Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/8PehaO1FmKPXRajtZlkCJsTDQIc.roa
File: 8PehaO1FmKPXRajtZlkCJsTDQIc.roa (raw, json)
Hash identifier: Uodowv8OkYNwBvwrYYR2sZC1QOTSs7N0fCHxtRxY8Ko=
Subject key identifier: F0:F7:A1:68:ED:45:98:A3:D7:45:A8:ED:66:59:02:26:C4:C3:40:87
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 018345108D8170F7A860F7B28478F344D3EE
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/8PehaO1FmKPXRajtZlkCJsTDQIc.roa
Signing time: Fri 16 Sep 2022 06:50:56 +0000
ROA not before: Fri 16 Sep 2022 06:50:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212789
IP address blocks: 2a0e:a6c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:10:8d:81:70:f7:a8:60:f7:b2:84:78:f3:44:d3:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Sep 16 06:50:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0f7a168ed4598a3d745a8ed66590226c4c34087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:dd:64:9c:22:93:6f:00:8f:51:35:43:e5:
a8:d4:e5:47:78:36:ad:87:d1:1f:de:9e:b1:90:d4:
a5:cf:90:9e:09:a0:a3:c7:a7:d4:b2:6e:d1:4b:14:
f7:9f:98:06:a3:26:9d:78:63:53:48:be:c0:04:32:
4b:d6:5f:8c:ba:b6:7d:23:cd:02:32:0e:ae:ae:c1:
8a:3e:55:05:28:2b:68:73:c9:a7:2d:67:6f:8a:7f:
c9:7f:86:3a:3c:2d:3e:88:16:59:57:d7:86:74:a4:
26:ef:36:a9:8b:81:63:9c:69:99:56:1f:cd:6e:37:
f3:72:22:db:59:63:e3:7c:cc:38:77:25:e7:50:61:
54:ae:1b:92:32:21:db:b0:a3:7b:62:f4:80:6e:42:
9b:1b:90:a4:a9:bf:8e:44:be:6b:a7:c8:20:eb:4b:
4d:7c:bc:20:09:b8:f7:15:43:67:67:7f:83:cd:a8:
86:a3:9a:44:94:25:df:99:33:17:90:7f:82:ec:b5:
89:20:a7:08:6d:ff:d1:3e:53:80:6f:77:31:23:f8:
f6:a3:b2:da:31:a7:85:b8:7e:ed:d0:42:a1:8a:13:
d4:ae:87:ca:6a:83:52:8e:91:aa:86:d4:61:d3:26:
16:bd:8d:0b:7e:72:03:ff:2d:f2:0c:56:b4:cf:58:
b8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F7:A1:68:ED:45:98:A3:D7:45:A8:ED:66:59:02:26:C4:C3:40:87
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/8PehaO1FmKPXRajtZlkCJsTDQIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a6c7::/32
Signature Algorithm: sha256WithRSAEncryption
bc:5c:aa:56:53:90:35:d7:ed:42:ee:d6:25:17:b3:c4:64:ef:
7b:dc:62:cb:6a:dc:73:7c:06:a5:df:ca:8f:ae:77:a0:f6:42:
ae:97:1e:7a:36:ea:8a:4c:78:79:84:56:c8:14:29:ba:93:fa:
74:0f:5e:b5:f3:b4:14:3f:57:8f:73:a7:c5:4e:9f:df:4b:3b:
28:32:7b:b8:ca:59:f5:a2:5b:2b:c1:5b:06:17:61:64:40:90:
b0:cc:6f:36:76:21:1b:36:98:18:07:8c:f3:45:9c:37:f4:d7:
d5:b1:0c:51:86:90:36:5b:88:28:32:fa:53:48:89:35:3e:d6:
b9:23:71:c8:89:83:78:ad:24:df:2e:67:60:58:15:c4:36:5a:
cc:f4:78:f9:d1:f8:70:04:3d:08:9b:1f:04:22:04:5b:7e:af:
52:43:a3:a7:d3:f0:9a:51:36:ab:88:be:49:63:ea:fd:7a:68:
ea:78:02:f9:94:6a:89:a4:28:c5:bf:5b:b6:a4:16:ae:33:5d:
0b:4b:1c:42:93:2f:e1:87:5e:78:ab:d0:eb:9b:c7:5e:7c:98:
be:77:2f:5e:59:00:a2:4d:cb:a9:ff:1b:83:37:17:81:eb:67:
3f:bb:72:c0:b3:b4:76:df:17:7d:fe:19:59:06:89:35:e1:dd:
ca:45:b7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:26 2024 by rpki-client on console-fra.rpki-client.org