Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/tg5d-ZZ2UshXnYCo8q6_yp6L5A4.roa
File: tg5d-ZZ2UshXnYCo8q6_yp6L5A4.roa (raw, json)
Hash identifier: LcVjIs77A0k07k/ItVCkrv3VuYGoXWSFqsU5LZbcyUw=
Subject key identifier: B6:0E:5D:F9:96:76:52:C8:57:9D:80:A8:F2:AE:BF:CA:9E:8B:E4:0E
Certificate issuer: /CN=4ee0b21c89a302be9dc03870c098f23280304b0f
Certificate serial: 018335A7893AE83FEB14FF92784124816A18
Authority key identifier: 4E:E0:B2:1C:89:A3:02:BE:9D:C0:38:70:C0:98:F2:32:80:30:4B:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuCyHImjAr6dwDhwwJjyMoAwSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/tg5d-ZZ2UshXnYCo8q6_yp6L5A4.roa
Signing time: Tue 13 Sep 2022 07:01:55 +0000
ROA not before: Tue 13 Sep 2022 07:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210021
IP address blocks: 2a0c:9c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:a7:89:3a:e8:3f:eb:14:ff:92:78:41:24:81:6a:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee0b21c89a302be9dc03870c098f23280304b0f
Validity
Not Before: Sep 13 07:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b60e5df9967652c8579d80a8f2aebfca9e8be40e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:02:05:58:39:27:b3:f0:34:fa:3a:70:c1:fd:
89:5c:28:7d:32:a0:d2:0c:1b:7b:70:77:e0:39:db:
6c:db:06:d6:ff:08:78:e2:5a:c6:fa:7c:62:53:19:
79:fc:ec:8b:54:4a:91:33:36:7a:74:c0:81:5b:a9:
0f:aa:90:00:90:7a:da:69:af:c9:ea:d7:ca:48:c0:
27:12:d9:ce:92:23:08:a0:af:ed:ff:2c:0d:83:58:
a7:40:55:21:18:0a:b3:fe:65:6b:d8:28:03:6d:74:
0c:af:54:66:e9:a8:e4:0d:ac:45:41:b8:55:69:81:
06:5a:f6:d0:19:a6:a0:2e:bc:5c:b0:c4:76:8f:f8:
c1:e4:f2:e3:82:9d:7b:3d:e8:71:c9:d8:3f:39:4d:
d6:16:d7:08:79:4c:23:15:be:f2:a7:96:d7:0a:b7:
03:62:7c:84:9c:4c:61:a0:3a:25:eb:96:b9:1b:ab:
c4:24:0e:cc:80:a3:ed:c4:5d:7f:6f:55:31:56:b5:
29:c9:a6:0e:49:9a:94:91:4d:3f:71:d4:0b:5b:0d:
d8:fd:ac:86:61:78:39:24:3f:06:e3:0f:26:86:cf:
d5:07:98:67:ea:dd:98:7b:82:f1:31:cb:e3:61:72:
c1:82:1b:56:5c:a7:7f:ee:8f:a9:a8:ed:0d:9e:4a:
49:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0E:5D:F9:96:76:52:C8:57:9D:80:A8:F2:AE:BF:CA:9E:8B:E4:0E
X509v3 Authority Key Identifier:
keyid:4E:E0:B2:1C:89:A3:02:BE:9D:C0:38:70:C0:98:F2:32:80:30:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuCyHImjAr6dwDhwwJjyMoAwSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/tg5d-ZZ2UshXnYCo8q6_yp6L5A4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/TuCyHImjAr6dwDhwwJjyMoAwSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9c0::/48
Signature Algorithm: sha256WithRSAEncryption
96:91:5b:88:e9:1e:cc:c9:f6:f2:dd:44:d8:13:71:54:7c:c2:
21:4b:45:18:e0:05:34:6d:9d:90:c0:df:9b:e1:ba:5d:cf:e1:
01:46:95:27:7d:45:33:00:ac:fa:f1:fc:20:e4:04:35:35:72:
bf:c1:46:c0:49:93:fc:f5:a5:bd:12:22:ac:2e:87:9d:93:47:
5c:d5:7a:cd:d2:64:97:b1:01:db:df:98:f2:d8:44:50:dc:ed:
ee:20:9d:85:c9:3d:44:ce:00:39:70:3e:b7:55:2b:15:cc:af:
35:eb:43:cb:5f:40:e9:e5:f0:3f:60:12:66:1f:97:bd:73:b4:
f7:5c:97:07:4d:63:95:6d:34:09:29:17:14:95:6b:14:da:99:
9c:7d:3e:65:2d:06:a4:f4:3d:5b:fd:66:f8:f4:13:73:4f:b1:
e8:e2:08:db:d3:b7:e5:11:83:72:b8:6b:2b:8e:0d:90:fd:37:
3c:a5:0b:a4:17:26:be:8c:2b:67:67:a8:c3:92:f0:ac:e2:d5:
d0:fa:94:86:99:fe:d5:e5:40:7b:7f:bd:14:c5:f9:8f:b0:a0:
51:32:0c:af:ba:c9:39:04:95:00:ae:e9:74:40:e2:a5:d6:2b:
3d:d9:64:60:f0:76:5a:e1:92:53:5f:2b:1f:0a:00:c6:0e:4c:
ed:1d:bd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:42 2024 by rpki-client on console-ams.rpki-client.org