Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/zXETK0lNDg6ZNZKwWoLEiEAWWmE.roa
File: zXETK0lNDg6ZNZKwWoLEiEAWWmE.roa (raw, json)
Hash identifier: ryQTf3DJC1499yj//fHR6vBfoq+AoDbBvA+IDrxabXE=
Subject key identifier: CD:71:13:2B:49:4D:0E:0E:99:35:92:B0:5A:82:C4:88:40:16:5A:61
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 3510BA1F
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/zXETK0lNDg6ZNZKwWoLEiEAWWmE.roa
Signing time: Sat 01 Jan 2022 07:55:01 +0000
ROA not before: Sat 01 Jan 2022 07:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31056
IP address blocks: 2a00:8647::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890288671 (0x3510ba1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Jan 1 07:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd71132b494d0e0e993592b05a82c48840165a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fe:a1:74:42:58:42:8b:5f:de:ec:2d:dd:22:
78:d7:a3:c4:64:2f:78:8a:b9:3b:8d:61:ce:2d:aa:
68:ff:5b:32:02:cf:5d:be:6d:34:6b:81:57:82:b8:
20:29:2b:ec:c0:9e:5b:3b:d6:49:25:d4:7f:ff:f9:
02:34:e7:eb:4d:ff:99:28:71:f7:b4:84:cc:38:a4:
7c:60:98:22:09:4b:76:4e:b2:e9:f0:a2:75:47:df:
e2:ad:8c:35:d5:6f:cb:90:d8:a7:71:b9:0d:09:1f:
36:70:4e:c0:a4:12:fe:71:43:6b:8c:b6:c8:b8:02:
f7:c7:1d:6c:b7:5a:24:72:e0:9a:4a:6d:c8:e5:22:
8b:bb:5d:29:9a:df:5f:35:a9:00:00:35:4b:53:d5:
11:06:f7:09:c0:80:4f:d0:72:ac:f5:b4:4c:8e:f9:
c7:7e:d4:6e:22:79:e4:70:82:fe:48:67:e2:7a:e2:
d5:87:b1:98:0c:5f:a1:36:ac:e0:91:93:68:c6:a1:
09:ff:44:e9:db:b9:81:7d:24:03:b2:72:ec:b7:6b:
63:f2:cf:c9:ca:ed:fa:04:23:fe:8e:87:27:c0:e6:
af:39:6a:ae:a5:9a:31:0b:84:c0:8c:db:c9:7d:52:
2b:f3:e9:39:50:3e:5a:03:22:cd:f8:6b:d8:51:aa:
df:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:71:13:2B:49:4D:0E:0E:99:35:92:B0:5A:82:C4:88:40:16:5A:61
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/zXETK0lNDg6ZNZKwWoLEiEAWWmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8647::/32
Signature Algorithm: sha256WithRSAEncryption
11:01:ef:41:10:b7:95:91:f3:55:ad:83:60:23:52:b3:83:b4:
c4:09:b9:8c:8c:33:74:be:64:db:85:04:a8:e4:03:21:72:7c:
7c:48:f1:12:f5:53:46:1a:d7:18:3e:37:e2:16:95:14:3a:ac:
18:2a:85:24:60:68:56:be:8c:bb:4e:1e:ee:c2:68:15:f1:67:
01:d9:93:1f:92:a3:9f:8c:c6:08:cf:cf:96:17:d0:b3:53:bd:
ca:95:0f:e0:3b:24:8b:1a:d9:58:6c:7f:0a:8c:91:c9:70:a2:
c3:56:8d:8f:d7:1f:95:5f:e1:04:0d:12:0f:42:42:21:d8:ee:
39:35:a7:53:68:96:cf:08:f3:fc:5a:a9:05:9e:cf:cb:9d:8d:
b4:52:3b:74:d1:bf:dc:39:8b:f4:3f:b9:2d:1b:67:33:27:54:
ea:15:40:d4:0b:36:47:46:31:6f:b6:4f:ad:83:d5:f8:22:c5:
dd:87:11:91:6d:91:31:a2:50:10:7f:8b:6d:d8:3c:7a:44:3f:
33:62:c7:27:5e:2c:fd:de:4c:46:8c:1c:4f:66:7d:46:c7:f3:
d0:f0:e8:98:ab:f8:1c:62:84:f0:8f:0d:d6:56:d4:de:f8:67:
8d:cc:6f:1b:56:b0:32:fd:80:c5:67:f0:0a:49:e0:5b:17:45:
2c:9f:c7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:24 2024 by rpki-client on console-ams.rpki-client.org