Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/zBNCnqUqniKxHHFXfgzFgZ0XuGI.roa
File: zBNCnqUqniKxHHFXfgzFgZ0XuGI.roa (raw, json)
Hash identifier: VMitiXIvunWqKn1RDPegAT010eAWKczgSr+odMIIp3U=
Subject key identifier: CC:13:42:9E:A5:2A:9E:22:B1:1C:71:57:7E:0C:C5:81:9D:17:B8:62
Certificate issuer: /CN=f764eed15c52b4c8110a222963dc7b7d4ba2d146
Certificate serial: 348827BC
Authority key identifier: F7:64:EE:D1:5C:52:B4:C8:11:0A:22:29:63:DC:7B:7D:4B:A2:D1:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92Tu0VxStMgRCiIpY9x7fUui0UY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/zBNCnqUqniKxHHFXfgzFgZ0XuGI.roa
Signing time: Sat 01 Jan 2022 04:55:44 +0000
ROA not before: Sat 01 Jan 2022 04:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203339
IP address blocks: 2a02:4840:1111::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 881338300 (0x348827bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f764eed15c52b4c8110a222963dc7b7d4ba2d146
Validity
Not Before: Jan 1 04:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc13429ea52a9e22b11c71577e0cc5819d17b862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:35:e1:19:c7:e7:af:d9:40:cf:d7:c5:fb:c6:
ce:fa:11:24:56:d0:68:29:77:78:0f:e9:8f:69:9e:
91:d9:60:26:8b:19:8c:cf:2c:0b:04:53:5d:66:14:
a5:60:02:9b:ea:45:80:9e:5a:00:83:04:91:af:3c:
94:62:a1:d9:e4:a2:01:f2:80:b1:d9:46:f8:2c:c4:
06:7a:6e:a5:19:0b:00:e8:63:67:60:a8:ab:85:9e:
a5:97:58:0a:43:75:3c:ed:8a:66:62:71:d4:00:ab:
10:9e:ad:79:18:8a:44:65:a3:29:5d:5f:d9:8d:1f:
0f:1d:de:7d:0a:52:0b:16:93:d0:36:5f:48:5a:a6:
9e:39:41:a9:0f:56:de:4a:c9:67:89:0f:ef:4c:66:
07:32:cb:74:da:4b:60:02:b5:28:7c:6b:79:7d:8f:
1b:50:10:e6:f1:8f:66:b2:46:13:f2:2c:df:3d:e7:
2d:92:63:03:b1:4a:53:91:22:a6:22:4d:a2:f4:2e:
be:0a:b4:e1:36:ab:1a:5f:86:8f:79:4e:3c:40:ee:
06:07:d3:ed:86:b8:87:ab:77:ed:51:5b:0c:65:49:
96:17:83:aa:5d:07:0b:17:38:a5:16:6b:7c:b3:b6:
1f:27:7b:1d:23:58:10:9d:9f:af:a4:e8:7f:9b:bd:
a4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:13:42:9E:A5:2A:9E:22:B1:1C:71:57:7E:0C:C5:81:9D:17:B8:62
X509v3 Authority Key Identifier:
keyid:F7:64:EE:D1:5C:52:B4:C8:11:0A:22:29:63:DC:7B:7D:4B:A2:D1:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92Tu0VxStMgRCiIpY9x7fUui0UY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/zBNCnqUqniKxHHFXfgzFgZ0XuGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/92Tu0VxStMgRCiIpY9x7fUui0UY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:4840:1111::/48
Signature Algorithm: sha256WithRSAEncryption
05:ca:e6:73:27:02:bc:c5:0e:1b:86:26:6a:3a:04:ea:0d:56:
d8:5b:7e:23:a7:81:23:ab:86:14:61:36:e2:42:77:ca:48:6c:
06:59:23:e6:15:24:dc:eb:65:ae:97:53:70:f7:6f:2d:fe:62:
9d:27:0d:43:29:a6:57:9f:4c:03:24:74:c2:c1:19:33:11:d4:
3e:2b:ba:af:90:90:ab:69:64:e9:d4:5b:c4:36:22:b7:f9:20:
60:b3:12:bd:79:cd:9f:7f:3f:11:c1:54:d6:5f:4e:01:90:2c:
88:6b:8c:69:49:fa:40:94:b0:c2:74:2f:ea:1b:56:7b:b1:21:
02:da:b0:21:50:41:8a:cc:e7:37:f0:de:b1:ac:3e:7b:4c:10:
9b:1b:25:46:8f:aa:07:7a:b4:9f:fb:99:98:64:bc:51:16:dd:
fd:d3:bc:ed:fa:0c:59:0c:12:dc:2f:20:26:20:ea:d0:5d:db:
14:0d:34:d8:84:2a:ee:64:dd:1d:6d:15:85:8d:dd:fc:9c:c2:
44:82:71:d4:92:e6:17:1c:97:ab:40:f9:c4:06:ff:50:f8:a2:
4a:81:f1:a8:ca:f7:47:65:15:6c:8f:23:59:5f:52:34:93:fa:
ae:00:39:2c:ed:ed:6c:13:c7:e9:d4:b6:4a:7f:82:3f:0b:7f:
87:2b:1f:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:58 2024 by rpki-client on console-ams.rpki-client.org