Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/2zcmXquWGks-QXIouR7UDZocSMs.roa
File: 2zcmXquWGks-QXIouR7UDZocSMs.roa (raw, json)
Hash identifier: vf8N5JpO+hjO5CUWBQWDC+0CVPXTHTU3S7Ekv+Bx7jQ=
Subject key identifier: DB:37:26:5E:AB:96:1A:4B:3E:41:72:28:B9:1E:D4:0D:9A:1C:48:CB
Certificate issuer: /CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Certificate serial: 0198FD63
Authority key identifier: FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/2zcmXquWGks-QXIouR7UDZocSMs.roa
Signing time: Sat 01 Jan 2022 05:57:50 +0000
ROA not before: Sat 01 Jan 2022 05:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42244
IP address blocks: 2a11:2800:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26803555 (0x198fd63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Validity
Not Before: Jan 1 05:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db37265eab961a4b3e417228b91ed40d9a1c48cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a7:e4:0f:3a:dc:78:88:1f:de:4f:01:02:1b:
6c:c0:01:6e:7f:3a:22:b2:0e:9f:9d:2f:fa:25:d9:
16:42:8d:a2:1c:13:16:4d:0f:c0:84:cb:2e:1b:46:
78:00:0b:5d:63:a2:aa:5b:f8:92:23:79:ac:c7:c4:
58:f7:a7:b3:08:dd:b7:1d:60:5d:31:f6:39:0d:27:
4b:e8:5f:4b:ca:2a:80:7a:7b:a7:ce:c8:50:ac:31:
93:6f:4c:2d:19:6d:0c:f2:b9:a2:9c:fc:66:d2:8b:
2d:ed:4f:ce:b7:00:ad:5a:39:4c:60:c3:c3:e5:a3:
f8:73:a5:a2:ec:6c:66:84:ed:bf:8a:a2:ea:64:89:
68:af:00:06:43:04:ec:0d:ee:60:7c:5b:c0:7f:2d:
61:52:62:1f:d4:ed:bb:1b:02:b0:53:f4:a1:0f:87:
27:31:f4:47:e7:80:65:b6:16:60:a8:8c:ea:26:f9:
9f:03:05:e9:c0:66:e5:5a:7e:ff:66:61:8b:4a:bd:
45:dd:21:e1:e6:d1:a1:f4:7e:80:94:d9:a8:d0:52:
67:c5:1f:fa:a6:8d:2b:ed:a5:87:a9:3e:61:0f:44:
73:89:72:ea:38:c4:33:19:f5:19:85:9e:34:12:1f:
fd:c8:88:77:f0:8e:77:8e:27:b5:7b:d1:7f:42:97:
0d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:37:26:5E:AB:96:1A:4B:3E:41:72:28:B9:1E:D4:0D:9A:1C:48:CB
X509v3 Authority Key Identifier:
keyid:FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/2zcmXquWGks-QXIouR7UDZocSMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/1-tlJ9mJTVD7om5GWOQc2tabtfLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:2800:2::/48
Signature Algorithm: sha256WithRSAEncryption
28:d5:5d:ef:3f:40:e2:d3:0d:fb:e9:94:06:23:74:f4:7f:f6:
e5:e9:0f:1c:93:61:36:0d:67:b7:89:70:0e:d1:11:76:9d:55:
bc:c4:cf:d2:46:96:06:0f:c7:8d:d7:2c:d3:79:b5:36:5c:ed:
ae:ce:22:ec:2f:b7:e9:98:33:36:a2:f3:70:a8:d1:bb:d2:1b:
43:8f:4e:cc:a4:48:f5:25:cc:3f:70:5e:02:91:30:eb:fa:e0:
46:46:8c:6a:25:c7:7e:4b:1c:1b:05:58:0d:c0:e6:82:b7:16:
da:51:50:07:bc:14:24:8d:37:7e:39:b1:77:24:f8:45:c5:32:
1b:a4:be:ce:dc:fe:b6:76:86:9d:82:05:81:b4:23:1a:98:4c:
6d:61:d0:11:8a:15:d3:4f:d1:3d:fa:c2:1f:c7:87:5c:0e:0b:
4f:6a:d2:be:e6:90:08:94:84:cb:b9:95:1d:58:46:f2:c3:ea:
5d:7e:48:d0:4a:79:8c:3f:b7:16:d0:22:bb:7f:8f:b4:17:cb:
3a:3f:6d:4f:d5:fc:3c:29:e6:fa:80:b6:61:a8:c5:f2:2d:8a:
9d:b6:cb:a3:16:34:ee:46:63:63:e5:59:7e:66:31:54:f9:69:
fc:8f:76:4e:aa:cf:7c:13:89:fa:6f:70:9b:1f:08:49:b4:a9:
d4:fa:7b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:30 2024 by rpki-client on console-fra.rpki-client.org