Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/b8GWtfH-ByQWdt11IyOp6_EiLBY.roa
File: b8GWtfH-ByQWdt11IyOp6_EiLBY.roa (raw, json)
Hash identifier: KnOSJYbFspN6aSGC58bCttbrjrXm+AEl0cqt5jng2pY=
Subject key identifier: 6F:C1:96:B5:F1:FE:07:24:16:76:DD:75:23:23:A9:EB:F1:22:2C:16
Certificate issuer: /CN=325a8b688deadbb91efbe0772308bac9f304a533
Certificate serial: 0672A90B
Authority key identifier: 32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/b8GWtfH-ByQWdt11IyOp6_EiLBY.roa
Signing time: Fri 03 Jun 2022 18:59:20 +0000
ROA not before: Fri 03 Jun 2022 18:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204901
IP address blocks: 2a0b:6647::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108177675 (0x672a90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=325a8b688deadbb91efbe0772308bac9f304a533
Validity
Not Before: Jun 3 18:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fc196b5f1fe07241676dd752323a9ebf1222c16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0b:e7:5c:a9:a8:1d:43:11:85:e5:c3:4f:ee:
32:cb:ef:c8:7e:3b:e1:e1:90:e9:70:46:f0:7c:1b:
37:e1:af:5f:aa:a3:e7:bb:64:22:73:d3:bf:55:fb:
20:06:f9:4c:bf:c0:33:c5:ea:5c:dd:ac:49:f1:87:
51:f3:91:5a:75:16:cd:4e:a6:c1:6b:c2:84:38:88:
d7:42:d5:01:d1:8f:88:8c:7d:5c:11:c6:e6:09:de:
2f:23:5a:9e:b5:18:21:ec:64:0f:38:7d:06:fe:1b:
05:5f:9d:8e:2b:01:32:ca:8f:6f:49:1c:1e:74:0c:
03:20:da:31:d5:09:9e:16:10:21:bf:93:96:d5:80:
70:47:0a:d9:f1:a2:bf:c7:a9:d1:c4:a3:a3:77:6a:
72:05:26:bf:0e:00:2c:ec:f9:82:76:6c:91:1a:ca:
5d:7b:b1:b0:8f:4d:2f:ab:72:72:8c:aa:2b:76:36:
04:c1:c3:dc:77:da:7c:2b:a6:ce:e4:06:00:7c:76:
bc:99:22:b4:36:55:de:6a:08:7e:d6:1a:f5:ae:83:
b8:8e:a8:08:34:41:44:af:de:53:7e:8a:c9:4e:64:
a0:ca:d1:70:3f:bd:71:aa:61:fe:dd:0b:61:02:36:
0c:81:ec:ee:24:82:b2:e8:74:be:2f:9f:c6:b5:a7:
f7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C1:96:B5:F1:FE:07:24:16:76:DD:75:23:23:A9:EB:F1:22:2C:16
X509v3 Authority Key Identifier:
keyid:32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/b8GWtfH-ByQWdt11IyOp6_EiLBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/MlqLaI3q27ke--B3Iwi6yfMEpTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6647::/32
Signature Algorithm: sha256WithRSAEncryption
09:13:48:c9:61:d2:8f:e6:a9:33:12:e9:3e:71:04:96:b1:53:
1e:30:50:38:19:38:84:cf:2d:90:c9:95:d0:c7:93:4a:4f:96:
a7:c9:d7:36:03:c0:37:90:16:d7:2a:e9:51:dc:03:d2:65:55:
ad:79:a5:b8:af:80:68:1d:b8:ba:86:3a:2e:6d:f4:1c:a1:17:
7e:67:2e:c3:ad:56:34:af:7b:72:25:10:c2:25:4e:18:a7:b3:
bd:1b:b9:bc:e3:e3:3e:76:36:23:86:3a:87:53:8e:14:1b:0e:
f7:d0:be:f9:1b:7a:ab:59:34:e3:f8:bc:24:60:23:12:f9:4a:
3e:3e:ec:92:ac:03:5c:b9:2f:66:36:8b:9b:00:c3:aa:6a:2d:
b4:c5:fe:20:b5:21:81:b0:47:40:c8:93:fc:17:43:16:e9:39:
2e:fb:82:7d:b2:ae:0c:7a:0c:19:fc:7d:03:1f:66:06:5f:9c:
0c:ab:a6:a5:58:82:bd:9f:ef:c0:5b:07:e8:a7:06:57:e7:5b:
42:a7:8f:a4:4f:d6:cf:ce:95:90:ef:21:2c:a7:3e:2d:a5:3b:
d1:07:51:d9:41:1e:e6:55:fc:e3:4a:31:92:40:56:cd:6f:90:
2f:e8:fd:da:05:e3:1d:40:18:7c:0e:ef:45:35:d1:f9:62:a8:
38:ae:92:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:48 2024 by rpki-client on console-ams.rpki-client.org