e9aab1446100a8fce03df19d755e06329ee24713
Certificate serial: 1851068B
Authority key identifier: E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/z0JMu8Jmy7oA30RMx3iW2ZLb-eE.roa
Signing time: Sat 01 Jan 2022 15:59:27 +0000
ROA not before: Sat 01 Jan 2022 15:59:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33886
IP address blocks: 2a00:1a28:1106::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407963275 (0x1851068b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9aab1446100a8fce03df19d755e06329ee24713
Validity
Not Before: Jan 1 15:59:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf424cbbc266cbba00df444cc77896d992dbf9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:16:d2:3c:b4:7e:3a:54:25:e9:f6:14:98:0f:
e6:25:46:8f:6f:77:04:14:78:e1:d2:d1:fa:f2:f2:
e0:d6:cb:4a:6a:25:02:22:1f:bf:7b:bf:33:5f:41:
69:86:01:5b:51:e8:d5:60:41:17:65:23:6e:cd:96:
ca:29:dd:41:6f:cd:9f:04:c1:80:f6:a7:68:3a:4d:
a7:13:65:fe:c5:25:9d:ad:16:97:0d:d3:04:d3:0d:
60:57:3e:16:ae:72:18:bc:1d:12:68:68:f3:d9:bd:
f4:6a:4d:ad:f1:77:26:32:ad:5c:3c:d2:62:47:f5:
0d:83:35:3f:2d:ec:9d:d8:3c:50:1a:f8:09:82:6b:
f5:0c:1c:61:af:0d:49:53:65:bd:1a:d3:a9:24:72:
09:3a:1e:6d:cf:f9:59:8b:71:61:87:3f:83:d3:83:
e7:76:23:f4:73:8a:5d:74:2e:ef:ce:25:ec:e5:b1:
fe:1a:85:c2:4f:ab:2e:a8:0d:37:8c:7f:46:8c:2b:
f0:9b:df:24:67:6a:f6:81:9c:0c:4f:ba:ba:6c:73:
ac:11:46:f6:7d:e4:05:f1:83:be:62:de:fe:0d:41:
95:26:93:27:79:bf:70:c4:b8:e1:c8:fc:7d:92:58:
b5:0b:a3:5a:39:f7:ce:ea:6f:f8:5d:c7:bb:8d:2e:
62:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:42:4C:BB:C2:66:CB:BA:00:DF:44:4C:C7:78:96:D9:92:DB:F9:E1
X509v3 Authority Key Identifier:
keyid:E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/z0JMu8Jmy7oA30RMx3iW2ZLb-eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/6aqxRGEAqPzgPfGddV4GMp7iRxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1a28:1106::/48
Signature Algorithm: sha256WithRSAEncryption
2e:cd:f8:95:82:7f:6c:72:87:ec:a0:e1:3c:c7:63:2e:f8:fd:
09:36:e3:4b:00:b3:fe:f5:f4:48:47:ca:2d:95:0d:c5:f6:d9:
fb:7e:14:db:f6:cb:d4:61:93:e9:cd:54:d0:9f:24:c8:fb:31:
e4:ed:e9:6c:d2:a6:47:5e:db:dd:61:7d:0b:c4:4a:25:50:81:
6e:f3:8f:1c:69:67:4b:f2:da:31:ef:e0:8d:b6:e5:76:04:cf:
2a:e5:22:68:c8:a1:f9:dd:4b:e4:21:ad:9c:ce:26:71:70:29:
ef:7b:ce:f7:90:74:74:68:88:59:8f:28:a0:e8:44:d1:d1:2d:
fe:f8:b0:da:87:c0:d5:f5:ff:32:5d:54:f9:e2:43:ae:ee:22:
cf:ce:37:4c:97:d5:47:d6:68:df:c2:96:00:0f:8b:f5:3d:7f:
26:a3:e9:7f:8a:43:53:f8:e4:52:fb:89:a9:e8:22:90:9f:c9:
45:ea:22:18:58:8e:b3:18:94:05:62:c7:fe:00:a5:3c:8d:27:
fd:e6:3e:4b:42:46:cb:57:c4:4c:03:95:2b:90:82:d6:06:48:
68:79:5f:83:1d:0b:99:df:96:c4:44:c9:48:a5:46:82:40:66:
50:06:db:e0:bd:66:0e:29:08:51:c2:2e:2c:ca:68:8b:59:79:
90:98:17:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:38 2023 by rpki-client on console-fra.rpki-client.org