Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/sZ2mlYeo4v6lRa6UM8dyzvueKCQ.roa
File: sZ2mlYeo4v6lRa6UM8dyzvueKCQ.roa (raw, json)
Hash identifier: mAuKe8Un2FlsJeMCSs6CVcfuEdpdxh4MGfxHKOPimwA=
Subject key identifier: B1:9D:A6:95:87:A8:E2:FE:A5:45:AE:94:33:C7:72:CE:FB:9E:28:24
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 013C9D43
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/sZ2mlYeo4v6lRa6UM8dyzvueKCQ.roa
Signing time: Sat 01 Jan 2022 13:05:35 +0000
ROA not before: Sat 01 Jan 2022 13:05:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 2a0e:da40:20::/44 maxlen: 128
2a0e:da40:da40::/48 maxlen: 128
2a0e:da40:1::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20749635 (0x13c9d43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jan 1 13:05:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b19da69587a8e2fea545ae9433c772cefb9e2824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:93:b1:7b:82:c7:29:82:99:cc:51:7c:58:fa:
10:6d:2e:0e:a1:a2:92:04:1a:ed:15:30:5c:07:fd:
9a:9f:23:2a:1e:44:72:c2:71:d8:71:0c:b9:cd:27:
a6:aa:b1:5c:81:4c:e3:e9:b6:9b:1b:55:34:4b:b2:
70:4c:21:b8:29:90:14:7a:07:a5:31:ed:0e:f5:93:
49:20:68:7a:7a:b3:b9:13:2a:b1:d6:dd:6d:37:24:
18:47:62:16:5b:ad:d3:f4:70:f1:b9:60:00:3b:63:
3a:82:02:2d:11:94:72:6b:d5:8d:dd:fe:3c:70:41:
9e:d9:bd:7b:4a:00:2d:2e:70:ed:b1:ca:5f:ec:89:
b5:0a:55:2a:cb:f3:dd:ad:66:f5:1a:0b:37:19:b9:
9a:d8:04:23:68:fe:61:3c:4a:5b:f7:2f:62:d9:70:
29:bb:e3:a0:90:94:74:88:ea:a5:ad:fa:01:7b:a2:
d9:01:1f:5d:b6:23:cb:3a:3f:28:69:42:a0:18:ff:
39:1b:22:a4:08:b3:da:2c:7f:0e:56:ad:ad:e0:a0:
cb:82:01:26:b1:5d:3c:c2:1d:4d:1e:14:ba:20:bd:
fe:53:3d:c9:07:78:2b:3a:b4:a3:19:57:40:46:8e:
e1:76:eb:5d:5e:eb:59:94:09:74:e5:11:e4:67:96:
5c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9D:A6:95:87:A8:E2:FE:A5:45:AE:94:33:C7:72:CE:FB:9E:28:24
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/sZ2mlYeo4v6lRa6UM8dyzvueKCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:da40:1::/48
2a0e:da40:20::/44
2a0e:da40:da40::/48
Signature Algorithm: sha256WithRSAEncryption
27:2b:8a:66:f3:3b:4d:fd:33:c8:50:e4:d3:d3:39:93:8f:94:
53:47:45:77:8c:16:2b:10:3a:a5:f5:82:b6:ea:8d:0e:e1:a9:
b9:2b:b9:86:ba:14:8f:39:ab:15:b6:03:45:a3:d7:cf:86:64:
01:59:54:4c:b4:19:92:66:30:8e:f6:77:83:ed:6a:87:08:16:
32:00:53:e9:8f:54:06:69:35:88:5d:b2:62:29:f5:e7:ed:d9:
2c:f6:1a:b1:a0:17:e9:49:5d:3e:79:c4:c9:3f:7e:f4:29:ec:
41:98:25:95:66:d0:f2:4c:9d:71:6e:10:59:1c:33:9d:27:68:
a7:59:54:b0:c5:d2:bd:93:4f:92:91:36:f9:67:a6:25:82:f0:
c6:b8:be:2e:29:f9:40:b7:49:d4:cd:9c:a5:a4:35:f4:71:4f:
9a:e4:07:a1:8d:7c:4f:6d:8e:de:db:6b:8a:11:63:d5:8e:1e:
a0:e8:e0:c6:68:69:81:d4:b7:91:6a:94:1c:24:f4:31:73:4b:
11:f8:c5:03:99:9a:7b:3d:32:0d:dc:b5:c2:67:07:48:7d:af:
89:c2:9b:b6:a4:b1:19:39:9c:88:29:be:ae:d6:82:bd:84:ed:
38:f8:c9:bf:9b:ee:36:73:06:e1:b6:3d:6d:c9:60:83:f8:9d:
4f:3f:0d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-ams.rpki-client.org