Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/ZjR7reivuDlyDMY1S0p2Gm1DR7Q.roa
File: ZjR7reivuDlyDMY1S0p2Gm1DR7Q.roa (raw, json)
Hash identifier: TMXLGpn+UPARygsHTjyYq1t2CDD14xZoqfjSYIHXgeM=
Subject key identifier: 66:34:7B:AD:E8:AF:B8:39:72:0C:C6:35:4B:4A:76:1A:6D:43:47:B4
Certificate issuer: /CN=7d04c25c2f8b47e5daf52d1c4c5a50999dd0a0a9
Certificate serial: 07DF55BD
Authority key identifier: 7D:04:C2:5C:2F:8B:47:E5:DA:F5:2D:1C:4C:5A:50:99:9D:D0:A0:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/ZjR7reivuDlyDMY1S0p2Gm1DR7Q.roa
Signing time: Sat 01 Jan 2022 01:55:49 +0000
ROA not before: Sat 01 Jan 2022 01:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200299
IP address blocks: 2a04:ff00:b00b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132076989 (0x7df55bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d04c25c2f8b47e5daf52d1c4c5a50999dd0a0a9
Validity
Not Before: Jan 1 01:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66347bade8afb839720cc6354b4a761a6d4347b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c6:09:66:ab:c4:47:e9:10:6f:49:0f:45:17:
e3:8c:36:89:96:58:69:d1:24:ca:6e:41:c2:99:f7:
a1:ad:79:a2:b4:2c:ba:8e:a6:3d:a4:b7:26:63:47:
eb:24:13:76:aa:48:d5:48:8c:33:04:5c:35:ef:27:
62:d2:9b:0d:3b:70:97:6e:96:9c:87:29:fd:0c:16:
ac:32:61:e3:d1:00:0c:bd:77:fe:40:5e:1c:0c:c8:
15:63:69:57:f0:fa:39:d8:74:1f:75:20:e2:c8:a9:
a7:9d:a9:89:1d:41:df:bb:a2:1e:c2:04:86:6c:59:
33:86:8f:af:cf:03:d9:41:93:d0:6b:e2:ca:dd:d3:
47:d5:db:e3:5e:12:a2:b6:b7:19:37:2c:ca:f9:92:
70:fa:85:db:c3:a1:02:1b:5b:f8:5d:c2:42:ea:f7:
1b:55:99:a5:de:2b:bf:86:7e:bc:82:06:09:82:7d:
9f:07:76:b1:c4:0d:b1:ff:1c:93:b4:0c:3d:f4:7d:
c8:24:31:ed:7b:82:b6:19:52:0b:84:73:ea:88:9b:
e1:9d:5b:ed:64:21:24:51:e9:59:c4:c8:25:0f:57:
6f:40:1e:94:74:04:41:b5:3e:15:26:9d:12:cc:43:
7f:73:9f:5c:09:65:62:a1:f5:1d:51:95:3f:22:0a:
d8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:34:7B:AD:E8:AF:B8:39:72:0C:C6:35:4B:4A:76:1A:6D:43:47:B4
X509v3 Authority Key Identifier:
keyid:7D:04:C2:5C:2F:8B:47:E5:DA:F5:2D:1C:4C:5A:50:99:9D:D0:A0:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/ZjR7reivuDlyDMY1S0p2Gm1DR7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ff00:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
0d:57:a3:80:2c:ed:2e:9e:82:d7:aa:be:3c:d7:a0:5e:9b:ad:
be:ca:73:08:e1:b9:8e:d0:81:c0:6d:c3:3a:2f:4e:6d:c9:1f:
17:8c:12:a6:9b:4b:29:2c:d0:13:47:73:a2:75:d5:e6:d4:1b:
88:6f:82:f7:ee:00:31:88:59:a3:c6:97:7a:df:66:67:d5:81:
f8:cc:d9:09:7c:07:84:fb:cf:2c:73:2f:19:ac:09:70:de:1f:
c3:2e:b9:ab:bf:6f:31:e9:b1:fc:24:9c:a5:e5:80:4b:d7:51:
b4:65:7d:88:3a:bd:45:90:96:0a:60:d8:1a:aa:97:3b:b2:46:
dd:73:9f:82:77:78:74:6d:aa:a3:d3:9d:a9:05:25:ca:fc:0a:
27:93:e4:cb:c2:dd:12:eb:82:64:ef:ba:5d:81:87:d6:6a:c9:
d6:88:e9:8e:fd:76:df:57:56:19:d8:a8:97:85:1c:23:f6:61:
b7:e0:1b:33:96:e3:92:f2:4a:f9:2f:19:b3:af:ba:95:fc:d3:
aa:82:40:2d:68:71:47:22:e8:75:d3:ec:e5:9e:a3:31:7a:f0:
0d:df:5b:e7:b0:2c:92:0f:79:2c:23:99:ec:38:24:dd:11:f5:
7f:6e:ec:fd:ed:b7:0f:e6:2a:b5:0f:01:8c:5e:d0:72:e9:c3:
b6:41:bf:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:24 2023 by rpki-client on console-ams.rpki-client.org