Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/Z1HTb5ZlEdGfQoxCajvZTCsASZ8.roa
File: Z1HTb5ZlEdGfQoxCajvZTCsASZ8.roa (raw, json)
Hash identifier: 2Tr5emOz21kW8EuQTiNhDwdZl8mBf+zEmsCOnAjaCH0=
Subject key identifier: 67:51:D3:6F:96:65:11:D1:9F:42:8C:42:6A:3B:D9:4C:2B:00:49:9F
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 06A09585
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/Z1HTb5ZlEdGfQoxCajvZTCsASZ8.roa
Signing time: Sat 01 Jan 2022 13:59:31 +0000
ROA not before: Sat 01 Jan 2022 13:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26769
IP address blocks: 2001:4de0:2205::/48 maxlen: 48
2001:4de0:3005::/48 maxlen: 48
2001:4de0:4105::/48 maxlen: 48
2001:4de0:2003::/48 maxlen: 48
2001:4de0:2203::/48 maxlen: 48
2001:4de0:3103::/48 maxlen: 48
2001:4de0:4003::/48 maxlen: 48
2001:4de0:4103::/48 maxlen: 48
2001:4de0:2204::/48 maxlen: 48
2001:4de0:3104::/48 maxlen: 48
2001:4de0:4004::/48 maxlen: 48
2001:4de0:2107::/48 maxlen: 48
2001:4de0:4001:5::/64 maxlen: 64
2001:4de0:4008::/48 maxlen: 48
2001:4de0:2106::/48 maxlen: 48
2001:4de0:3106::/48 maxlen: 48
2001:4de0:4001:1::/64 maxlen: 64
2001:4de0:2001::/48 maxlen: 48
2001:4de0:2201::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111187333 (0x6a09585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Jan 1 13:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6751d36f966511d19f428c426a3bd94c2b00499f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:34:10:96:eb:66:47:dd:da:55:8a:fb:a6:73:
e5:86:09:2c:a3:2f:6a:e1:df:b3:83:36:46:da:9d:
a2:90:c8:c1:2a:36:78:38:6c:c2:b6:70:48:6f:a8:
46:61:49:e6:be:dd:69:f4:e3:95:e3:9b:d7:85:6b:
e5:79:51:b3:6f:f4:91:04:85:e4:e1:d6:af:e0:8a:
f2:35:a2:97:f4:8b:82:a3:ef:aa:84:1a:55:7c:63:
dd:a9:80:57:c8:b1:87:77:ae:e8:4f:09:80:89:93:
e6:33:55:d8:8e:4f:ea:50:4c:9c:f1:0c:df:08:4b:
78:d5:d1:67:98:8b:39:ec:bf:97:a4:3f:22:a5:ee:
77:62:d1:45:2c:b1:7d:d9:25:96:de:f1:5e:65:f5:
40:a7:70:75:60:74:39:53:55:bc:0c:67:01:24:c4:
13:49:59:aa:17:ce:bb:47:72:c1:44:1a:95:ae:aa:
9c:b8:6e:75:57:55:27:ee:2e:f2:2d:f2:d3:74:0f:
33:33:d8:79:d6:4e:7b:71:ac:a5:d1:57:4f:24:c2:
8e:33:1c:97:88:f4:40:76:8f:f6:a6:01:7e:8d:ca:
73:39:fe:2e:1b:df:dc:76:20:b4:04:f5:90:54:15:
0a:1e:95:1c:bc:d6:c6:25:c1:20:99:04:79:f8:0d:
eb:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:51:D3:6F:96:65:11:D1:9F:42:8C:42:6A:3B:D9:4C:2B:00:49:9F
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/Z1HTb5ZlEdGfQoxCajvZTCsASZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4de0:2001::/48
2001:4de0:2003::/48
2001:4de0:2106::/47
2001:4de0:2201::/48
2001:4de0:2203::-2001:4de0:2205:ffff:ffff:ffff:ffff:ffff
2001:4de0:3005::/48
2001:4de0:3103::-2001:4de0:3104:ffff:ffff:ffff:ffff:ffff
2001:4de0:3106::/48
2001:4de0:4001:1::/64
2001:4de0:4001:5::/64
2001:4de0:4003::-2001:4de0:4004:ffff:ffff:ffff:ffff:ffff
2001:4de0:4008::/48
2001:4de0:4103::/48
2001:4de0:4105::/48
Signature Algorithm: sha256WithRSAEncryption
e0:60:af:50:68:97:b1:dc:77:15:e2:12:95:ae:a9:cd:03:b2:
05:9c:7b:8e:bb:f7:e6:cc:3a:33:6b:74:81:60:29:fc:57:e5:
74:66:41:e6:6d:9b:89:d9:ca:4e:cb:4d:70:2f:14:08:5c:23:
d0:18:fe:5f:63:6c:fc:e3:28:04:1c:a4:94:66:18:09:b9:e5:
73:7f:64:be:fa:2f:8b:f9:a5:a8:a3:be:b2:e8:95:db:1b:a0:
44:bc:bf:23:fc:78:15:d3:4b:4f:24:76:7f:c0:3a:da:6d:5e:
25:e0:92:97:49:ab:15:ab:f4:b4:d2:4f:94:d8:b9:2f:cd:b6:
ac:69:72:6c:5b:8d:b7:6c:c2:fd:41:f3:29:af:cd:d2:24:d1:
e3:29:af:15:0b:80:b7:b9:08:85:c5:87:d6:29:e3:25:31:c8:
cf:48:f8:2c:22:d0:dc:2b:c2:8f:69:b9:29:d1:fe:8c:c1:d6:
65:a8:ee:9c:09:1e:07:60:b2:86:c9:4d:88:3e:61:25:bf:25:
6c:db:86:dc:50:01:b0:e5:c7:c0:3a:79:90:e4:5e:7e:18:d0:
5b:b2:8a:07:0c:69:ee:2a:4c:b4:4f:35:ec:44:7c:8f:b7:41:
84:05:2b:2a:59:84:2d:ca:4e:ff:f6:91:44:62:b8:6a:bc:c6:
14:7b:af:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org