Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/172310-3cb0-4bb0-91ae-4462a126d07d/1/Wzz4oXB6zQ50dajBdpE1ZDOhMsY.roa
File: Wzz4oXB6zQ50dajBdpE1ZDOhMsY.roa (raw, json)
Hash identifier: o23dWC45gg9NScouIqeyGvn4lN5HqGrt9+nUrwGPD8c=
Subject key identifier: 5B:3C:F8:A1:70:7A:CD:0E:74:75:A8:C1:76:91:35:64:33:A1:32:C6
Certificate issuer: /CN=f50e225bfb45218b997719804ea287f1751cf20e
Certificate serial: 17EDF835
Authority key identifier: F5:0E:22:5B:FB:45:21:8B:99:77:19:80:4E:A2:87:F1:75:1C:F2:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Q4iW_tFIYuZdxmATqKH8XUc8g4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/172310-3cb0-4bb0-91ae-4462a126d07d/1/Wzz4oXB6zQ50dajBdpE1ZDOhMsY.roa
Signing time: Sat 01 Jan 2022 02:52:10 +0000
ROA not before: Sat 01 Jan 2022 02:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58247
IP address blocks: 2001:67c:29d4::/48 maxlen: 48
2001:67c:29d4:8000::/49 maxlen: 49
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401471541 (0x17edf835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f50e225bfb45218b997719804ea287f1751cf20e
Validity
Not Before: Jan 1 02:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b3cf8a1707acd0e7475a8c17691356433a132c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:57:0e:76:0d:c5:92:32:fc:84:9c:ec:e0:
37:a3:13:5b:8a:97:d5:bc:cf:31:1f:a1:f2:07:7c:
92:12:30:e3:14:6f:b6:be:f1:02:7c:ad:af:ab:47:
9d:74:50:f7:7a:9a:bd:a2:2b:c7:02:b4:42:9e:90:
1e:8f:92:c5:e7:0b:8e:40:2b:f8:69:54:f3:23:69:
9e:c8:2f:b8:a4:8c:98:cb:52:94:1a:aa:92:89:bf:
ed:62:10:58:4e:00:60:28:0e:17:bb:a0:68:38:d9:
b7:03:61:f6:bd:58:5e:d8:4b:b7:f6:aa:f0:64:89:
23:f3:ca:55:f8:21:9e:8c:a5:a1:e5:f5:24:a8:b7:
27:cb:fd:8c:b2:2c:78:d6:22:d3:7d:0e:f1:67:4f:
41:e3:16:ef:f2:33:86:42:f8:b7:a9:09:c7:d0:22:
0f:23:cb:81:2e:de:57:f9:b9:72:e5:3a:25:4d:94:
be:b3:fe:39:6f:19:cf:f1:6a:28:b3:82:e8:5d:06:
20:d6:10:8a:fe:25:fe:f1:2a:ea:73:62:12:e4:ec:
d2:d1:96:2b:1b:ae:2a:98:4f:51:54:29:ac:fc:71:
12:38:ff:5f:ea:8b:67:04:b3:82:12:38:07:f8:51:
72:3a:52:05:8f:e1:d3:a3:9b:e3:46:99:b1:0d:a9:
81:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:3C:F8:A1:70:7A:CD:0E:74:75:A8:C1:76:91:35:64:33:A1:32:C6
X509v3 Authority Key Identifier:
keyid:F5:0E:22:5B:FB:45:21:8B:99:77:19:80:4E:A2:87:F1:75:1C:F2:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Q4iW_tFIYuZdxmATqKH8XUc8g4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/172310-3cb0-4bb0-91ae-4462a126d07d/1/Wzz4oXB6zQ50dajBdpE1ZDOhMsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/172310-3cb0-4bb0-91ae-4462a126d07d/1/9Q4iW_tFIYuZdxmATqKH8XUc8g4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:29d4::/48
Signature Algorithm: sha256WithRSAEncryption
61:7a:d8:a2:b4:7a:9a:27:19:00:e5:02:88:3f:5a:80:ae:3c:
14:cc:75:b0:70:5f:4e:e3:0f:00:c1:e8:78:fd:95:bc:65:ec:
06:f2:e3:f5:3e:0e:92:8d:f9:78:f5:a1:0f:1b:1c:33:3e:3b:
58:d0:64:67:e7:16:e8:9c:87:a9:1a:53:b9:7e:14:e8:ea:f2:
58:bc:f5:c7:84:b8:40:66:0d:ce:8a:6a:1d:a6:38:a6:27:83:
55:3c:fe:43:f6:ee:e1:28:57:d2:da:ae:8e:bc:76:a9:a3:d9:
67:b0:e9:28:75:c2:57:b2:56:0b:5d:e8:9c:31:25:76:f2:1c:
0a:89:a1:a4:c1:0b:b6:0c:a4:54:3e:93:94:f7:05:36:6d:cc:
0e:66:b7:8f:27:8a:b1:c4:ae:05:20:a4:66:a6:74:ff:f9:bd:
d1:22:2e:e4:23:3a:b8:b8:0d:99:fc:64:17:52:91:05:6f:a1:
21:0d:d4:37:d0:4c:47:52:dd:9e:34:1b:b9:a8:35:e8:c0:3e:
9c:bb:53:55:fc:0b:ec:92:c0:6b:7d:51:10:6c:a0:64:82:05:
44:b6:67:40:2b:23:ad:c1:16:03:f3:c0:c7:a4:f8:ce:2b:1e:
3d:b7:10:64:cf:c7:0e:1e:ca:b5:94:a6:aa:28:22:19:01:28:
4c:14:7f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:27 2023 by rpki-client on console-fra.rpki-client.org