Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/ZU50LWQ6AbtGR9n65Acf48A2304.roa
File: ZU50LWQ6AbtGR9n65Acf48A2304.roa (raw, json)
Hash identifier: Hj7ykV9GlPdH8rfrGjGa0eUL0QYrZq9dsgJEn/GcRjQ=
Subject key identifier: 65:4E:74:2D:64:3A:01:BB:46:47:D9:FA:E4:07:1F:E3:C0:36:DF:4E
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 078F9900
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/ZU50LWQ6AbtGR9n65Acf48A2304.roa
Signing time: Sat 01 Jan 2022 05:52:22 +0000
ROA not before: Sat 01 Jan 2022 05:52:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212425
IP address blocks: 2a0f:607:1100::/44 maxlen: 48
2a0f:607:1052::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126851328 (0x78f9900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:52:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=654e742d643a01bb4647d9fae4071fe3c036df4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:24:f2:27:45:b4:95:3c:15:91:42:26:97:ce:
1f:78:69:5f:28:f9:92:66:b7:f1:60:09:51:66:9c:
d3:c8:75:7e:08:be:54:5e:96:d6:64:a9:3f:c8:44:
62:16:44:39:98:c8:48:83:ec:85:eb:8d:52:ff:46:
35:36:dc:b3:fb:5f:cc:53:a7:cc:03:3e:63:2f:40:
91:f5:1e:8e:8f:94:b3:59:e7:22:c6:86:6b:b5:c8:
ad:00:51:2c:e5:f9:b4:c6:a9:e0:e8:e8:e6:5f:2e:
8d:e6:fd:3c:d4:99:7e:8a:15:6e:2c:a2:ee:90:f8:
f2:b9:e8:bf:49:74:74:30:42:9a:30:a5:52:5a:89:
4c:9c:22:3c:f4:3b:43:6a:c2:fb:ad:4d:c3:b4:a0:
a1:cf:60:0e:1b:17:8f:16:e9:2d:82:fb:2b:0d:2b:
12:7d:ae:b2:a6:6c:8a:2f:da:13:5c:e8:d4:f1:e0:
b5:31:42:32:7c:1b:18:69:d4:fd:68:47:71:21:f5:
63:95:74:81:9b:5c:2d:ee:54:72:a3:d1:7e:d9:61:
f8:24:89:71:3c:ff:62:17:9a:88:db:55:17:e6:88:
67:7b:f2:08:c4:b0:e8:cd:e7:20:ff:d3:f8:fe:d8:
41:06:73:e6:18:6b:88:96:0a:25:88:0c:f7:d1:0e:
a8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4E:74:2D:64:3A:01:BB:46:47:D9:FA:E4:07:1F:E3:C0:36:DF:4E
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/ZU50LWQ6AbtGR9n65Acf48A2304.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1052::/48
2a0f:607:1100::/44
Signature Algorithm: sha256WithRSAEncryption
51:43:74:ec:5e:b9:e9:db:06:05:bb:7f:21:1c:31:e9:6b:d0:
ee:9a:e9:b0:d9:ad:dc:a3:6d:05:dc:cf:38:e5:ad:5f:60:b2:
08:b9:69:20:16:2a:4d:5f:1d:34:3c:e1:a0:0d:e3:61:d3:75:
35:67:ab:3f:e9:97:25:8b:ca:96:54:0c:a4:9b:38:15:8d:d1:
a3:6c:4f:03:2a:be:34:f8:b9:5f:79:09:9e:e7:57:45:e5:75:
50:68:e5:e2:c5:87:0c:48:58:3a:63:d0:52:f5:56:0a:c8:dd:
03:6d:2b:8f:18:bc:af:85:a4:38:60:41:aa:6f:fe:15:a0:3d:
6c:15:b4:6d:0d:bb:af:46:0b:2d:d1:8f:d3:dd:5c:2f:8d:15:
d2:1f:04:2e:83:5e:32:f9:f8:ff:e9:e2:b9:8d:9b:cb:ca:7d:
dd:b6:79:2f:c3:5f:5a:83:f3:9d:1b:c0:d6:ec:d4:01:05:50:
77:df:69:bf:dd:87:1d:8f:d1:bf:a6:e2:e6:e3:e8:83:14:15:
92:c4:a5:ee:e0:54:3c:cc:d5:05:b5:c3:f1:e7:a4:c8:a2:6d:
94:e7:4a:9d:dc:45:a6:f5:de:57:ed:57:e2:0c:3a:12:ef:f0:
30:4e:ba:84:d0:88:86:1c:4f:5b:88:a5:3a:8b:10:63:77:5f:
dd:8c:ae:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-ams.rpki-client.org