Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/968a85-01d3-4b0c-b920-66cbf876ab3e/1/rjzgUvhCqTXSNtu5hOARr0QGlkA.roa
File: rjzgUvhCqTXSNtu5hOARr0QGlkA.roa (raw, json)
Hash identifier: 5NLGy1PUgGlFMqfGB0Ljgjc9F5jgAIY1tmrHubQgepE=
Subject key identifier: AE:3C:E0:52:F8:42:A9:35:D2:36:DB:B9:84:E0:11:AF:44:06:96:40
Certificate issuer: /CN=e01f196dd7edd1131d0220fdb777122621bbbdef
Certificate serial: 01839EA56F8FA2543938BF7F466A360CBDB0
Authority key identifier: E0:1F:19:6D:D7:ED:D1:13:1D:02:20:FD:B7:77:12:26:21:BB:BD:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4B8Zbdft0RMdAiD9t3cSJiG7ve8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/968a85-01d3-4b0c-b920-66cbf876ab3e/1/rjzgUvhCqTXSNtu5hOARr0QGlkA.roa
Signing time: Mon 03 Oct 2022 16:19:45 +0000
ROA not before: Mon 03 Oct 2022 16:19:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202729
IP address blocks: 2001:67c:a6c::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9e:a5:6f:8f:a2:54:39:38:bf:7f:46:6a:36:0c:bd:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e01f196dd7edd1131d0220fdb777122621bbbdef
Validity
Not Before: Oct 3 16:19:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae3ce052f842a935d236dbb984e011af44069640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:90:a9:9f:b5:f2:3a:01:0d:47:bb:34:6d:e1:
0f:37:24:47:b0:c9:ea:af:d0:c1:3e:55:a2:32:b1:
2c:e6:a9:4c:70:3e:4f:a2:2b:d2:b9:62:29:3d:5c:
e2:46:23:12:66:75:59:ca:33:ee:f1:68:bb:44:c3:
55:1c:e2:be:32:be:18:73:16:39:d6:db:21:c2:43:
31:da:80:23:9c:64:a4:6c:b1:1d:5f:65:d6:7f:65:
20:44:8d:e1:46:bb:fe:cd:42:c1:85:30:1d:1d:ad:
3a:74:f2:ac:d8:76:b2:41:9d:24:90:2e:0c:f1:2e:
0e:93:3c:d9:ae:ec:2b:5c:80:72:46:b6:61:6c:db:
c8:82:36:37:c8:6b:56:e9:33:4a:c9:88:8f:f3:86:
e6:72:1c:a2:95:93:6c:bf:7e:26:f4:23:11:5b:7c:
7b:66:e6:61:b2:77:f7:97:db:91:70:4d:36:c5:83:
f5:82:38:ac:4f:23:84:01:71:c2:b4:74:c2:cf:bc:
2f:fc:c4:28:c9:6f:21:e9:f1:d8:dc:e2:e3:cd:c7:
46:4a:b7:15:1c:10:a1:db:26:dd:f9:3c:61:94:63:
41:51:10:f5:19:df:55:12:65:97:4c:6a:1c:3b:50:
0e:ef:39:f0:86:f1:c8:cc:08:7f:78:85:28:dd:14:
ad:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3C:E0:52:F8:42:A9:35:D2:36:DB:B9:84:E0:11:AF:44:06:96:40
X509v3 Authority Key Identifier:
keyid:E0:1F:19:6D:D7:ED:D1:13:1D:02:20:FD:B7:77:12:26:21:BB:BD:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4B8Zbdft0RMdAiD9t3cSJiG7ve8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/968a85-01d3-4b0c-b920-66cbf876ab3e/1/rjzgUvhCqTXSNtu5hOARr0QGlkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/968a85-01d3-4b0c-b920-66cbf876ab3e/1/4B8Zbdft0RMdAiD9t3cSJiG7ve8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a6c::/48
Signature Algorithm: sha256WithRSAEncryption
35:f3:37:b9:d1:91:32:ab:da:d3:f8:49:fc:96:8a:10:02:d4:
80:3d:e7:db:12:3f:77:2c:5c:20:cd:50:ec:5a:c7:40:ac:2b:
40:01:2c:a3:f2:b4:f6:b5:dd:96:de:3a:0d:7a:05:a0:e2:ae:
09:9d:43:ea:9c:79:8e:b9:2d:63:69:e1:65:1d:e1:b1:d3:80:
87:21:27:07:3b:91:ec:d8:bc:1c:61:1f:20:65:62:4f:6e:a4:
8b:09:36:05:a4:7a:03:0c:34:f5:b8:09:0f:e0:d2:75:de:ef:
c1:44:c4:60:9e:a1:8e:27:75:d8:8b:1e:4f:7d:3c:cb:9c:a0:
69:1e:bd:7b:7c:bf:0c:fb:67:b1:61:67:20:fd:ce:1d:d3:ba:
c6:f7:d8:54:1d:ec:73:ab:42:04:e1:a0:a2:80:9a:de:1e:00:
d7:19:0f:be:21:15:70:bd:19:09:e1:fc:02:97:56:ea:f2:55:
19:41:2e:69:2e:5a:63:03:3d:cf:7a:3a:c6:64:37:40:ac:d4:
9d:43:95:e5:61:fe:58:39:7e:05:57:b3:14:01:85:55:a2:4c:
1e:77:17:5c:ba:af:fb:f8:14:b8:b7:f2:96:ce:fa:fe:20:0d:
82:87:41:32:39:29:b3:62:98:92:3f:76:0b:42:bb:1a:63:26:
da:cd:9b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:57 2024 by rpki-client on console-fra.rpki-client.org