Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/m6eCjMkza2OLexBtAaWuDsqWnjU.roa
File: m6eCjMkza2OLexBtAaWuDsqWnjU.roa (raw, json)
Hash identifier: Sssy0S2Gz+Y+INvvt90MsGCaigifdlSst76fEwQ1JNY=
Subject key identifier: 9B:A7:82:8C:C9:33:6B:63:8B:7B:10:6D:01:A5:AE:0E:CA:96:9E:35
Certificate issuer: /CN=6f2c0c66b6b4612c8949800f09291cafa3865fd3
Certificate serial: 0EC452AE
Authority key identifier: 6F:2C:0C:66:B6:B4:61:2C:89:49:80:0F:09:29:1C:AF:A3:86:5F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bywMZra0YSyJSYAPCSkcr6OGX9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/m6eCjMkza2OLexBtAaWuDsqWnjU.roa
Signing time: Sat 01 Jan 2022 03:00:55 +0000
ROA not before: Sat 01 Jan 2022 03:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206740
IP address blocks: 2001:678:2c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247747246 (0xec452ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f2c0c66b6b4612c8949800f09291cafa3865fd3
Validity
Not Before: Jan 1 03:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ba7828cc9336b638b7b106d01a5ae0eca969e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:18:13:0f:ae:56:e8:10:c5:e3:82:4a:bd:4b:
6c:ad:e3:29:98:25:dd:8c:cd:44:70:50:c1:67:63:
42:d2:9e:07:cb:85:69:7b:60:23:4f:7a:31:77:56:
ae:88:9c:5f:11:e5:c8:f3:6f:0f:2f:d9:e6:f4:e3:
f6:24:ac:86:8d:94:1b:2b:f6:ec:8d:92:1d:37:f1:
49:6c:f9:93:0d:11:47:b1:d4:3f:6f:4f:8b:b6:bb:
ae:68:07:d6:a9:58:5d:cc:93:fd:df:73:5e:50:bc:
81:05:be:00:61:18:7f:ca:2d:f6:81:be:db:ea:47:
55:4e:77:89:24:c0:5d:10:69:48:92:ed:28:d2:62:
cf:96:2a:70:17:95:d1:dc:a6:ee:8b:ba:82:65:00:
d5:89:c9:f3:b0:31:36:e6:cc:9d:14:8c:f1:b3:a9:
3a:07:10:d6:89:2f:ee:2d:05:32:f9:ed:ed:45:48:
ba:a0:dd:a7:37:86:b8:23:4e:7b:7d:de:a2:9d:db:
2a:22:ef:a7:26:ca:69:85:5f:ed:30:b8:7c:1d:97:
67:4d:9c:14:7f:3f:b7:d5:2d:a5:84:f5:80:38:12:
db:db:9f:a3:ee:56:dc:c5:69:31:84:87:fc:f5:35:
bc:80:60:ab:d4:15:07:99:32:b9:c5:d0:89:20:b6:
0f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A7:82:8C:C9:33:6B:63:8B:7B:10:6D:01:A5:AE:0E:CA:96:9E:35
X509v3 Authority Key Identifier:
keyid:6F:2C:0C:66:B6:B4:61:2C:89:49:80:0F:09:29:1C:AF:A3:86:5F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bywMZra0YSyJSYAPCSkcr6OGX9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/m6eCjMkza2OLexBtAaWuDsqWnjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/bywMZra0YSyJSYAPCSkcr6OGX9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
a8:81:c5:58:c4:8f:08:4c:1d:31:b9:3d:63:f4:38:1e:d8:80:
5b:97:1b:12:76:4a:94:9e:bd:51:2c:5e:a7:19:0b:33:40:41:
d5:56:9e:38:11:5a:f7:22:18:82:54:e7:a8:3b:d6:8f:66:8d:
f2:51:eb:6e:9f:7f:dd:3f:e2:26:17:5f:f9:75:8b:65:28:8a:
1f:ad:1e:a6:0f:f0:0f:f7:50:4a:3a:fe:c4:b8:35:43:20:52:
3d:43:5a:3d:97:e1:66:dc:4b:77:aa:cd:9b:fd:86:cc:f6:a5:
5e:27:95:5c:bc:75:00:10:23:3c:bb:e8:8b:8d:f9:a6:01:9f:
56:0e:06:8b:a0:32:cc:61:dc:8f:54:d1:47:dc:9f:d1:66:1c:
8e:97:64:65:84:41:a9:f9:ea:07:68:08:87:b7:13:78:ee:5b:
53:44:8b:61:54:a5:77:8c:e8:04:9d:8b:31:3d:74:3e:23:fa:
57:31:43:48:00:db:26:3b:64:9e:cf:f9:90:32:90:f6:bb:98:
ba:b3:27:24:26:57:bc:43:50:7c:ff:19:f5:b9:e9:8c:a0:1c:
a5:48:47:69:be:12:6e:33:9e:66:ce:5f:00:e8:a3:b0:da:a2:
3d:39:b1:00:60:24:86:92:d9:71:96:cf:4b:82:9f:86:61:ca:
97:f4:7c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:48 2024 by rpki-client on console-fra.rpki-client.org