Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/fa8xKluAqrajxjtsrOZo36jVkTU.roa
File: fa8xKluAqrajxjtsrOZo36jVkTU.roa (raw, json)
Hash identifier: xOpjKMtJMlhn+Q1j73ZT4pVeDwmwMMpp8Zm/CiwyrDM=
Subject key identifier: 7D:AF:31:2A:5B:80:AA:B6:A3:C6:3B:6C:AC:E6:68:DF:A8:D5:91:35
Certificate issuer: /CN=6f2c0c66b6b4612c8949800f09291cafa3865fd3
Certificate serial: 0EC553E0
Authority key identifier: 6F:2C:0C:66:B6:B4:61:2C:89:49:80:0F:09:29:1C:AF:A3:86:5F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bywMZra0YSyJSYAPCSkcr6OGX9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/fa8xKluAqrajxjtsrOZo36jVkTU.roa
Signing time: Sat 01 Jan 2022 03:00:56 +0000
ROA not before: Sat 01 Jan 2022 03:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206946
IP address blocks: 2001:678:2b8::/48 maxlen: 48
2001:678:2b9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247813088 (0xec553e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f2c0c66b6b4612c8949800f09291cafa3865fd3
Validity
Not Before: Jan 1 03:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7daf312a5b80aab6a3c63b6cace668dfa8d59135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:9f:5f:3f:92:bb:19:dd:c9:fb:bb:ea:2d:
8c:75:ad:f9:c2:b2:f9:8b:12:f2:37:86:01:b7:ab:
7a:8b:e2:ca:eb:d8:1e:92:49:53:ca:ef:cd:78:90:
f4:b6:28:41:21:0c:fc:5e:c9:7e:26:b4:72:dc:02:
5b:ae:bc:30:60:f5:e1:2d:c4:ae:f9:51:eb:f2:27:
30:22:32:84:52:c2:16:cd:84:50:f0:2a:f0:c6:0d:
df:6a:f3:61:30:89:5f:a8:a4:c7:cc:51:1c:d8:fe:
ec:a6:60:35:b9:7f:fc:c5:38:65:91:74:df:6a:e8:
6d:99:03:ef:65:bc:17:ec:07:9f:50:8a:b4:94:41:
d8:0b:21:86:76:b9:00:5e:65:f4:fc:ca:af:4f:e5:
c2:b0:2e:c9:76:f0:08:94:6f:fe:ce:53:b4:20:05:
e2:84:67:fb:72:68:ff:5b:e4:d8:70:cb:0a:5d:07:
21:d3:31:c1:4c:3c:f6:a6:ce:68:95:85:cc:dd:f0:
df:b9:bd:85:f1:d6:c8:3b:9c:f2:72:9b:7a:1d:fe:
b6:95:6b:19:2c:8f:dc:d4:2d:fe:df:ae:63:f2:59:
79:53:80:20:4e:ce:2b:16:04:54:72:65:39:96:75:
d0:36:fc:fe:c1:e3:a4:e8:7a:8b:a7:bc:15:ee:3e:
bf:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AF:31:2A:5B:80:AA:B6:A3:C6:3B:6C:AC:E6:68:DF:A8:D5:91:35
X509v3 Authority Key Identifier:
keyid:6F:2C:0C:66:B6:B4:61:2C:89:49:80:0F:09:29:1C:AF:A3:86:5F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bywMZra0YSyJSYAPCSkcr6OGX9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/fa8xKluAqrajxjtsrOZo36jVkTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/bywMZra0YSyJSYAPCSkcr6OGX9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:2b8::/47
Signature Algorithm: sha256WithRSAEncryption
62:d1:d8:58:9d:81:63:c7:23:98:ea:3a:7f:4f:19:2a:d9:c9:
29:13:06:0d:a1:52:25:8a:36:b3:84:d1:e1:0b:18:d5:aa:43:
d5:91:22:bc:3c:ff:9a:12:2f:de:2e:9f:27:45:80:c7:3d:ec:
ae:a9:95:dd:80:4b:77:e6:b5:9a:dc:58:6d:a4:e1:57:72:f6:
4b:97:4c:bf:d8:2e:26:35:e6:79:0b:c2:91:16:e2:9f:68:67:
3c:16:ff:38:76:18:e3:81:f2:7f:90:e5:0e:ac:40:9f:9b:92:
c3:be:bb:93:03:f6:a9:90:47:71:50:1c:e7:1e:00:11:e1:54:
2e:87:20:8e:4e:17:bc:38:db:3e:6c:64:3f:67:a6:e6:51:54:
1e:33:46:69:fa:a1:1b:f5:10:d3:46:85:e1:31:80:df:4f:ce:
38:21:da:77:06:d2:8d:8c:fc:61:95:9a:d3:4e:75:01:23:bf:
32:d3:62:c3:12:b2:02:14:1a:5a:5a:c6:d5:22:a7:80:b1:58:
4b:08:0d:16:a6:28:1b:78:4e:74:aa:f7:e8:83:1f:8f:2b:c9:
a1:6e:80:a6:fe:f7:43:9f:1a:5d:35:bf:c3:5c:ed:70:1f:39:
ab:05:2a:3f:07:0c:a5:97:14:a7:be:ac:75:05:92:82:60:c0:
bf:dc:70:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:54 2024 by rpki-client on console-ams.rpki-client.org