Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/tzWwdcJIIm2S0HR5GLVTqVqQjig.roa
File: tzWwdcJIIm2S0HR5GLVTqVqQjig.roa (raw, json)
Hash identifier: 9m/0tDwz4SEcyxCWsNxQ5n6VIm/tBXOBHAl+PjSqDvI=
Subject key identifier: B7:35:B0:75:C2:48:22:6D:92:D0:74:79:18:B5:53:A9:5A:90:8E:28
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 056D9CA9
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/tzWwdcJIIm2S0HR5GLVTqVqQjig.roa
Signing time: Sat 01 Jan 2022 15:07:22 +0000
ROA not before: Sat 01 Jan 2022 15:07:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60703
IP address blocks: 2a02:a10::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91069609 (0x56d9ca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b735b075c248226d92d0747918b553a95a908e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:85:f3:27:bb:e9:7a:ba:3d:dc:94:20:24:8e:
ef:c2:67:98:72:b9:8c:eb:14:a2:4a:77:b1:aa:30:
2b:25:98:0c:24:d9:35:47:52:59:6d:4b:7a:d6:96:
44:3e:4f:4d:f1:da:38:5f:6b:40:f2:e5:12:f1:56:
33:6f:21:61:39:41:f2:aa:e7:9a:80:9d:d3:64:56:
bb:7b:01:fe:c6:2f:ca:11:13:d0:f1:bf:73:a3:45:
40:4e:10:bc:b3:fe:1f:23:c3:af:37:b6:5c:d2:c2:
a8:fe:c4:25:8b:91:48:39:cc:bc:a8:45:d3:7a:70:
1b:64:af:22:09:a0:15:93:a1:58:0f:a4:8c:b3:a2:
51:81:01:41:14:c7:f1:22:84:de:af:15:5f:d9:f1:
43:ee:54:fb:66:9b:08:03:dc:45:3e:38:82:c8:03:
0e:7d:c7:3d:32:09:13:93:c0:bd:52:22:a9:82:23:
4d:80:3a:33:8f:db:dc:42:cc:68:cf:90:6a:b1:5e:
0c:88:92:da:f9:5d:eb:c8:87:e5:a3:be:8a:4d:12:
26:6a:d8:6a:54:aa:b6:dd:cf:73:07:90:0f:d7:ae:
79:2b:27:2d:df:3a:8f:eb:fc:fa:ee:bd:49:d4:ec:
0c:0b:23:3a:da:74:91:bd:6c:3a:9c:7a:d7:bb:0e:
cd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:35:B0:75:C2:48:22:6D:92:D0:74:79:18:B5:53:A9:5A:90:8E:28
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/tzWwdcJIIm2S0HR5GLVTqVqQjig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:a10::/32
Signature Algorithm: sha256WithRSAEncryption
41:5d:ca:94:1d:c1:b0:be:b2:9e:25:80:6b:52:8c:bc:d9:cb:
68:2b:1f:82:92:c6:00:44:5d:a4:55:29:44:d1:08:80:cc:ba:
26:8a:65:b8:a8:5b:92:76:73:e4:88:4f:75:3b:c3:04:39:65:
69:e8:29:c0:7d:5d:24:d6:04:77:bb:3a:a7:16:6f:34:aa:e2:
c5:b6:4c:0d:c0:d6:fa:b5:73:e1:11:16:5a:1a:81:f1:88:86:
70:18:b2:f1:76:55:d3:f8:fe:03:03:83:4d:6e:d4:0c:7f:e7:
c7:64:52:57:e3:d2:eb:44:b1:8e:83:37:08:d4:a5:4e:22:f0:
d7:9d:9a:e9:0b:43:a5:57:fa:7a:64:9b:43:75:c0:51:c2:ac:
67:25:cf:1e:e1:bf:4f:08:c2:bd:27:a1:93:d5:ea:44:a0:0f:
0e:ee:8c:ec:00:5b:02:0e:57:d7:e4:41:93:a8:6b:15:d2:f8:
a8:1f:38:06:c3:b6:62:9c:3d:d5:61:7f:fa:8b:d3:5c:47:d5:
16:fe:0e:09:00:1f:4b:7a:26:04:d6:ba:4d:07:7e:33:c7:62:
49:23:32:53:d8:85:71:50:50:85:bc:26:9a:7e:c0:5e:54:4e:
a4:21:5c:63:b1:23:03:8e:ce:01:07:ed:e7:09:bd:a0:32:1f:
ff:2f:88:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org