Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1zJ3Wtm3Hwbhnz3B0wMZIc30-24.roa
File: 1zJ3Wtm3Hwbhnz3B0wMZIc30-24.roa (raw, json)
Hash identifier: R4ZyYYL+/DW1jpCp120YRishxQS7OJKGJm4I07xcKlo=
Subject key identifier: D7:32:77:5A:D9:B7:1F:06:E1:9F:3D:C1:D3:03:19:21:CD:F4:FB:6E
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 08A3A9AA
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1zJ3Wtm3Hwbhnz3B0wMZIc30-24.roa
Signing time: Sat 01 Jan 2022 02:51:52 +0000
ROA not before: Sat 01 Jan 2022 02:51:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207791
IP address blocks: 2a01:190:151e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144943530 (0x8a3a9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 02:51:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d732775ad9b71f06e19f3dc1d3031921cdf4fb6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:22:ff:d2:ab:ab:37:7f:7b:4e:e8:c7:3d:
28:8f:0c:6c:3a:a3:b0:bf:1c:67:66:c3:e3:62:cd:
3e:be:cd:bf:bd:fa:dc:d3:22:3d:c8:da:62:27:79:
68:ce:9b:d9:97:e1:00:6e:99:64:27:4b:3d:98:f8:
f1:18:e0:08:ca:0d:62:49:23:87:71:40:cf:eb:bc:
c1:fc:67:a4:26:bf:ec:f8:b3:8d:55:1b:2a:c7:ee:
b2:d2:08:4c:03:e2:a8:bb:b1:3e:e7:96:bb:75:1b:
f2:bd:87:df:d1:b8:fa:7b:de:b0:7b:a7:0c:5a:2a:
90:a7:43:46:02:b7:3c:43:2d:3e:da:35:fc:9c:8a:
22:05:7d:c6:57:f0:62:6d:5f:43:75:91:5b:c3:ed:
17:50:37:2f:e6:c7:cc:74:fd:6c:57:93:89:66:e2:
41:64:ec:58:2e:0f:4c:12:6e:db:9d:3e:57:e3:2f:
9e:9c:24:eb:35:08:69:1d:1d:2e:9a:4e:0a:06:8f:
44:59:5f:b5:a6:6d:7d:87:25:18:da:ca:ee:5f:9d:
16:0f:5c:76:d2:51:c1:64:b5:0b:ee:a1:67:e7:0d:
44:9a:9d:ea:c3:3b:6f:0c:0a:84:6d:7a:53:48:cf:
c8:63:da:ea:43:a1:63:11:b7:9d:a7:72:a5:50:bd:
5c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:32:77:5A:D9:B7:1F:06:E1:9F:3D:C1:D3:03:19:21:CD:F4:FB:6E
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1zJ3Wtm3Hwbhnz3B0wMZIc30-24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:151e::/48
Signature Algorithm: sha256WithRSAEncryption
29:1f:4a:ff:d3:74:fb:1a:86:7d:67:23:df:6a:90:58:38:65:
79:c2:f6:9c:16:4e:18:e2:58:c1:81:ad:8c:68:04:1f:16:3c:
7b:39:46:82:17:a2:10:69:9e:67:75:26:49:ff:81:fa:36:44:
88:62:0c:a4:39:9a:ed:ff:81:4c:4c:e1:24:3b:20:45:84:5f:
61:75:73:e2:9d:4f:0c:e8:b2:e5:ba:46:27:f6:7e:66:97:48:
3d:0e:df:72:9f:92:70:d5:62:50:2d:32:d7:02:0f:a5:dd:08:
fa:c4:1e:6e:50:c5:8c:bd:c9:9b:d1:f6:6e:15:b6:e5:27:67:
77:76:33:43:91:0c:ed:3a:2f:9b:5e:66:57:8e:68:ba:30:28:
62:e4:89:f0:33:51:17:2f:45:4a:f7:c4:32:a0:75:b1:86:59:
27:60:da:8c:c4:5e:22:ab:d0:ac:f9:69:1c:7c:f5:9a:7c:50:
bd:fb:2c:8c:14:a2:94:69:0a:bc:d1:8b:8e:cd:97:a1:07:b1:
3b:3a:1d:b9:1d:b4:ae:a9:53:f2:d8:52:3b:52:4e:e4:3d:04:
b4:0e:5e:57:91:32:81:5b:a6:39:6e:48:43:a0:70:4c:2a:6b:
97:15:fd:05:54:b3:66:8c:8c:b1:ab:a5:85:24:9c:78:12:9e:
25:57:c4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org