Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/OrsXK3Yr3LmMFLuHb_2DpGsk4QM.roa
File: OrsXK3Yr3LmMFLuHb_2DpGsk4QM.roa (raw, json)
Hash identifier: HJ2sPSK7mjjXFW73WzlQdHIeOW7bZuhwCHaJY5d5cdQ=
Subject key identifier: 3A:BB:17:2B:76:2B:DC:B9:8C:14:BB:87:6F:FD:83:A4:6B:24:E1:03
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 071E7818
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/OrsXK3Yr3LmMFLuHb_2DpGsk4QM.roa
Signing time: Sat 01 Jan 2022 15:01:37 +0000
ROA not before: Sat 01 Jan 2022 15:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41047
IP address blocks: 2a0e:a6c2::/32 maxlen: 32
2a0e:a6c1::/32 maxlen: 32
2a0e:a6c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119437336 (0x71e7818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Jan 1 15:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3abb172b762bdcb98c14bb876ffd83a46b24e103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:42:42:c6:7d:aa:2d:57:2d:89:cf:64:1c:bb:
9f:3c:32:db:da:40:23:ad:b0:af:05:46:82:cf:78:
95:62:a6:1d:ea:01:b1:fe:b3:f1:84:f1:a3:f2:ae:
3d:7b:ea:36:e8:31:91:f5:80:22:2c:36:a4:5b:99:
80:42:52:e5:3f:2d:63:8c:4f:57:9c:b1:eb:bf:d0:
43:23:c7:8d:36:76:81:23:69:18:b7:9f:1f:bf:7d:
2e:2e:d7:ea:73:2f:fb:69:ef:3e:51:13:65:16:3d:
54:6b:ef:0b:7d:30:47:c1:f8:de:95:03:d8:15:78:
56:d4:da:4e:b4:b0:3f:17:68:2d:b9:d6:e1:a6:26:
42:1a:a8:28:31:c7:74:ad:f2:54:ef:0d:94:33:02:
e3:ac:e9:8a:db:a0:34:2f:4b:96:14:4c:67:f1:74:
7a:90:88:3e:b7:3f:da:46:bb:65:a2:bb:01:d4:df:
67:99:99:c2:a3:14:8a:6a:15:36:40:64:68:fd:25:
91:f6:74:44:92:96:9e:61:2d:f7:ed:18:b8:47:61:
ec:b4:40:61:74:e0:31:07:39:75:85:f2:f8:35:01:
a9:99:97:d1:0e:5c:d3:b0:ce:92:c1:db:68:fb:65:
0e:70:37:62:49:d5:35:fa:a7:9d:50:e8:01:5c:ca:
fb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BB:17:2B:76:2B:DC:B9:8C:14:BB:87:6F:FD:83:A4:6B:24:E1:03
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/OrsXK3Yr3LmMFLuHb_2DpGsk4QM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a6c1::-2a0e:a6c3:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d4:3d:cf:7a:f3:ca:d3:75:99:cb:0e:a8:c2:9d:b2:08:d1:c2:
f8:45:30:89:12:39:58:ae:55:f8:82:3e:7b:7f:28:3b:41:77:
dd:30:3b:b7:5d:17:d9:a4:be:5b:d4:44:30:b8:83:64:15:e8:
e5:f0:d0:ad:77:92:f3:71:08:4e:13:83:0b:aa:31:f9:f4:c7:
a0:69:e0:87:8a:a1:b0:72:35:3c:6f:60:29:fa:3b:1a:ae:64:
22:b7:59:e3:54:70:df:76:73:57:bd:34:51:ac:14:97:7a:f0:
96:51:2e:e1:1f:95:66:1b:bb:8d:cd:25:7d:c8:c7:72:9b:45:
8a:84:aa:0a:b9:32:fc:e7:af:79:22:52:33:a7:8e:e0:f5:58:
77:6c:fc:ae:88:27:38:48:22:58:15:c1:6d:c6:e9:57:62:22:
23:84:21:4f:14:c0:45:53:47:ad:dd:05:9f:98:17:67:e3:fb:
af:45:8f:3b:a3:f1:80:66:73:0e:d6:c5:b2:68:98:62:91:b4:
44:1a:49:7e:d9:82:26:1d:7e:7d:29:0b:bb:65:93:5b:37:a4:
99:2c:ec:6a:93:dc:d9:e1:b0:72:c0:71:d3:00:b9:d3:e1:f0:
7e:ef:3b:a2:d2:48:f3:85:c8:a9:f3:08:03:b7:7f:80:d7:96:
2b:43:de:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:26 2024 by rpki-client on console-fra.rpki-client.org