Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZlIG6UlMrHB5x_n0XUQhI4ZGOyQ.roa
File: ZlIG6UlMrHB5x_n0XUQhI4ZGOyQ.roa (raw, json)
Hash identifier: At8oFgD2o4stFJoXWy8/Z7ZgRkbrcx38qzE/IZLnUC4=
Subject key identifier: 66:52:06:E9:49:4C:AC:70:79:C7:F9:F4:5D:44:21:23:86:46:3B:24
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10C8C3E5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZlIG6UlMrHB5x_n0XUQhI4ZGOyQ.roa
Signing time: Sat 01 Jan 2022 09:05:31 +0000
ROA not before: Sat 01 Jan 2022 09:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211486
IP address blocks: 2a0e:b107:dc6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281592805 (0x10c8c3e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=665206e9494cac7079c7f9f45d44212386463b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:19:d8:a5:02:68:22:60:7b:f6:82:76:57:e9:
0b:72:a0:91:6d:f9:f3:93:2e:81:b6:fb:a4:31:3e:
72:5c:d1:5a:4a:5a:6c:0a:47:13:31:ac:c8:8d:05:
2c:11:3e:84:52:9c:6c:4a:a3:88:04:0d:eb:a5:fe:
41:e3:b5:c4:97:1e:2a:f6:8e:b0:0c:57:61:4c:4c:
80:dd:28:46:b2:dc:f2:29:60:81:6d:da:60:3e:41:
e4:77:7f:8a:8e:01:4e:da:d6:e1:58:31:3d:47:c9:
23:e8:3e:f7:08:8a:9b:ee:e1:bc:59:3a:5c:a9:ec:
55:2e:85:fd:76:89:be:c1:26:b9:c9:40:f7:63:ee:
b6:f8:09:41:cc:40:9b:09:38:69:79:b8:18:70:25:
47:eb:b4:ec:3b:1c:76:b7:14:4e:90:7b:eb:19:60:
57:5e:ef:c8:8a:e4:ac:71:97:dc:96:96:ef:ac:9d:
6b:e4:57:62:f8:2b:9f:61:77:7a:39:ca:62:a7:7b:
a7:b6:8b:0c:ff:df:ba:ed:35:81:15:2f:0e:52:ac:
5d:78:f8:25:20:82:13:ff:da:2d:d1:50:db:af:1b:
c2:c3:e2:09:9e:43:fc:e4:85:e4:79:88:8c:33:44:
4b:57:9b:d2:1f:34:73:cb:b6:c8:b6:11:81:63:ac:
21:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:52:06:E9:49:4C:AC:70:79:C7:F9:F4:5D:44:21:23:86:46:3B:24
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZlIG6UlMrHB5x_n0XUQhI4ZGOyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:dc6::/48
Signature Algorithm: sha256WithRSAEncryption
33:5e:f1:f3:f9:b8:95:95:d0:2e:65:22:30:e5:7c:fd:27:c5:
39:1f:82:4e:f1:09:7d:9b:cd:cb:3e:c4:a6:24:af:9f:83:04:
f7:8d:55:7f:59:f5:02:06:81:2e:2b:41:94:8c:fe:f5:e9:0f:
b4:c9:db:82:88:55:27:a9:cc:f7:e2:cc:3b:62:98:fd:33:2a:
f3:0c:83:d8:e8:4e:85:31:c4:19:61:e8:73:38:04:4a:75:55:
de:03:22:fe:6a:6a:b2:9d:11:af:c9:ba:54:7e:df:49:20:c4:
aa:28:e0:89:f1:1a:a3:cc:72:d4:b0:f6:c3:3a:88:0a:34:4b:
65:0d:f0:3e:26:52:63:f5:1c:f0:30:f7:be:46:88:66:9f:6d:
f6:05:f3:6a:81:a8:d6:fc:66:0d:47:a4:6d:5b:3f:38:40:5b:
37:3b:c9:d9:d5:80:3d:af:f0:f0:03:0c:70:96:49:5e:61:21:
f4:22:2d:1c:ba:77:38:39:9a:4d:98:b9:ff:8f:64:eb:6e:59:
23:42:cd:ef:4f:e5:d5:f3:74:a7:7e:79:43:46:9c:48:6f:b4:
b4:10:4b:b6:c9:c9:00:92:27:b2:5f:3e:49:91:41:c2:00:46:
7a:49:d0:30:ae:30:b0:d7:6c:45:24:d5:04:96:ad:a9:54:b7:
e6:d9:bf:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org