Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZDbo14yu8ssCUkjwAGoyZkJvlr8.roa
File: ZDbo14yu8ssCUkjwAGoyZkJvlr8.roa (raw, json)
Hash identifier: BzY2CQD8vDfYxX3UaXt9Bytz8+VjrIiBXfHrylu2rEs=
Subject key identifier: 64:36:E8:D7:8C:AE:F2:CB:02:52:48:F0:00:6A:32:66:42:6F:96:BF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 153AA793
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZDbo14yu8ssCUkjwAGoyZkJvlr8.roa
Signing time: Sun 19 Jun 2022 20:17:45 +0000
ROA not before: Sun 19 Jun 2022 20:17:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204610
IP address blocks: 2a0e:97c0:b60::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 356165523 (0x153aa793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 19 20:17:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6436e8d78caef2cb025248f0006a3266426f96bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f9:47:bc:cf:44:5d:31:ce:23:2d:a2:68:2d:
91:d1:59:78:8f:18:ad:74:aa:51:92:b9:5f:c8:cf:
0c:27:f5:d9:38:5e:94:27:e1:95:57:b8:f3:07:21:
f6:40:7e:5d:6f:8b:28:79:c5:93:58:73:2b:83:70:
9a:9b:fe:ce:73:99:96:99:aa:8d:33:cc:ba:91:21:
8f:7e:b7:8e:9e:da:57:27:af:1c:38:38:76:8f:da:
e6:69:bd:0c:ab:57:aa:06:fe:e1:0a:4c:6f:3a:55:
8b:16:83:ab:cb:7f:f0:40:28:4d:12:96:f7:24:5e:
87:e4:8e:5f:ed:24:b8:47:aa:09:47:82:f2:3c:3d:
73:4f:90:bd:bb:71:09:8a:db:1e:64:7d:01:39:4c:
dd:fc:61:68:2d:37:cd:34:b7:eb:dd:1d:1d:f4:2f:
0b:f0:1f:cb:08:f5:2d:8e:6f:18:28:c8:ad:b8:4c:
9d:f2:a2:14:a7:39:e9:23:dc:5f:4c:30:26:55:9a:
d2:b7:92:8b:70:80:48:9e:8f:4d:d0:ca:2e:39:36:
4a:5a:8f:19:7d:5f:77:2b:b7:45:e4:eb:75:51:44:
bc:7f:16:9f:e4:58:0f:73:d4:5f:f3:df:a0:31:24:
e5:25:88:4d:37:b6:df:ea:92:74:e3:12:6d:1a:80:
b7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:36:E8:D7:8C:AE:F2:CB:02:52:48:F0:00:6A:32:66:42:6F:96:BF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZDbo14yu8ssCUkjwAGoyZkJvlr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:b60::/44
Signature Algorithm: sha256WithRSAEncryption
02:c0:7c:48:02:26:8e:31:91:09:2e:da:07:8a:b2:2e:1a:ee:
80:10:db:1b:2b:2a:a4:26:57:33:f3:3f:26:2e:f9:e8:66:36:
05:83:53:ac:70:4f:af:b2:46:4e:c0:b1:59:0e:45:d6:72:6c:
12:12:59:ca:5a:08:5b:06:4a:76:25:9f:73:96:ca:55:50:13:
17:57:14:a9:b5:9c:55:d4:cd:af:d5:28:0a:f1:24:1d:cc:64:
a8:60:be:cb:8a:80:f6:c8:f7:cd:38:80:0d:3d:79:36:2a:be:
0b:8e:f0:a2:5f:f6:23:aa:6c:ef:8c:4c:8c:9f:45:e6:81:d4:
25:28:de:c3:3a:65:0f:27:8e:f2:a7:3d:8d:29:7b:1d:d3:d6:
9e:a6:ba:48:69:23:27:08:ec:64:18:f5:48:4c:84:f3:04:4d:
28:78:67:05:f9:7d:02:4b:f9:8b:e2:81:7e:d9:da:30:ab:2c:
c1:12:c4:a7:19:81:d2:b4:f1:72:df:33:40:28:15:9f:14:07:
79:ba:99:20:d9:06:d1:16:ce:be:1e:bc:47:20:19:c7:01:16:
7a:e6:9e:d3:3f:c5:bd:3f:d9:14:d1:07:f9:62:26:c6:bc:53:
3d:9e:25:a8:d2:de:b5:19:01:fa:9a:0e:ce:b0:4a:01:ed:67:
58:35:e7:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org