Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rZnjy4l3xYsuEIHFh1Ht9JBV3Ag.roa
File: rZnjy4l3xYsuEIHFh1Ht9JBV3Ag.roa (raw, json)
Hash identifier: 3BUm2q/JZqfesrKRkHNxZRgDllzhrurQ7JyRaaPCK5U=
Subject key identifier: AD:99:E3:CB:89:77:C5:8B:2E:10:81:C5:87:51:ED:F4:90:55:DC:08
Certificate issuer: /CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Certificate serial: 35B78D7F
Authority key identifier: AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rZnjy4l3xYsuEIHFh1Ht9JBV3Ag.roa
Signing time: Sat 01 Jan 2022 03:54:50 +0000
ROA not before: Sat 01 Jan 2022 03:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197895
IP address blocks: 2a02:7a00:6::/48 maxlen: 48
2a02:7a01::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901221759 (0x35b78d7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Validity
Not Before: Jan 1 03:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad99e3cb8977c58b2e1081c58751edf49055dc08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c6:06:76:43:2f:e1:bc:cd:c0:d6:d2:a8:6a:
7d:84:01:44:78:c5:ca:35:f3:d2:b8:07:e3:85:9a:
66:23:7c:3d:93:14:a2:d7:d3:c5:7c:b2:26:dd:bd:
95:49:d3:f2:3e:ce:1b:9b:70:dc:d9:65:01:97:db:
9a:af:7b:fa:62:b5:24:ef:6e:a5:78:9c:18:eb:fe:
9b:15:d2:1c:ed:3c:59:fe:0f:3f:5a:32:55:68:51:
c6:94:9c:a9:49:2b:9f:6a:57:d2:59:b9:74:49:41:
47:e5:29:25:8e:b7:e7:e5:e7:a5:d4:8f:bb:c0:7a:
33:bf:a8:7d:b3:c7:75:4f:f2:20:0a:a9:d5:21:02:
7c:cf:94:94:8a:80:32:4e:8d:58:ae:0e:7c:ae:cd:
5b:fb:2a:1c:20:6e:85:79:83:16:78:62:f2:27:df:
95:b8:72:82:c8:83:48:3b:16:d6:93:74:a9:d2:47:
8d:a6:ba:8e:75:6d:fb:b2:ea:d3:08:07:f6:f3:7e:
24:06:a4:b1:af:ba:55:7c:a1:81:77:38:8d:47:ce:
a9:17:8a:51:d4:d9:35:81:ac:e0:38:ef:08:1c:bc:
a0:09:c1:d2:36:5a:86:f8:ed:b1:07:58:70:10:a6:
15:90:3e:08:3b:bf:26:fd:84:33:1f:15:df:a4:65:
b9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:99:E3:CB:89:77:C5:8B:2E:10:81:C5:87:51:ED:F4:90:55:DC:08
X509v3 Authority Key Identifier:
keyid:AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rZnjy4l3xYsuEIHFh1Ht9JBV3Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rqwbISmrusZTn4DaZVDElyHQqMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:7a00:6::/48
2a02:7a01::/32
Signature Algorithm: sha256WithRSAEncryption
5f:f5:f6:af:8b:84:b8:8e:0d:35:09:db:aa:5b:60:b6:f5:55:
ad:10:bb:d1:d9:db:7f:0b:ad:a2:18:a7:04:06:12:dc:b7:41:
e6:d7:10:d6:bb:da:17:76:18:fd:72:2f:fc:00:8d:42:78:df:
0d:d3:36:9b:40:98:c8:d1:ea:f8:62:2d:1f:08:f8:e3:9e:e7:
d9:b8:c1:0d:1a:ff:2b:fe:f8:9b:ea:e6:de:fd:05:31:36:ec:
68:f5:81:79:fb:db:25:49:dc:aa:83:8a:46:e5:9f:d2:ae:d9:
f2:a9:01:62:65:ca:0b:f0:dd:c9:53:c6:1d:b2:ad:ff:85:a7:
18:63:86:9c:9e:e9:7e:45:dd:81:9e:03:f1:a2:d9:20:e4:8c:
01:41:92:73:ab:da:d1:ed:0b:d6:be:dc:9a:0e:27:4a:dd:83:
92:e4:34:45:0e:48:b7:ea:7c:df:b7:1d:fa:d5:4e:78:89:6b:
1e:08:83:e2:24:1c:56:2d:3e:61:2d:e3:01:54:c8:29:1c:df:
ba:6d:25:4f:84:c8:84:2e:9d:8f:9b:09:88:a4:00:04:6c:24:
d0:ff:1f:63:31:a4:e8:ec:5c:08:45:9d:67:95:9e:b6:83:98:
e8:c4:a2:fc:a9:b1:9c:a4:19:59:f2:2c:44:8f:ba:ca:72:e7:
63:52:ec:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:16 2023 by rpki-client on console.sobornost.net