Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/TN0Z3pvqIjugoXV4PSHlWoG1Dug.roa
File: TN0Z3pvqIjugoXV4PSHlWoG1Dug.roa (raw, json)
Hash identifier: +nBwfrrFEmXr7MRDkf4NORtXVqp4+TrTrkZGRsX4u24=
Subject key identifier: 4C:DD:19:DE:9B:EA:22:3B:A0:A1:75:78:3D:21:E5:5A:81:B5:0E:E8
Certificate issuer: /CN=21351865b767dd7b9c22314bfc8055bd57db0065
Certificate serial: 0A1B9390
Authority key identifier: 21:35:18:65:B7:67:DD:7B:9C:22:31:4B:FC:80:55:BD:57:DB:00:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITUYZbdn3XucIjFL_IBVvVfbAGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/TN0Z3pvqIjugoXV4PSHlWoG1Dug.roa
Signing time: Sat 01 Jan 2022 06:03:48 +0000
ROA not before: Sat 01 Jan 2022 06:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200334
IP address blocks: 2a0c:f587:ffff::/48 maxlen: 48
2a0c:f587:fffe::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169579408 (0xa1b9390)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21351865b767dd7b9c22314bfc8055bd57db0065
Validity
Not Before: Jan 1 06:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cdd19de9bea223ba0a175783d21e55a81b50ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6c:fb:76:39:cc:c2:30:df:7d:70:b6:c2:b2:
62:ba:85:7a:1a:63:98:e3:c3:a1:f4:1b:59:e5:c7:
5a:ee:e0:cc:e5:2c:80:8f:78:3e:a7:d1:b4:68:c9:
c3:5c:8d:5a:b6:bc:89:3a:c0:44:30:0b:d5:71:62:
28:aa:8c:6e:01:c2:4f:b1:ab:b2:11:85:f3:55:78:
0c:dc:e6:36:90:f1:0d:d7:5f:e8:81:f8:7b:26:eb:
c7:7d:a7:f6:d2:a0:04:01:ea:60:ea:fa:65:b9:80:
f5:bc:cf:72:66:83:f4:f6:6d:91:4c:83:5e:a4:cf:
f3:0f:80:07:12:3f:c6:12:72:9e:f2:96:85:80:09:
9c:64:88:41:a9:b1:59:c9:ec:36:74:4a:62:aa:5e:
3e:d9:bf:af:99:74:b2:a6:de:5b:a0:e2:1e:12:29:
b3:02:24:dd:41:3a:68:2f:c2:ea:79:9c:db:28:a3:
7c:e6:ba:87:d8:f0:a2:82:22:7c:24:6c:94:2b:1b:
cd:7a:c2:a2:a4:45:c1:9a:2c:5b:53:e5:d4:c3:52:
55:79:73:76:92:5f:b1:9d:b6:0f:05:bc:0f:e3:53:
86:79:3a:80:0d:b2:2d:cb:89:7d:2e:4a:63:a1:33:
c4:c8:28:59:a0:01:0a:77:df:71:9c:ed:48:5c:be:
28:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DD:19:DE:9B:EA:22:3B:A0:A1:75:78:3D:21:E5:5A:81:B5:0E:E8
X509v3 Authority Key Identifier:
keyid:21:35:18:65:B7:67:DD:7B:9C:22:31:4B:FC:80:55:BD:57:DB:00:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITUYZbdn3XucIjFL_IBVvVfbAGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/TN0Z3pvqIjugoXV4PSHlWoG1Dug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/ITUYZbdn3XucIjFL_IBVvVfbAGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:f587:fffe::/47
Signature Algorithm: sha256WithRSAEncryption
53:6e:b0:4a:3a:10:ca:f4:f3:dd:75:d9:e1:8b:d2:12:8f:23:
c8:b7:94:9e:e0:00:4d:c9:6d:8e:d9:e1:3e:32:c3:2e:43:ff:
94:e4:e2:16:7e:a3:17:2b:b7:df:30:5f:f1:06:7b:21:5d:01:
82:38:6c:cd:6a:ef:a0:58:e0:4c:eb:ec:5a:96:e5:05:1c:45:
46:86:36:fb:e0:a1:0d:76:eb:e2:94:d5:b7:34:00:37:b5:57:
d8:d6:dd:f9:07:8e:9a:04:82:cf:ce:c6:8c:eb:9a:31:46:26:
fe:c9:4e:bb:5c:e7:da:c3:21:cc:39:bf:cb:8c:74:7a:21:f6:
d8:f3:68:bb:ac:bf:62:63:a6:24:2e:f7:95:6c:ec:56:ad:1d:
e8:47:5a:d0:0c:fc:cd:2d:74:00:95:3f:87:58:f7:20:76:eb:
db:b1:79:4a:e2:60:da:91:49:e7:a0:69:4a:92:b2:64:2e:2a:
ef:1e:52:97:6f:f9:3e:75:f1:fd:6e:f9:1f:a8:81:fe:48:33:
99:99:2b:c0:8f:a2:90:17:6b:d1:e5:ac:72:76:ed:55:3f:33:
a4:9d:8f:9a:0e:30:6f:a9:11:d4:df:69:85:b4:1b:bf:41:11:
7f:6d:58:5c:9d:fa:3d:2a:18:38:db:7e:f0:a0:71:c0:d0:19:
10:a3:13:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:43 2023 by rpki-client on console-ams.rpki-client.org