Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/dZyENp0YYyWJdQcMNde8S-tZjUE.roa
File: dZyENp0YYyWJdQcMNde8S-tZjUE.roa (raw, json)
Hash identifier: /bM+ZpRC+yuJAsSyCv4ROngkHq7OiuXEXZt7Fn5/HVI=
Subject key identifier: 75:9C:84:36:9D:18:63:25:89:75:07:0C:35:D7:BC:4B:EB:59:8D:41
Certificate issuer: /CN=1b1b4b5c2daaa6fc35071f438f968af6ff6ca4da
Certificate serial: 6411B4
Authority key identifier: 1B:1B:4B:5C:2D:AA:A6:FC:35:07:1F:43:8F:96:8A:F6:FF:6C:A4:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/dZyENp0YYyWJdQcMNde8S-tZjUE.roa
Signing time: Sat 01 Jan 2022 01:01:11 +0000
ROA not before: Sat 01 Jan 2022 01:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210577
IP address blocks: 2001:67c:13dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6558132 (0x6411b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b1b4b5c2daaa6fc35071f438f968af6ff6ca4da
Validity
Not Before: Jan 1 01:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=759c84369d1863258975070c35d7bc4beb598d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:48:9e:16:1f:78:01:11:30:61:3f:7a:d5:01:
51:d2:cf:4c:c8:f0:50:d0:9e:57:0b:71:1a:7c:8f:
bc:1c:5a:6b:cc:de:e0:a6:4c:06:b7:96:cd:dd:c5:
fb:20:ce:da:a3:7d:9a:3b:59:44:45:87:d1:15:62:
c8:84:fb:ac:83:3b:29:50:f7:1a:a6:0a:31:f3:b9:
b3:ed:b7:8d:64:01:79:1e:c5:07:4d:d0:78:f0:02:
16:0b:d0:20:ce:cf:fd:02:67:71:e4:66:4f:bb:fe:
f8:59:a2:74:87:97:4f:39:09:68:76:fa:67:33:71:
7e:4e:8f:f6:a9:d7:6e:6b:cc:5c:37:d6:d9:0e:01:
94:93:b4:91:ec:df:94:08:6f:ab:74:45:58:b0:34:
2f:c5:4d:43:ad:bf:cf:35:ce:55:c3:b6:23:76:76:
28:bb:b7:bc:c1:ab:51:e5:3f:06:25:77:da:98:9a:
c9:bd:63:e0:66:70:71:a4:8a:20:37:91:81:f6:c1:
93:b6:37:95:53:aa:90:a8:72:79:f5:82:15:e6:f1:
f4:d7:ad:d1:34:be:21:b2:f8:67:b0:6d:dd:57:4c:
ea:7c:b6:11:d0:00:9f:b5:e0:12:bd:6b:2b:73:b2:
9c:11:6e:9b:e2:51:02:ee:3a:ca:28:15:9c:fa:96:
d2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9C:84:36:9D:18:63:25:89:75:07:0C:35:D7:BC:4B:EB:59:8D:41
X509v3 Authority Key Identifier:
keyid:1B:1B:4B:5C:2D:AA:A6:FC:35:07:1F:43:8F:96:8A:F6:FF:6C:A4:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/dZyENp0YYyWJdQcMNde8S-tZjUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:13dc::/48
Signature Algorithm: sha256WithRSAEncryption
87:25:7a:1e:bd:b2:97:5b:ea:39:93:04:77:c7:7c:5b:d5:fa:
ff:da:c9:a3:de:70:c4:12:70:83:89:c2:3e:e6:61:eb:c3:59:
60:72:d9:2c:6a:ad:b5:19:40:7d:05:ed:38:d4:8a:88:10:0f:
11:85:16:bb:d4:8a:84:b6:8f:41:c6:87:9e:be:b2:f3:d8:9c:
12:b1:4f:1f:61:25:b2:21:b8:7d:b5:57:23:71:f4:14:65:45:
c2:24:d9:20:be:da:66:75:f8:8b:b8:df:da:50:6b:18:6b:45:
71:a8:69:b1:89:0c:fd:e4:11:4d:20:33:d2:05:14:92:43:c5:
73:9e:2d:75:d4:42:be:87:5b:8a:94:44:30:48:3d:bc:e6:7d:
58:c9:6c:92:03:8d:17:5f:67:af:36:5d:12:83:72:5e:13:45:
66:f0:7f:3f:a3:b8:10:82:eb:ed:35:be:4c:9b:93:11:83:8d:
b9:76:0c:46:c0:8f:71:cc:c9:54:9a:7e:99:fd:98:cc:4c:61:
64:a1:d1:db:49:fc:84:9a:41:32:3a:df:31:68:e3:f6:0d:6d:
20:98:16:84:77:ac:b1:14:81:6c:fa:4f:ad:af:01:06:e6:7f:
60:64:0d:22:13:2b:32:59:9f:7b:61:b8:ee:0f:82:f9:a7:39:
2f:89:b1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:31 2024 by rpki-client on console-ams.rpki-client.org