Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ay68jfobceSCKkt1M9tOk5d67fs.roa
File: ay68jfobceSCKkt1M9tOk5d67fs.roa (raw, json)
Hash identifier: G6kFAQkKtzS+TvxN0JHoXSBgqm6v+RC+r+dhPL01c9Y=
Subject key identifier: 6B:2E:BC:8D:FA:1B:71:E4:82:2A:4B:75:33:DB:4E:93:97:7A:ED:FB
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 08FF090B
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ay68jfobceSCKkt1M9tOk5d67fs.roa
Signing time: Sat 01 Jan 2022 16:00:23 +0000
ROA not before: Sat 01 Jan 2022 16:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34692
IP address blocks: 2a0b:b86:12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150931723 (0x8ff090b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b2ebc8dfa1b71e4822a4b7533db4e93977aedfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d4:ae:0e:02:8b:b5:fe:d9:7a:dd:6f:56:b1:
76:7c:9d:94:7b:1b:37:64:b0:d9:11:9d:b8:ae:ae:
95:88:c2:ee:9a:a4:b5:96:12:14:38:1f:84:4c:b1:
ad:a5:6f:c8:df:1b:a7:78:a8:c2:4c:e4:33:4c:93:
74:d3:a2:9f:d8:84:48:df:b7:91:57:c8:b3:55:07:
bc:80:50:3b:64:38:51:f0:1d:0c:0c:3f:74:dd:25:
68:3a:90:73:25:ec:93:cf:35:5b:41:b9:94:0a:a7:
dd:f7:1f:e1:92:78:29:c8:16:97:d4:dd:6b:f4:8c:
61:9a:05:cd:6b:05:c4:93:4e:0a:4e:7e:1c:b1:1c:
ee:96:3c:d4:79:36:f4:22:85:1a:2b:bf:d7:f4:a4:
06:51:88:fb:91:35:38:28:02:b7:67:f4:b4:15:c7:
51:30:1b:7e:3a:04:0b:ca:3d:3a:e3:53:93:e6:a4:
55:76:6e:93:86:6b:48:51:f9:00:41:c1:78:a6:e9:
fe:54:d6:20:98:da:4f:ab:cc:6a:d5:6e:3d:24:03:
3c:0e:d5:d4:24:19:57:f3:2e:4f:9e:bb:1f:14:f6:
0d:57:4e:82:17:a2:f1:0a:64:77:b0:0a:37:03:91:
11:12:d6:12:33:70:05:dc:39:7d:c2:2d:c3:16:40:
cd:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2E:BC:8D:FA:1B:71:E4:82:2A:4B:75:33:DB:4E:93:97:7A:ED:FB
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ay68jfobceSCKkt1M9tOk5d67fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b86:12::/48
Signature Algorithm: sha256WithRSAEncryption
6e:98:51:07:75:31:9a:f5:28:de:50:d4:af:ad:71:76:14:58:
07:dd:1c:bf:34:3e:be:06:5b:59:f5:ff:d0:cf:52:fe:4c:d9:
b0:be:7d:07:bf:ea:75:e4:68:c1:5f:37:9e:68:66:a2:27:1f:
4d:af:58:e1:19:37:30:35:79:53:3f:80:28:37:b1:89:f8:0c:
78:e2:c6:2a:46:00:c9:fd:09:a4:d6:42:c5:93:12:e1:07:5d:
db:7c:4b:19:7a:e9:79:07:4e:96:1b:99:95:ea:3c:0e:11:85:
f2:84:05:92:7f:25:3d:5d:7e:aa:66:2e:c1:c8:b5:6f:44:8c:
89:58:bc:39:2a:09:d0:12:50:55:77:3a:c7:20:55:43:7c:a5:
8e:ea:68:73:80:73:89:cc:ef:88:96:e5:d9:5b:e6:96:d4:c8:
96:1d:86:cb:35:75:38:67:b8:03:82:e2:41:4f:ec:08:db:98:
3f:04:f5:40:b5:4f:c3:5c:03:88:2c:52:54:83:80:62:80:5e:
a8:49:7d:e2:ba:cd:ed:b6:97:46:64:c4:90:e5:e0:fe:49:5d:
61:49:bc:4b:d2:de:b7:be:ac:78:6f:81:a3:12:71:15:ca:c3:
46:e5:29:eb:30:7d:f8:5b:ca:34:b7:19:38:55:de:82:4a:05:
28:82:af:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org