Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/584691-a971-4587-a7a5-8cbb6e7822d2/1/ZXktZgOg1aEk9lNEGVhBebGb9CM.roa
File: ZXktZgOg1aEk9lNEGVhBebGb9CM.roa (raw, json)
Hash identifier: 9uFaJp7Sqy+i47hrnpS5eWyeL22cchlGksV7M1ypunA=
Subject key identifier: 65:79:2D:66:03:A0:D5:A1:24:F6:53:44:19:58:41:79:B1:9B:F4:23
Certificate issuer: /CN=6fcf19ef7e2f721caaf69cf82d4ca7c4b5415364
Certificate serial: 0BE1D4C8
Authority key identifier: 6F:CF:19:EF:7E:2F:72:1C:AA:F6:9C:F8:2D:4C:A7:C4:B5:41:53:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b88Z734vchyq9pz4LUynxLVBU2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/584691-a971-4587-a7a5-8cbb6e7822d2/1/ZXktZgOg1aEk9lNEGVhBebGb9CM.roa
Signing time: Sat 01 Jan 2022 04:03:47 +0000
ROA not before: Sat 01 Jan 2022 04:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205956
IP address blocks: 2001:678:430::/46 maxlen: 47
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199349448 (0xbe1d4c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fcf19ef7e2f721caaf69cf82d4ca7c4b5415364
Validity
Not Before: Jan 1 04:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65792d6603a0d5a124f6534419584179b19bf423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:01:83:96:cb:e7:6d:e3:0a:0b:79:b6:8e:16:
bd:8d:de:e9:2d:e3:f5:3a:a1:70:ea:9b:1c:79:d7:
8a:80:b4:b6:dd:b6:01:f8:34:b4:f6:c5:f2:26:13:
7d:df:df:e2:a0:8c:af:df:4a:a6:d9:8c:00:4f:12:
35:53:31:a6:39:0e:36:3a:56:fa:c0:2c:5f:17:5a:
f7:1c:43:ee:0e:ac:e3:ab:16:13:8a:c3:6f:af:64:
1d:5c:fc:b0:55:7e:9c:d8:77:8a:01:a7:c8:a3:c2:
43:17:a0:17:a1:3a:f4:48:7c:a9:73:97:14:67:39:
49:24:e5:ca:43:7c:9c:5b:4d:42:f7:8e:d1:0e:e3:
5a:9f:be:e4:a3:5f:dc:19:b4:a1:e1:d8:69:fe:99:
16:6b:aa:e7:e6:71:bc:fa:b2:08:74:90:c3:db:5d:
cb:98:de:c9:b2:07:de:55:6e:e8:e9:81:8f:06:bf:
62:0c:0c:85:87:14:29:cb:70:62:1a:5b:ad:56:8b:
eb:4e:e2:de:7f:53:0e:d4:5d:8e:45:bd:75:bd:7d:
bb:13:c8:ff:84:98:7f:76:ff:10:c0:d3:c2:b5:90:
bf:ae:40:b1:2b:52:0e:1c:13:b6:e0:f1:e4:7f:30:
95:6a:de:22:22:c5:b4:ba:a3:5e:de:de:30:62:d8:
39:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:79:2D:66:03:A0:D5:A1:24:F6:53:44:19:58:41:79:B1:9B:F4:23
X509v3 Authority Key Identifier:
keyid:6F:CF:19:EF:7E:2F:72:1C:AA:F6:9C:F8:2D:4C:A7:C4:B5:41:53:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b88Z734vchyq9pz4LUynxLVBU2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/584691-a971-4587-a7a5-8cbb6e7822d2/1/ZXktZgOg1aEk9lNEGVhBebGb9CM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/584691-a971-4587-a7a5-8cbb6e7822d2/1/b88Z734vchyq9pz4LUynxLVBU2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:430::/46
Signature Algorithm: sha256WithRSAEncryption
03:52:cc:75:5c:82:fe:5d:b0:a5:8e:85:b0:52:69:8f:8c:2d:
53:22:58:ca:74:1b:c1:92:8e:96:aa:a7:c5:4c:f1:1b:ec:04:
42:b8:20:45:29:4d:07:03:21:f6:69:7c:dc:54:a4:bf:a4:8e:
b7:d7:a7:05:3b:f9:a5:54:54:b5:52:29:c4:46:a0:05:d6:22:
d3:d8:f4:53:2e:9f:cf:3a:48:83:69:58:7c:84:77:2c:c9:aa:
0d:cc:8a:18:53:74:e7:1a:8f:1c:03:b4:82:62:a1:72:b7:ba:
94:08:73:50:60:8f:f9:81:d6:ba:b5:fc:a1:74:92:57:3c:e7:
c0:4e:08:c9:86:0e:18:bd:0c:0b:c6:32:e5:e1:fe:fa:64:6e:
91:40:15:df:74:32:ab:00:83:8e:45:24:d3:b9:b7:15:ca:fb:
82:0f:29:f2:43:27:e2:7a:4f:71:5b:0e:3e:e8:7c:0c:4c:d5:
ee:65:88:86:86:9b:17:64:a7:b2:14:07:d8:9f:2b:20:2e:11:
f7:bd:19:d5:2c:51:8b:89:78:a0:54:b0:c0:32:28:89:d4:18:
d4:90:24:32:fa:af:3f:e9:98:64:1c:b3:d3:33:e1:63:36:4a:
5c:71:b4:c6:a5:da:a9:d2:d2:59:d7:2e:2d:c7:97:ff:51:1b:
98:27:d3:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:48 2024 by rpki-client on console-fra.rpki-client.org