Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/f_Zlzf8b6RqsLc_vbUI4Q5raiws.roa
File: f_Zlzf8b6RqsLc_vbUI4Q5raiws.roa (raw, json)
Hash identifier: D8Uy0EsP1TjCfOz/3p8qExtOdq1MinDaQQZPK3k7i6o=
Subject key identifier: 7F:F6:65:CD:FF:1B:E9:1A:AC:2D:CF:EF:6D:42:38:43:9A:DA:8B:0B
Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954
Certificate serial: 054E2D23
Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/f_Zlzf8b6RqsLc_vbUI4Q5raiws.roa
Signing time: Mon 20 Jun 2022 06:40:46 +0000
ROA not before: Mon 20 Jun 2022 06:40:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 2a0d:3900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89009443 (0x54e2d23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954
Validity
Not Before: Jun 20 06:40:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ff665cdff1be91aac2dcfef6d4238439ada8b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d4:5e:7d:13:20:5f:eb:00:0f:43:0d:3f:53:
ad:6b:3c:5f:2b:da:89:14:48:88:00:70:fd:f5:65:
8c:fe:bd:bb:1a:2f:a6:4a:69:da:21:ff:8e:74:f3:
64:ac:c9:66:ec:7c:ce:9b:fb:05:bb:4d:df:07:91:
b0:f3:37:87:d4:f4:c7:16:28:eb:ce:90:50:6f:90:
78:c9:67:08:86:fb:5e:08:15:10:fb:c5:f9:39:32:
a6:20:e5:99:f3:f3:1f:60:8c:91:3e:23:c7:ac:7b:
1c:48:0f:e1:48:d5:29:a0:9b:6b:d5:c0:62:24:ca:
01:a8:07:07:2e:c3:1a:38:f4:75:f8:b7:62:55:69:
53:9f:ec:9a:34:74:36:1e:4d:75:14:e8:71:f5:df:
01:a9:08:11:d1:bd:99:3a:e0:ef:d2:b9:ee:c4:2b:
cb:46:b6:14:0e:10:eb:fb:5d:40:cb:47:11:44:de:
db:c1:8a:4c:85:ca:61:71:45:25:26:b6:b9:bc:26:
16:d3:38:33:41:3d:85:72:bd:86:60:ad:fa:3d:47:
da:84:33:64:de:26:2b:91:d9:9e:39:b7:48:d5:8b:
03:a9:9b:ee:af:87:03:cd:4b:f7:87:b1:fa:3a:c6:
2a:6e:d9:7c:ec:18:a4:e7:98:02:95:88:96:1e:1e:
12:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F6:65:CD:FF:1B:E9:1A:AC:2D:CF:EF:6D:42:38:43:9A:DA:8B:0B
X509v3 Authority Key Identifier:
keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/f_Zlzf8b6RqsLc_vbUI4Q5raiws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:3900::/29
Signature Algorithm: sha256WithRSAEncryption
05:c0:fe:37:f0:7e:39:55:c4:3f:bc:f4:be:42:b4:f7:14:5f:
9e:86:e0:96:6f:2b:cc:91:fa:64:2a:26:8c:c4:bf:5e:8a:66:
05:32:11:50:fa:c5:fc:37:91:b4:a0:66:80:c4:47:4b:8e:2b:
3a:0c:1a:12:05:0a:a9:c3:85:06:bd:6c:e5:37:52:e1:25:ce:
c5:50:7d:2d:62:e7:a0:1a:29:3d:fe:b4:ed:b2:d2:7f:ca:18:
50:81:02:ca:da:01:39:5c:4c:30:9b:75:f6:a2:c6:af:1a:9a:
21:9d:38:77:4d:83:7d:2d:a6:da:a0:e3:c7:fb:da:3b:4b:35:
23:ac:c4:22:43:e4:ba:f3:d3:ff:e6:8f:fc:0f:dc:44:c8:df:
50:84:bb:fe:a0:a2:78:2c:3d:70:d6:dd:d4:49:ba:96:79:44:
21:14:d8:21:53:c1:3b:44:2a:a0:74:30:6d:e9:45:85:e2:78:
35:05:6c:c5:a8:62:d9:c4:f1:01:09:e9:16:e3:51:d3:b9:42:
b4:86:fc:ca:e2:ff:b7:03:77:e9:96:fd:ed:79:7e:09:39:3b:
5a:ad:d4:1d:0f:1f:eb:32:8f:0a:39:7c:56:59:2c:47:7a:b4:
d3:cd:bd:3c:81:0e:f4:38:28:83:18:e5:4a:71:1d:4a:8e:2d:
07:7e:fd:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:03 2023 by rpki-client on console.sobornost.net