Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/zj1IF-U1NfbDKp-C4myGvBku8Os.roa
File: zj1IF-U1NfbDKp-C4myGvBku8Os.roa (raw, json)
Hash identifier: mB2YqFtPC2q4BgRVScJEEfkKBF7S4kSaeukyHMG0leY=
Subject key identifier: CE:3D:48:17:E5:35:35:F6:C3:2A:9F:82:E2:6C:86:BC:19:2E:F0:EB
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0181EC5DE2AB66FE278FD297D6F4C6338612
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/zj1IF-U1NfbDKp-C4myGvBku8Os.roa
Signing time: Mon 11 Jul 2022 08:26:24 +0000
ROA not before: Mon 11 Jul 2022 08:26:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1234567
IP address blocks: 2001:67c:64::/128 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ec:5d:e2:ab:66:fe:27:8f:d2:97:d6:f4:c6:33:86:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 11 08:26:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce3d4817e53535f6c32a9f82e26c86bc192ef0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f5:4a:37:dc:44:bc:dd:1b:78:ac:ab:e5:fb:
13:1a:9b:73:42:28:a6:3b:05:2f:26:da:f3:46:fc:
ab:9f:23:65:3b:55:46:ae:b6:6a:7e:18:a9:ba:6e:
32:c1:33:f5:ef:ce:4d:22:0d:49:b9:41:de:28:4b:
d9:4f:2d:9f:6f:77:36:65:53:43:40:5a:ef:d9:1a:
52:f0:a7:dd:4b:15:44:d0:bb:a4:88:83:c9:f6:a1:
36:e4:04:ca:5d:2d:f2:bf:f8:c8:48:21:01:1d:c3:
03:25:0d:87:af:ff:8c:8e:2c:30:63:95:a0:56:bc:
db:ef:c4:82:d6:fa:bc:8d:85:42:9f:b7:85:b7:44:
c6:26:84:c3:99:0b:1c:bc:d4:27:f2:26:33:a5:1b:
02:e3:df:5c:cc:b5:80:ab:64:df:8e:15:07:52:55:
37:40:ca:96:9e:23:d5:af:01:e6:ec:3d:d4:53:ab:
63:e4:fa:8f:db:2d:aa:04:27:6c:19:a0:a4:d5:e5:
8f:90:b0:5c:cb:88:6d:d7:fa:83:3f:04:c2:f4:ef:
e6:fc:57:73:00:ae:c4:a9:97:cf:b1:89:4b:69:cc:
33:02:cc:20:1b:aa:2a:e1:b1:39:c1:6d:47:7c:9b:
a7:d0:a8:e9:8f:91:23:da:25:43:be:e8:b8:30:dd:
90:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3D:48:17:E5:35:35:F6:C3:2A:9F:82:E2:6C:86:BC:19:2E:F0:EB
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/zj1IF-U1NfbDKp-C4myGvBku8Os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64::/128
Signature Algorithm: sha256WithRSAEncryption
8b:f3:15:63:04:f4:c2:6e:7b:7b:1e:03:08:e9:39:67:17:97:
02:21:df:6b:5d:26:51:1f:e8:73:65:45:22:ae:ec:6e:d6:85:
74:22:6e:38:19:e1:63:1d:8f:70:5e:e2:f5:d8:16:b7:f2:32:
ae:38:ba:ed:12:06:4f:da:58:a3:2c:56:e7:fc:ee:67:78:77:
93:77:94:80:f8:5b:78:d0:5e:9a:cb:04:80:f2:f4:af:24:6e:
10:29:e7:9b:05:57:8b:e9:7f:94:68:b7:0a:be:83:b6:b6:9c:
9c:74:c1:48:42:1c:46:ab:59:45:ce:fb:41:4f:70:db:11:88:
aa:de:57:7e:56:a7:d8:81:dd:04:7a:3a:eb:1e:3b:91:f6:2f:
78:bc:98:87:18:b4:da:17:d0:cf:57:83:10:f3:36:31:4d:4c:
87:43:6a:91:cc:08:be:0d:3c:97:9f:db:23:a1:ff:99:4a:6a:
a5:4d:b6:6e:ca:ee:a7:b8:18:08:55:e0:28:4a:d2:60:ed:e6:
bc:f7:9d:ef:ae:05:f0:32:47:86:b1:f2:f6:97:d0:1f:d2:d1:
09:ad:1b:b4:20:03:ec:76:3e:5b:eb:7e:b6:79:68:3e:9d:37:
96:ed:1b:31:75:06:16:f6:64:04:de:6b:a1:74:3b:5b:3c:d8:
76:bf:93:af
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:30 2023 by rpki-client on console-ams.rpki-client.org