Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/6Qz_plZaknPMVmvi8uj2wHESFAU.roa
File: 6Qz_plZaknPMVmvi8uj2wHESFAU.roa (raw, json)
Hash identifier: U3L5XKLW0/kCiigg/unBQCGHwZ66yk8IaIfLsq8Qwo4=
Subject key identifier: E9:0C:FF:A6:56:5A:92:73:CC:56:6B:E2:F2:E8:F6:C0:71:12:14:05
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0D5B8D1B
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/6Qz_plZaknPMVmvi8uj2wHESFAU.roa
Signing time: Thu 02 Jun 2022 09:48:23 +0000
ROA not before: Thu 02 Jun 2022 09:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204914
IP address blocks: 2a0c:9a40:8350::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224103707 (0xd5b8d1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jun 2 09:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e90cffa6565a9273cc566be2f2e8f6c071121405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ec:fa:f0:d0:77:34:15:14:17:b2:1b:ae:de:
29:14:75:b9:c4:c2:e5:e8:e5:3c:34:ad:13:61:cb:
0f:b4:2d:a5:78:23:13:3c:63:f3:1c:46:a9:b3:30:
3f:fa:e9:b7:87:39:24:a5:d1:cf:2d:49:ae:57:ec:
b0:fa:9a:87:22:23:33:d0:ab:ff:fd:a0:70:71:9c:
66:5e:52:6e:4e:e4:ff:2f:f9:13:ed:01:e2:2e:41:
0a:c1:29:99:37:ec:84:8a:7b:75:31:e9:15:01:37:
59:7f:cd:d0:88:e9:41:91:8b:22:4f:b2:3e:e1:26:
a3:a6:99:03:ca:1a:ef:c4:b2:a6:1c:f4:ff:1c:1d:
2b:b4:f0:af:ca:2f:4f:bb:fc:1d:71:9f:0b:a2:61:
68:08:6b:6f:96:3f:10:4a:99:4f:cd:1f:01:39:cd:
24:d8:04:f9:2e:41:91:16:6f:2b:52:45:73:b5:c8:
c2:04:79:18:7e:75:19:67:43:e7:2b:64:7f:4d:6c:
e3:c6:0e:62:f8:c4:14:da:2c:15:90:16:4d:40:14:
ae:f7:8e:4d:5a:ba:04:0b:fa:1e:50:04:5c:a1:28:
42:aa:85:b0:01:d2:70:1f:24:07:4d:4f:7e:a5:24:
cb:d6:cf:a8:5b:9d:51:08:31:ae:60:41:5f:2e:76:
ec:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0C:FF:A6:56:5A:92:73:CC:56:6B:E2:F2:E8:F6:C0:71:12:14:05
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/6Qz_plZaknPMVmvi8uj2wHESFAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8350::/48
Signature Algorithm: sha256WithRSAEncryption
30:9e:5e:0c:64:a8:f5:c8:3a:d3:dc:28:22:65:00:13:d3:86:
0e:de:b4:60:af:3f:dc:cf:63:f9:bf:a9:ff:37:2a:24:3e:f7:
77:d3:c5:ba:71:de:ee:d8:ba:f6:37:5a:d8:69:aa:80:2a:0d:
d5:80:4b:5f:dd:6a:f3:0d:4b:dd:94:1b:d1:8a:63:ff:1e:13:
7c:1f:ae:50:f7:f3:df:65:cf:e3:b9:cb:31:33:f3:68:ac:ee:
4d:65:5a:5b:b2:ca:f0:96:e7:de:6b:78:8b:91:7b:26:94:00:
1f:d1:6c:fc:ae:9e:9c:88:3c:44:c8:6b:12:16:10:a6:79:fa:
27:40:ae:21:83:5d:2a:e8:9f:2d:e5:57:66:11:36:86:11:26:
c4:ce:e8:b5:fc:57:f9:90:b5:95:ef:78:0f:c4:e1:af:0e:10:
2e:fc:14:31:80:04:58:2c:28:d9:c2:1d:c0:73:2f:4d:3b:d0:
11:41:9c:7a:dd:49:0e:be:85:85:21:7f:9a:91:91:11:0b:ec:
8e:5a:1e:21:ad:24:67:5a:8a:64:58:2c:45:6f:f6:44:e8:76:
fc:fb:90:57:e8:d3:89:cb:55:c0:f0:d6:a9:b6:28:af:83:0d:
13:46:24:59:d6:e9:3d:30:fb:a1:53:c0:c1:dc:c1:31:12:c2:
0a:6c:49:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:15 2024 by rpki-client on console-ams.rpki-client.org