Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/zwLF4aItJsW-zEmHyIxJXpeTj_4.roa
File: zwLF4aItJsW-zEmHyIxJXpeTj_4.roa (raw, json)
Hash identifier: 0QgD+xMX5yxZlGVSdAw4dK2kbmfNQamJOg7CcjKwPwg=
Subject key identifier: CF:02:C5:E1:A2:2D:26:C5:BE:CC:49:87:C8:8C:49:5E:97:93:8F:FE
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 12946193
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/zwLF4aItJsW-zEmHyIxJXpeTj_4.roa
Signing time: Sat 01 Jan 2022 10:05:53 +0000
ROA not before: Sat 01 Jan 2022 10:05:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208828
IP address blocks: 2a07:8f00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311714195 (0x12946193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 10:05:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf02c5e1a22d26c5becc4987c88c495e97938ffe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:88:5f:80:3b:68:12:b1:67:af:d0:35:45:7f:
ff:84:69:23:28:bc:42:1c:23:c2:c2:c6:de:d4:57:
39:2a:a0:e7:ac:27:26:dc:20:72:33:07:a6:b4:1c:
1e:b5:6a:0f:34:eb:d9:2a:32:32:20:76:10:01:49:
4f:61:07:05:ca:92:cc:a3:0a:7c:c5:8d:4d:92:48:
2f:7c:a8:88:a0:34:b0:d0:da:a1:17:a0:bc:60:be:
5b:e5:c8:8f:f8:bb:b6:a9:09:b8:6d:6d:9a:6a:d9:
db:33:97:6d:81:30:c3:39:d3:a3:04:28:e7:dc:d7:
9d:a6:0b:94:2f:b6:f9:ad:b6:f0:d2:f3:2b:68:43:
42:f2:2c:6f:8c:99:65:d6:95:45:f0:79:95:d1:3a:
9b:28:49:39:62:b5:d3:9d:68:43:3a:47:86:78:c7:
97:99:9f:e9:c4:f7:35:a7:3f:5d:59:87:06:8c:a7:
1b:06:c3:0d:55:74:9b:4c:93:b5:3b:b7:a8:3d:54:
bb:85:da:5c:a3:8e:ab:dc:46:cb:18:ab:6a:15:fd:
da:4b:cd:52:c9:c3:dc:0e:e7:f3:c8:03:21:ec:08:
14:50:88:1a:19:0d:14:07:36:65:52:30:79:47:d7:
69:5b:ec:33:47:f9:1e:84:49:24:80:3c:b2:10:d2:
1d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:02:C5:E1:A2:2D:26:C5:BE:CC:49:87:C8:8C:49:5E:97:93:8F:FE
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/zwLF4aItJsW-zEmHyIxJXpeTj_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
59:a7:56:ca:36:49:6c:4a:c6:bf:31:b8:d5:54:43:b5:95:27:
89:2f:fb:a6:1b:e6:ae:f5:2e:fb:b5:d6:5b:95:60:5d:3f:4f:
d5:28:ba:53:4c:a7:8a:a8:bb:7a:61:01:cb:cb:6d:09:63:32:
a2:8e:73:0b:8e:5f:9b:0d:aa:37:ad:0f:70:73:0b:1c:c6:3d:
5a:bb:9f:6b:e5:97:dc:91:7e:28:d9:93:98:94:7b:04:70:63:
c2:d1:51:0f:a5:ac:73:51:20:e8:f6:27:e7:37:78:3f:f4:89:
67:4c:90:44:9f:90:20:55:65:91:00:53:2e:5f:2b:5b:6a:77:
41:3b:dc:77:ea:fb:84:a9:48:3c:b7:c3:86:de:61:b9:fd:f1:
fd:f8:f7:78:5a:96:6d:ae:1b:ca:b1:ca:60:30:cd:5b:5e:00:
e4:b3:9b:1e:b1:2d:e5:aa:74:9f:bc:dc:93:c1:4c:5e:db:b3:
38:34:1c:ec:9a:3f:5d:f1:4b:ff:3a:5b:e6:c7:47:ec:6b:22:
c9:54:86:d4:41:63:51:fb:1f:ae:b7:30:7e:2c:6d:04:42:72:
86:02:d5:20:89:83:55:6f:3e:13:a3:94:9e:c7:26:1b:7e:41:
5b:3e:25:76:28:c6:68:14:23:5b:52:21:de:98:c5:0e:98:21:
d1:8d:b2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org