Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/c6xXKye8PYJWTKhpyUeJLQiJ5kU.roa
File: c6xXKye8PYJWTKhpyUeJLQiJ5kU.roa (raw, json)
Hash identifier: tgWEoHyNhSgY6rjPs16Rc9IqSrjhtReA4922PJeIZZU=
Subject key identifier: 73:AC:57:2B:27:BC:3D:82:56:4C:A8:69:C9:47:89:2D:08:89:E6:45
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 093ACAAA
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/c6xXKye8PYJWTKhpyUeJLQiJ5kU.roa
Signing time: Sat 01 Jan 2022 16:01:03 +0000
ROA not before: Sat 01 Jan 2022 16:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212831
IP address blocks: 2a0b:b87:ffbb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154847914 (0x93acaaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73ac572b27bc3d82564ca869c947892d0889e645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2b:3c:11:63:c6:af:f8:45:a4:7f:81:28:b7:
40:d7:6a:2b:dc:85:80:9c:b5:1f:ae:8e:6b:ab:c4:
1f:14:7c:1a:92:4f:75:ce:91:13:84:33:26:9e:56:
20:9b:bd:95:c7:1d:8d:d1:c8:b5:92:b7:99:bb:a5:
f6:e5:d0:8d:3c:04:2c:c9:57:96:bb:fc:89:92:63:
34:0e:79:2c:61:39:f2:9a:01:42:68:37:11:72:43:
ff:9c:11:33:d9:22:61:08:a6:1e:91:c3:e4:4a:b0:
ee:e1:db:6b:1e:4a:56:19:2b:76:9b:1d:6c:e3:de:
4e:6d:6c:f6:64:f9:5d:46:b2:46:ec:71:a2:2b:39:
e2:ec:3d:89:1c:6c:b5:d6:a0:5f:ac:dc:be:b9:45:
74:45:3e:6e:a0:0e:da:92:c6:45:db:5c:d7:23:10:
d3:b8:64:bd:dc:01:38:f6:b0:e6:1e:de:0d:dd:b2:
fe:c3:72:f7:84:28:e8:da:b3:57:c0:8a:85:ed:32:
0d:56:ce:80:55:f6:bb:72:1d:ea:1b:93:83:7c:b4:
22:53:f9:72:28:49:a1:d8:c6:94:bf:65:13:6a:3a:
33:b7:83:d6:40:0f:38:a1:c7:ba:77:bd:b8:f9:8e:
c8:0a:2c:e6:f1:4e:1d:ad:b0:d2:68:26:0e:4c:6a:
81:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AC:57:2B:27:BC:3D:82:56:4C:A8:69:C9:47:89:2D:08:89:E6:45
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/c6xXKye8PYJWTKhpyUeJLQiJ5kU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffbb::/48
Signature Algorithm: sha256WithRSAEncryption
74:cd:e3:a5:da:1c:bc:7e:b0:9f:df:fb:9e:d5:17:c0:76:ea:
9d:ea:25:ed:fb:47:dc:a2:c1:2a:e7:c8:2b:1c:43:2f:5e:99:
07:bf:88:ef:e9:61:88:6b:a0:0c:de:8b:6a:76:6d:bd:05:43:
ef:98:c2:e1:c1:2d:ac:39:d1:27:ac:6e:07:1b:3b:28:eb:44:
53:37:6e:0e:25:1b:1f:42:cd:af:49:fa:ca:54:66:a9:2b:1b:
da:16:1f:a7:7c:9a:e1:9b:29:03:42:1c:da:4b:bd:bc:f6:dc:
b5:d8:b9:cc:ab:fa:c2:65:ab:d6:bf:94:25:5e:ae:7f:7d:7b:
18:2f:7b:6f:fe:4c:e4:63:35:2d:5b:06:6c:88:c7:41:12:9b:
ae:0c:7d:86:d1:f5:9d:45:f6:7e:f3:cf:59:51:dd:37:2b:9d:
69:4d:17:3b:43:b3:89:0b:44:b4:8a:df:b7:9c:5b:c0:1b:95:
8b:7c:03:b9:a1:2a:6c:f1:a2:5d:f3:9e:ba:c8:65:c9:7a:d3:
91:27:42:21:1c:0e:4e:53:2a:9d:32:f2:f7:dd:1a:4d:7d:e4:
5d:0e:fe:23:c3:30:f4:1f:ed:f1:cf:f9:d1:3a:28:81:e4:d6:
3a:8e:64:ca:1d:7c:bd:41:dd:d3:53:2f:ca:e0:0e:86:2f:ec:
28:39:b0:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org