Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Xzzkd19ROWW2JGzadd4bo8yP_2o.roa
File: Xzzkd19ROWW2JGzadd4bo8yP_2o.roa (raw, json)
Hash identifier: vaMQDKB0yKhSrPJUYf1ewPjlwJP9QMRexsGTo8Te50E=
Subject key identifier: 5F:3C:E4:77:5F:51:39:65:B6:24:6C:DA:75:DE:1B:A3:CC:8F:FF:6A
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 018219CAE46EE8695F0233D717098E7999A0
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Xzzkd19ROWW2JGzadd4bo8yP_2o.roa
Signing time: Wed 20 Jul 2022 04:08:23 +0000
ROA not before: Wed 20 Jul 2022 04:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1054
IP address blocks: 2a0f:7880:201::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:19:ca:e4:6e:e8:69:5f:02:33:d7:17:09:8e:79:99:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Jul 20 04:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f3ce4775f513965b6246cda75de1ba3cc8fff6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e1:d7:0f:c3:44:27:0e:28:4b:e3:96:f4:5d:
d8:46:39:87:5a:61:52:65:5f:47:77:3c:f0:f9:1b:
07:d1:21:54:d9:e4:d6:1e:35:55:5b:b2:6b:4f:fe:
ef:bd:18:d2:71:fc:d5:85:fc:0b:3b:23:6d:ed:39:
4e:41:17:f8:eb:a3:cc:0f:3c:11:dd:16:56:e7:68:
de:28:c3:63:c3:7c:14:6b:ac:90:02:94:e6:f2:9c:
8d:34:9f:c9:68:af:e5:fc:39:c5:c6:92:6a:37:60:
54:80:33:3c:0b:53:0e:21:d7:2b:a8:1f:ea:57:3e:
ef:96:25:3d:f9:e8:6f:d4:c0:4f:2b:59:59:70:c3:
4b:53:e4:e2:bb:d9:ff:1f:72:b5:0d:70:ae:e8:c1:
2c:5e:3b:02:08:6d:1a:01:76:23:16:4f:2d:af:75:
72:73:dc:d0:03:59:f9:0e:e7:3d:1a:da:b9:a3:60:
6f:7c:37:17:d1:2d:1a:96:e5:07:f5:8e:b7:96:d0:
71:06:af:25:36:05:25:2e:2e:7d:18:26:7e:8f:b0:
c8:92:f0:b6:da:41:90:2e:3f:17:50:f1:6e:05:28:
3a:dc:5d:f7:c3:04:f9:c1:e6:71:53:2c:62:61:a1:
09:f1:b1:d3:01:d8:e8:2d:47:80:97:29:e9:42:bf:
f7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3C:E4:77:5F:51:39:65:B6:24:6C:DA:75:DE:1B:A3:CC:8F:FF:6A
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Xzzkd19ROWW2JGzadd4bo8yP_2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7880:201::/48
Signature Algorithm: sha256WithRSAEncryption
a3:c3:36:58:e2:81:c4:26:a1:63:a0:be:c7:cd:87:c7:1c:90:
6f:30:8f:f7:7d:20:0e:f5:e5:39:7b:3b:43:31:b4:39:c3:36:
64:72:69:65:af:00:0d:72:7a:3c:ee:5b:8d:5a:40:e6:34:cc:
39:ee:a4:97:f3:7e:6b:08:5f:1d:9c:15:71:3c:ce:59:75:2b:
26:a2:b4:5d:0e:15:64:72:78:62:5c:a6:a5:15:4f:24:77:ac:
19:74:61:10:08:ab:7f:67:20:5c:67:94:55:69:58:28:1b:84:
ac:1c:6c:e7:3b:78:fb:a0:cd:b3:1b:7c:ec:30:62:89:c4:11:
86:a1:e1:c0:9c:68:75:15:a3:56:65:2a:63:b8:98:69:ef:e5:
ff:e8:a7:7d:e3:a6:72:37:8b:86:f5:fc:f8:0e:e6:7e:08:32:
11:ce:58:de:91:42:36:4a:94:45:00:9f:b4:80:ac:50:33:c9:
8a:19:fa:a3:73:8d:30:a3:6a:9b:36:5f:96:16:c7:84:3d:08:
a6:fe:41:cb:92:81:9d:b6:c6:a8:8b:72:68:b9:bd:bb:f5:8c:
4a:d2:ad:66:57:db:93:6d:b3:7f:b6:04:4d:02:2c:9d:a5:b6:
66:ea:8d:54:14:9d:82:64:19:a8:96:62:a7:a3:b6:f1:e7:6e:
d9:80:0d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:04 2025 by rpki-client