Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZOj5U73dktmzi5B4nblQct3rm6Q.roa
File: ZOj5U73dktmzi5B4nblQct3rm6Q.roa (raw, json)
Hash identifier: nwC4EM+/OpDYHpKRZ3pt6eY4GYR1a3EfqmMRiKpkn0g=
Subject key identifier: 64:E8:F9:53:BD:DD:92:D9:B3:8B:90:78:9D:B9:50:72:DD:EB:9B:A4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12B84D71
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZOj5U73dktmzi5B4nblQct3rm6Q.roa
Signing time: Mon 07 Mar 2022 15:46:19 +0000
ROA not before: Mon 07 Mar 2022 15:46:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57429
IP address blocks: 2a0e:b107:1340::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314068337 (0x12b84d71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 7 15:46:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64e8f953bddd92d9b38b90789db95072ddeb9ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:87:1c:82:da:68:57:7e:fe:cf:a3:45:16:7e:
d9:e4:71:aa:de:78:d4:34:b9:0c:82:f6:57:95:51:
9a:dc:09:03:3b:56:4f:75:65:4f:f5:9a:fa:a0:fa:
93:a6:b4:bb:1c:64:47:00:c2:f9:5a:ea:92:09:6c:
43:0b:df:b6:ce:1a:55:bf:27:4c:34:ea:c1:d4:c9:
25:d1:19:8c:ae:c6:ed:52:96:00:ea:cf:a5:08:da:
8b:91:22:e2:0b:b9:00:70:32:24:6f:0d:2a:0e:bf:
0a:81:d1:18:e6:00:fa:33:f9:f2:b7:44:9e:5c:e6:
a1:1e:60:3b:26:2f:63:39:81:5b:58:3c:bf:51:32:
ed:93:a1:aa:36:e0:33:34:a4:41:7d:cc:f0:2c:41:
20:4f:0f:4d:ca:a4:99:cc:fa:3c:1b:70:13:69:7f:
1b:30:aa:66:24:c1:6c:55:61:f4:1f:02:48:cd:83:
f1:b9:b1:11:57:e6:aa:4f:3e:0e:21:fa:e0:28:e6:
2f:bb:d6:c6:bb:ad:da:0a:b5:9c:d8:36:ee:3d:7c:
db:33:2a:56:65:d2:f1:f9:15:53:84:7c:64:ee:73:
66:4d:3b:2a:6f:52:e2:25:f3:c7:b2:d9:8b:a0:af:
3c:ab:b9:f7:cb:c0:88:e0:31:ad:f5:2b:7d:bd:b5:
eb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E8:F9:53:BD:DD:92:D9:B3:8B:90:78:9D:B9:50:72:DD:EB:9B:A4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZOj5U73dktmzi5B4nblQct3rm6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1340::/44
Signature Algorithm: sha256WithRSAEncryption
96:84:ea:85:de:96:55:bc:97:89:4d:84:c8:a3:a5:fe:71:27:
25:6c:55:0e:9a:45:70:9f:f2:18:55:89:d6:08:7f:6a:f9:39:
d5:9d:f1:b1:33:a8:96:35:19:c3:57:60:f8:09:67:e2:47:9d:
5c:fa:4d:5f:a1:9c:0c:a9:cf:28:66:2b:84:f1:ce:b0:8c:23:
63:2d:36:cd:df:f3:e7:8e:07:91:06:f4:cb:5d:46:ad:1c:39:
28:41:dc:07:d8:4a:40:2e:28:5b:ef:60:49:4e:44:bc:5f:4f:
f0:30:10:7b:f4:15:6e:65:8f:c9:d0:39:c6:17:6f:d2:d6:74:
40:47:ec:7c:85:b7:71:bc:1f:6f:c8:88:70:fb:33:27:87:20:
d1:46:49:17:b3:01:50:1d:b8:b7:62:31:21:8c:50:ae:49:a4:
ef:99:14:57:04:3e:fc:2c:37:86:08:a9:f1:1c:01:5a:ec:e4:
11:bb:64:a6:da:10:81:d7:2e:aa:f1:f3:b9:45:2f:4e:3c:3d:
fe:3c:4f:01:11:ae:e6:0f:3f:c5:4e:35:59:f2:8c:3a:38:cd:
b4:0b:e6:71:5a:c2:dd:a5:28:9f:ef:f5:f0:a2:11:94:06:7f:
07:16:0c:19:22:a5:64:0f:08:45:ed:b4:6d:f3:00:47:dc:af:
59:b8:df:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org