Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/6rlypB678UDex35z9W0riQbStjQ.roa
File: 6rlypB678UDex35z9W0riQbStjQ.roa (raw, json)
Hash identifier: twBFVOtwlcbEErmSlfcHUZjiIkLZUZrhzZy932grIQY=
Subject key identifier: EA:B9:72:A4:1E:BB:F1:40:DE:C7:7E:73:F5:6D:2B:89:06:D2:B6:34
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01842CA91D9CAA65EF51C3E57107641A7180
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/6rlypB678UDex35z9W0riQbStjQ.roa
Signing time: Mon 31 Oct 2022 06:09:51 +0000
ROA not before: Mon 31 Oct 2022 06:09:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6233
IP address blocks: 2a07:e340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2c:a9:1d:9c:aa:65:ef:51:c3:e5:71:07:64:1a:71:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Oct 31 06:09:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eab972a41ebbf140dec77e73f56d2b8906d2b634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:e5:61:79:9e:78:19:8b:68:34:4c:9a:be:
79:18:ea:98:96:3e:04:17:c3:1e:4d:7c:5b:25:09:
43:a6:61:22:0f:96:ee:de:50:64:35:92:11:c1:08:
b1:eb:f6:c1:9d:92:14:fc:9a:67:2c:d6:e0:da:1e:
9c:c0:2f:c3:d5:7e:1d:eb:bc:6b:2c:93:77:2f:02:
c7:cb:c4:fa:2f:52:81:ae:bd:29:e0:ee:18:f3:cf:
c7:fe:2c:a1:86:47:21:66:11:ff:88:20:24:e5:91:
01:9a:f9:87:e4:04:74:f1:0e:f8:fa:4f:50:1a:51:
b0:b4:2b:d9:76:58:38:f0:88:84:1c:52:0b:d6:de:
7e:02:69:33:d9:f2:5a:8a:8f:2d:05:ac:cc:f2:4c:
0a:fa:64:ac:03:3d:c3:fd:1f:6f:36:4b:7d:44:2d:
92:c8:9f:d7:e1:8a:d1:06:60:30:04:e0:3b:df:b0:
f3:91:ec:25:d5:ea:7d:14:2a:d2:8e:57:a0:44:46:
ad:64:25:8b:49:13:a8:3d:45:cc:ee:af:38:f0:cc:
8c:bf:49:e1:9f:ff:4c:e0:4d:36:e6:9b:e9:4e:3b:
d3:b5:78:3c:45:f5:a9:d2:ce:a8:36:d4:cb:68:cc:
bf:2a:94:f9:a4:e1:46:98:ce:95:57:17:79:28:e3:
61:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B9:72:A4:1E:BB:F1:40:DE:C7:7E:73:F5:6D:2B:89:06:D2:B6:34
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/6rlypB678UDex35z9W0riQbStjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e340::/32
Signature Algorithm: sha256WithRSAEncryption
58:0d:ed:fe:58:65:f1:c4:c3:d8:2e:cf:0d:b6:28:0c:b9:fa:
05:bb:4f:c9:64:67:8d:1f:2a:d2:b4:c4:08:5c:19:76:e9:4d:
42:fe:db:57:12:6f:58:4e:bd:45:c3:3a:4d:7c:a5:35:23:40:
46:fa:5b:91:c1:11:16:10:ea:82:f1:4e:d0:4f:3a:b1:3c:85:
0f:0f:1e:66:b7:0b:37:61:1f:a1:28:25:dd:89:f4:ea:53:38:
8b:e4:7e:10:3f:69:18:8f:37:9c:e3:2e:e5:53:06:03:a7:72:
7c:45:5d:cd:21:59:f5:60:e6:a7:94:54:07:99:e7:23:9d:bf:
ad:12:81:56:01:a7:4d:f8:95:69:62:94:96:b8:82:90:58:b8:
8c:c2:22:9a:20:37:4d:6b:1f:a0:1d:2d:bd:0d:5d:c0:a7:6a:
2a:df:f5:3e:82:ee:a2:e4:c9:01:46:bb:38:d3:a5:6a:5f:49:
0b:b9:72:bf:cb:81:68:66:58:40:bd:8a:fd:70:5c:6a:a6:f9:
e3:4d:8d:9c:15:7e:78:c1:56:36:7f:98:97:30:ec:84:d9:26:
4c:8f:26:e1:d6:de:1e:49:b2:88:6e:80:c2:fe:11:60:6c:34:
d3:cb:91:f1:ae:35:b0:41:a5:87:27:6b:9c:1f:79:f4:a7:78:
e4:7b:a4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org