Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Z_mLL57U6J7UelvS8FmE7V0FaTw.roa
File: Z_mLL57U6J7UelvS8FmE7V0FaTw.roa (raw, json)
Hash identifier: h53eyJkdgvCi8525Dkq1IROsIEhQf3UBIdT3uIHkdEc=
Subject key identifier: 67:F9:8B:2F:9E:D4:E8:9E:D4:7A:5B:D2:F0:59:84:ED:5D:05:69:3C
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018336B0F7EAD7BE2DFB6559179C3BFEFB76
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Z_mLL57U6J7UelvS8FmE7V0FaTw.roa
Signing time: Tue 13 Sep 2022 11:51:50 +0000
ROA not before: Tue 13 Sep 2022 11:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211647
IP address blocks: 2a0e:aa07:e04a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:b0:f7:ea:d7:be:2d:fb:65:59:17:9c:3b:fe:fb:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Sep 13 11:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67f98b2f9ed4e89ed47a5bd2f05984ed5d05693c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c9:4d:63:41:f5:78:a1:3b:e8:11:12:ef:25:
f8:76:d2:05:ed:a4:c7:5f:70:51:5d:77:38:8c:58:
02:a3:32:d0:e2:1e:73:27:07:7d:b9:95:bc:74:53:
36:2b:27:51:bf:e2:54:be:13:b4:44:9b:03:0c:44:
3e:f3:7a:31:e1:16:4a:a0:3a:16:95:2a:80:30:f3:
1b:30:1d:45:ef:65:27:f7:17:1b:56:21:1c:a1:75:
7c:ba:ec:21:ad:aa:4f:51:88:c9:e3:f3:67:23:05:
da:b1:a6:a1:7a:04:61:28:6e:53:79:fe:86:5b:32:
71:7e:fb:e0:f5:64:08:7a:13:2b:fd:f1:43:25:d6:
99:40:8e:98:2c:4c:2e:ef:06:59:65:97:98:b9:92:
88:4f:f6:52:80:43:4f:df:15:fc:6a:43:4a:5f:64:
3b:27:3d:aa:a9:b6:0e:f2:d0:1b:56:05:91:99:4b:
cd:ee:79:7a:ed:9e:0d:8e:ce:bd:03:38:d8:00:f9:
c5:cd:50:7f:02:fa:ab:e1:68:76:93:ec:d7:62:7b:
77:52:14:ea:3d:a7:b9:97:7e:5d:17:43:91:7f:a5:
92:62:92:a2:bc:dc:e3:32:81:30:d5:e0:ed:7b:7e:
0c:b4:52:34:43:37:ba:1c:a8:26:c7:92:ee:cd:74:
41:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F9:8B:2F:9E:D4:E8:9E:D4:7A:5B:D2:F0:59:84:ED:5D:05:69:3C
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Z_mLL57U6J7UelvS8FmE7V0FaTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e04a::/48
Signature Algorithm: sha256WithRSAEncryption
0c:2f:f5:4b:27:14:dd:a3:20:25:0a:cd:f9:b5:80:1a:f2:d2:
3d:90:5c:ef:3c:b7:71:48:1f:f0:f9:5d:7d:4e:24:16:e0:f8:
36:c1:a2:b8:08:e2:64:a6:95:5f:44:01:d5:ca:5f:af:d1:bc:
8e:27:0b:26:f7:93:75:b3:a9:55:fd:59:54:d1:bf:57:c8:05:
3b:97:c4:09:62:25:6c:0b:3b:42:59:fb:30:49:7e:f3:25:87:
e4:98:a0:b5:a0:0c:c2:42:0c:2a:dc:de:21:d8:7b:de:e7:8b:
c0:15:bc:ec:5d:fe:10:3e:bf:8f:59:74:dc:f0:27:4c:12:34:
b5:29:15:a8:98:04:84:b0:a3:65:f8:f7:ef:31:b3:ac:35:70:
7a:01:6f:72:71:65:46:b2:76:ea:7c:4e:78:04:7e:c3:52:e6:
c1:4e:0c:5b:02:9f:52:09:4e:f2:d1:79:3d:ae:ed:bf:92:c5:
6b:1f:fe:56:c8:f2:3c:e4:26:dd:36:ba:55:e0:ab:c7:64:20:
64:91:b3:06:5e:fd:16:79:49:a7:1d:89:f8:78:4a:eb:ea:08:
20:e0:29:55:45:62:3e:df:c8:f0:c8:74:a0:41:ed:a1:51:86:
6c:ce:42:47:c0:51:a5:35:c1:10:44:10:e3:ee:10:6a:cb:06:
d1:1b:e2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org