Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/ZJF2MXubhavJLIz0dZKroCwOkCI.roa
File: ZJF2MXubhavJLIz0dZKroCwOkCI.roa (raw, json)
Hash identifier: I/YUhn52xErUj7wGRcVqkcPB46i5SvRKmUjLA5y2b9s=
Subject key identifier: 64:91:76:31:7B:9B:85:AB:C9:2C:8C:F4:75:92:AB:A0:2C:0E:90:22
Certificate issuer: /CN=a5a56ebf01e00349f673019180560c9a31aea871
Certificate serial: 018300021F3FE835F7EFC8B7A85C485A081F
Authority key identifier: A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/ZJF2MXubhavJLIz0dZKroCwOkCI.roa
Signing time: Fri 02 Sep 2022 21:01:22 +0000
ROA not before: Fri 02 Sep 2022 21:01:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44445
IP address blocks: 2a12:c6c0::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:00:02:1f:3f:e8:35:f7:ef:c8:b7:a8:5c:48:5a:08:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a56ebf01e00349f673019180560c9a31aea871
Validity
Not Before: Sep 2 21:01:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=649176317b9b85abc92c8cf47592aba02c0e9022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b1:8a:07:8b:b1:38:dc:85:30:1e:5e:c1:ba:
1c:98:8b:61:06:02:ec:73:f0:14:c0:7d:59:8d:51:
7d:fa:5e:26:18:b2:13:d6:30:55:6a:62:83:07:b6:
50:ee:51:27:b2:2c:ee:10:ad:9a:5d:cf:79:ac:84:
23:7c:82:0b:1d:a2:ef:17:38:ca:35:d0:d6:fd:66:
fa:05:bc:e5:a7:06:12:e4:bd:bf:e5:62:86:af:42:
17:2a:74:32:44:bc:1a:f8:c5:38:c6:e6:fc:75:9d:
63:49:39:de:54:1e:e4:c2:ef:1d:c1:b5:aa:df:ce:
40:27:55:7b:4c:a0:c7:27:65:ec:3c:3d:f3:af:b7:
00:61:f4:54:b8:12:e2:77:44:ae:9c:fd:96:ad:23:
5d:48:c6:9c:ae:64:b2:12:52:43:de:75:f9:86:46:
be:cd:22:d5:5f:c0:fe:82:cb:31:15:22:29:07:d5:
96:23:17:24:54:5e:25:08:bb:3d:c5:63:f1:a2:25:
be:4f:cf:13:35:99:1a:b6:0b:23:fa:bb:9f:77:31:
07:80:a0:a5:10:a6:30:a9:38:ad:04:49:6d:8c:a3:
c2:e3:b9:bb:fa:13:4f:b5:16:5f:c8:90:af:20:20:
ef:c8:97:e0:f5:b4:00:07:8e:82:65:4d:9a:12:5e:
a7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:91:76:31:7B:9B:85:AB:C9:2C:8C:F4:75:92:AB:A0:2C:0E:90:22
X509v3 Authority Key Identifier:
keyid:A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/ZJF2MXubhavJLIz0dZKroCwOkCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/paVuvwHgA0n2cwGRgFYMmjGuqHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:c6c0::/29
Signature Algorithm: sha256WithRSAEncryption
6d:4d:f7:2c:90:6c:ab:9b:9b:21:18:81:d5:a6:21:02:38:7b:
45:fd:04:fa:fe:5f:55:e8:21:a7:33:d2:ec:19:03:e8:f4:eb:
8a:de:3b:78:7a:77:00:b1:c5:e0:de:19:5a:ca:14:33:47:6b:
c0:cb:3b:7b:5e:9b:77:f5:08:93:18:5c:0e:d7:7e:a3:25:b0:
ff:bc:bd:b6:ed:1f:6b:ca:15:c5:12:c5:3d:9d:db:01:c7:9c:
aa:2f:24:c7:c8:1e:59:57:3b:7e:5e:77:90:8a:78:17:7e:df:
d7:1f:05:88:00:e9:4d:74:53:bc:da:25:95:78:c1:8a:f8:8e:
df:35:47:02:17:0a:70:5d:03:85:da:31:11:5c:86:85:f1:a3:
98:f0:a6:1a:75:a0:f0:2a:d6:54:52:7e:03:a2:ce:7e:fc:58:
6c:27:57:9a:d7:f0:3a:dd:77:6e:35:f5:15:24:ed:fb:8e:a1:
e7:22:61:f1:1c:40:da:66:42:93:40:ae:63:de:b7:d8:28:81:
1b:99:19:f1:29:4b:a1:74:8f:de:26:d5:ed:1e:48:53:58:00:
0a:5b:97:3a:fb:8c:36:46:cf:77:18:06:0c:97:a1:43:38:4b:
05:b9:29:ab:c9:c7:d0:ca:25:c1:a0:4f:94:a4:27:e5:86:a4:
8f:9c:89:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net