Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/ztvc6KHu4qz6l3hZILNQhQHIH7w.roa
File: ztvc6KHu4qz6l3hZILNQhQHIH7w.roa (raw, json)
Hash identifier: +JV3kfayHBdSDX/WYu8otuvEMuwHPb7B5mNVamN1xpc=
Subject key identifier: CE:DB:DC:E8:A1:EE:E2:AC:FA:97:78:59:20:B3:50:85:01:C8:1F:BC
Certificate issuer: /CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Certificate serial: 082CD23C
Authority key identifier: 0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/ztvc6KHu4qz6l3hZILNQhQHIH7w.roa
Signing time: Sat 01 Jan 2022 02:53:51 +0000
ROA not before: Sat 01 Jan 2022 02:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12414
IP address blocks: 2a05:b2c2::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137155132 (0x82cd23c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Validity
Not Before: Jan 1 02:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cedbdce8a1eee2acfa97785920b3508501c81fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:9f:19:87:52:7b:0b:11:3f:02:81:2d:d3:
a4:89:68:5b:f6:67:09:87:5b:f4:49:ef:71:74:07:
5b:f4:ae:bb:a2:ec:77:53:a8:88:1b:e9:87:1a:a7:
64:16:88:45:77:33:bc:e2:b1:71:5a:22:63:eb:db:
d7:f4:80:8c:be:43:97:75:16:c5:24:f7:08:1b:05:
46:95:29:f8:70:2f:aa:b4:ca:53:be:ff:6f:89:98:
aa:78:16:db:21:4e:b5:87:c0:4c:33:77:78:f9:32:
17:9f:b9:0f:50:fd:da:ac:07:d7:de:1f:e8:e3:ec:
e6:b1:b1:12:93:79:74:fa:5d:8b:81:75:cf:91:1e:
fb:54:36:be:8a:8c:56:b0:16:a9:af:c8:d1:8d:28:
b7:f7:6b:84:43:b5:7f:92:95:ff:84:6d:a3:57:a7:
72:ee:ac:5d:d6:b3:e2:d5:75:92:3d:81:be:5d:98:
a8:ae:07:f9:26:8b:29:b6:ea:34:50:88:dd:51:ae:
5b:14:67:15:3a:67:47:0f:a4:de:82:97:74:4e:ab:
7a:1b:ad:71:2e:4c:2b:9a:30:da:a3:09:43:ee:24:
d2:5d:31:0d:73:ab:cc:1d:67:a9:73:ea:5b:97:92:
6c:bf:67:1a:a7:5a:9e:9c:8c:ac:49:d0:38:c8:9f:
86:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DB:DC:E8:A1:EE:E2:AC:FA:97:78:59:20:B3:50:85:01:C8:1F:BC
X509v3 Authority Key Identifier:
keyid:0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/ztvc6KHu4qz6l3hZILNQhQHIH7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/C1yvJi_b_MX_MOKKUQRkbieokmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b2c2::/31
Signature Algorithm: sha256WithRSAEncryption
51:19:9d:eb:18:fd:c3:68:c7:73:30:42:d2:1e:04:74:03:c1:
39:21:e4:40:31:4b:79:f1:af:29:03:46:6a:ff:39:a3:81:96:
83:e8:9a:2e:8a:51:ef:45:81:58:ab:60:81:9d:27:99:9f:37:
90:8e:8e:a9:fc:d1:69:d6:0d:8b:cf:d9:16:96:08:f1:5b:a7:
ff:8a:8d:89:09:a9:12:f7:01:d5:96:3e:6a:13:44:b0:85:70:
5d:7b:b3:fe:01:e5:00:22:e7:8b:25:d2:28:1f:60:40:b2:d4:
e1:c9:1a:ee:3a:d6:d6:7d:6f:e3:2d:c3:d6:fe:bf:fb:8d:38:
3f:54:0d:f4:1f:91:b1:5d:56:ee:92:12:b3:50:16:9e:bd:1e:
cf:51:37:e9:6d:04:62:8e:d2:a1:ef:68:e1:72:57:83:08:45:
9f:8c:9b:55:37:d1:3f:c7:4e:a1:0a:65:53:ef:a4:78:dd:96:
da:ae:1c:2b:50:4b:b4:08:06:07:71:28:d3:90:18:b9:5f:a4:
42:a3:f8:2e:4d:2a:5e:e5:93:23:ae:bd:62:e7:bb:64:6f:95:
63:b9:f9:9c:ea:10:23:16:af:2f:56:f8:aa:80:44:3a:6f:61:
ea:9c:f0:f2:b3:11:24:31:bc:dc:83:a4:83:d1:80:b8:b2:6d:
19:b3:5a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:38 2023 by rpki-client on console-ams.rpki-client.org