Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/9Z8QZOJTA9iS8lz2VzrD_MkHcCw.roa
File: 9Z8QZOJTA9iS8lz2VzrD_MkHcCw.roa (raw, json)
Hash identifier: j0aZ8HHR8j84fEseW6vFGyvtEwlDvtW14QvVYkAX6+M=
Subject key identifier: F5:9F:10:64:E2:53:03:D8:92:F2:5C:F6:57:3A:C3:FC:C9:07:70:2C
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 0FBE4796
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/9Z8QZOJTA9iS8lz2VzrD_MkHcCw.roa
Signing time: Sat 01 Jan 2022 09:57:05 +0000
ROA not before: Sat 01 Jan 2022 09:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203478
IP address blocks: 2a05:b0c6:600::/48 maxlen: 48
2a05:b0c6:688::/48 maxlen: 48
2a05:b0c6:653::/48 maxlen: 48
2a05:b0c6:642::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264128406 (0xfbe4796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Jan 1 09:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f59f1064e25303d892f25cf6573ac3fcc907702c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:06:95:ab:e5:a6:a9:02:f2:71:12:1e:8d:e5:
96:e4:a3:d8:1e:59:5a:61:a1:c6:8d:a9:88:95:3f:
9b:d3:63:06:8e:ae:f3:b5:2c:e4:32:b6:5b:26:1e:
a0:a9:18:bd:df:05:6e:6d:fe:87:91:f8:81:98:04:
87:a8:cf:4f:5e:a2:47:63:52:4f:1d:ac:72:d3:12:
74:29:16:90:ac:d0:06:e1:ca:2d:41:33:6c:0c:cc:
6c:b8:7f:4f:66:db:c5:c5:cc:72:2f:7d:6e:72:10:
bb:6c:fe:68:50:45:2a:87:8e:43:fc:42:27:1f:2e:
64:81:6b:05:cf:29:9d:4f:9a:6a:58:0c:db:87:d6:
61:5e:ae:e2:f7:a7:16:06:2c:b4:1f:05:47:be:38:
cd:b4:1f:88:bc:4f:65:51:eb:c3:d0:26:25:b2:66:
70:f9:e1:5e:df:9e:5c:62:ba:2f:e5:d3:5f:cc:0b:
44:ac:09:2d:10:1e:45:f4:87:d7:e9:1a:1b:4b:14:
b1:5c:f4:27:05:34:68:8c:0d:b5:3c:be:8c:c2:6c:
c5:7b:f6:a9:56:7e:f9:02:a0:a9:8b:21:c3:4e:22:
ed:0a:17:0b:a2:5a:38:ae:81:aa:19:53:47:63:87:
ed:cc:03:56:fa:26:aa:3f:f2:e8:23:9d:65:b3:0b:
e4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9F:10:64:E2:53:03:D8:92:F2:5C:F6:57:3A:C3:FC:C9:07:70:2C
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/9Z8QZOJTA9iS8lz2VzrD_MkHcCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c6:600::/48
2a05:b0c6:642::/48
2a05:b0c6:653::/48
2a05:b0c6:688::/48
Signature Algorithm: sha256WithRSAEncryption
6f:00:70:88:8c:b5:2c:31:ee:74:ea:60:d8:56:a7:7e:53:a7:
12:b4:ab:0f:8b:db:80:aa:8b:79:7f:4a:7c:0f:9e:27:dc:1f:
93:c2:9e:b3:2d:15:43:ab:a2:64:9c:51:a5:72:ab:a5:f9:1f:
fb:57:4f:38:f5:0f:4d:b4:8b:df:24:9e:cc:c7:54:81:cc:6c:
8c:d2:7c:01:87:a1:23:59:cf:88:33:71:cd:68:ef:29:29:0a:
69:07:ee:b5:3c:58:ad:3c:5c:cb:82:c5:24:05:2b:e0:47:b5:
50:de:0f:1a:bc:8a:3a:5e:b4:6b:c1:5b:b4:c9:02:28:4b:89:
d4:22:98:7a:77:06:be:8a:ac:a1:ba:91:a8:dd:e5:19:76:ab:
7b:80:cc:83:35:07:db:27:0e:be:3f:e7:bd:75:c2:29:ad:38:
a0:4f:49:cb:be:67:d4:2b:19:20:d2:ea:ce:49:6b:1a:f8:3a:
5b:bf:00:20:bc:4b:29:51:4e:db:f8:89:6f:f9:e8:46:32:b8:
49:ab:35:ee:f7:94:cc:35:8e:12:31:55:97:63:51:89:d9:a7:
cb:85:bc:6a:03:5a:92:37:a8:41:d4:34:73:d5:4e:9c:b2:c8:
1a:1b:39:d3:8a:c5:f7:af:ba:c3:4a:0e:3a:f1:66:91:d5:92:
5f:ab:01:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:17 2024 by rpki-client on console-ams.rpki-client.org