Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/UCZNzeaZmU1PPnj4H6Wdh6VDDNs.roa
File: UCZNzeaZmU1PPnj4H6Wdh6VDDNs.roa (raw, json)
Hash identifier: SPKAQAo0O26HP8Wa4301yhv8dNRBp81eHbGF9sN6KSg=
Subject key identifier: 50:26:4D:CD:E6:99:99:4D:4F:3E:78:F8:1F:A5:9D:87:A5:43:0C:DB
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 08627FA6
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/UCZNzeaZmU1PPnj4H6Wdh6VDDNs.roa
Signing time: Tue 01 Mar 2022 05:48:11 +0000
ROA not before: Tue 01 Mar 2022 05:48:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210625
IP address blocks: 2a09:4e07:9000::/36 maxlen: 36
2a09:4e07:7000::/36 maxlen: 36
2a09:4e06::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140672934 (0x8627fa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Mar 1 05:48:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50264dcde699994d4f3e78f81fa59d87a5430cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b3:fe:55:20:3d:58:73:38:a1:e9:69:26:e2:
ba:30:52:6d:f0:f2:85:f1:bc:37:3e:87:df:fa:bc:
a1:69:ec:8a:67:da:3d:64:50:7e:d2:90:59:50:5d:
a6:eb:8d:48:7d:70:ff:48:6b:4d:47:9a:bf:3c:a9:
85:2a:4b:d0:ba:59:78:cf:2c:39:68:a8:4d:d6:b8:
7f:6f:2e:cc:aa:1f:3c:b2:7c:2e:2f:1d:f0:4d:61:
45:2d:f6:36:4d:8f:e8:94:a0:43:9d:9f:6d:a5:3c:
e2:06:08:92:a0:2e:ef:26:f1:09:1c:ff:d8:4c:e0:
b6:54:0f:85:1f:a6:42:78:0d:06:50:25:86:5c:eb:
a2:4a:c4:fd:b5:e2:62:3f:0c:55:c8:21:dd:1d:e0:
4f:d5:1f:1b:c6:0a:b1:be:3e:40:fd:13:76:a3:2c:
74:7b:70:d6:4a:c0:ae:00:54:73:50:e6:15:e9:ae:
5d:c8:7f:87:c5:89:54:2e:5a:6f:76:c5:f9:f3:31:
87:0b:08:38:9b:cf:10:b2:31:2b:5f:03:14:34:c3:
d1:bb:e4:1c:ed:bf:df:c2:d0:75:c4:a1:76:26:fb:
f8:aa:f9:29:22:4f:6c:42:e6:3f:95:ec:bc:17:b6:
5f:8d:d2:f2:66:3e:5d:3f:b9:fc:5d:ff:ef:b8:cc:
81:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:26:4D:CD:E6:99:99:4D:4F:3E:78:F8:1F:A5:9D:87:A5:43:0C:DB
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/UCZNzeaZmU1PPnj4H6Wdh6VDDNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:4e06::/32
2a09:4e07:7000::/36
2a09:4e07:9000::/36
Signature Algorithm: sha256WithRSAEncryption
44:95:4c:04:42:22:28:b0:09:db:97:72:9d:9c:f8:83:cb:bc:
da:57:6e:15:5b:cb:9e:8d:2e:87:41:cc:c4:62:c9:ec:ff:bf:
22:54:f1:15:63:d1:c0:7d:cf:0c:40:d7:81:48:73:df:99:80:
2a:9a:8d:b9:bf:15:bc:f1:64:ce:de:0b:fb:81:3e:b8:4d:35:
b1:ff:24:76:6a:06:18:8c:97:c3:78:2e:06:3d:75:b3:87:c4:
37:ce:6a:94:79:ce:8a:82:3a:ac:ff:a0:53:b3:b9:df:08:57:
c2:df:71:6c:25:2f:29:60:04:2d:68:49:e0:42:29:7b:66:95:
4e:9a:20:f0:35:cc:51:66:c0:79:a8:a7:48:04:eb:47:3d:e2:
88:0a:86:c5:43:4c:8c:00:65:8c:bf:8f:4d:b2:0d:74:23:15:
0b:e6:27:f6:04:44:a7:93:54:aa:7d:35:47:be:64:c4:d0:45:
f3:7d:1b:ac:3b:11:d3:36:cd:f7:39:21:25:a6:d7:de:7e:14:
5f:88:13:5e:f8:d4:ab:a7:b2:85:e3:25:9a:4d:5e:1d:16:86:
0a:ea:28:68:b4:c5:b8:ba:ed:00:f2:2a:d2:20:d1:b8:a8:c7:
2e:58:32:2f:3f:4d:21:14:cf:eb:2a:ac:1b:db:75:c2:25:3e:
8e:fc:59:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org