Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/60EK9ineleUIN8I0eJ8Fz80Cp4Y.roa
File: 60EK9ineleUIN8I0eJ8Fz80Cp4Y.roa (raw, json)
Hash identifier: EZROlhIrvIB+Vm1ayC8w3QmEC+YQsEyKxsU6yrYTnYQ=
Subject key identifier: EB:41:0A:F6:29:DE:95:E5:08:37:C2:34:78:9F:05:CF:CD:02:A7:86
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01855D3F13A73494C09781ED155A6308E699
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/60EK9ineleUIN8I0eJ8Fz80Cp4Y.roa
Signing time: Thu 29 Dec 2022 09:38:12 +0000
ROA not before: Thu 29 Dec 2022 09:38:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211448
IP address blocks: 2a10:4646:190::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:3f:13:a7:34:94:c0:97:81:ed:15:5a:63:08:e6:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Dec 29 09:38:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb410af629de95e50837c234789f05cfcd02a786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b9:9d:0e:66:91:15:e4:b4:35:34:ff:ba:c9:
ac:53:00:93:e2:32:a9:cc:4d:0a:3e:2a:9e:d4:87:
0f:9c:db:1c:c0:7c:1d:7a:f2:14:44:98:98:a4:c2:
af:30:f0:88:65:e3:d4:4e:3b:37:ea:f2:1a:bc:cf:
4e:12:4b:31:87:d5:de:c0:d7:6e:3f:3d:5e:cf:f9:
db:a3:25:5e:05:f4:78:1f:8c:ca:f8:2e:51:8e:20:
bb:2e:b1:6f:b7:dc:90:59:6f:17:4b:e2:52:b0:7b:
2c:4f:2f:59:e5:68:99:5a:80:02:9f:d7:91:b9:0d:
da:d5:2d:9d:a2:66:f7:dc:de:6d:e0:5a:bc:13:4d:
10:e8:59:9b:81:1d:05:8a:83:a8:34:b3:7b:e0:72:
e3:14:f1:a9:f5:a7:3c:cc:ae:31:80:0a:25:64:39:
5d:90:39:0d:72:21:b5:bd:b9:0a:22:1a:0e:56:34:
71:8f:5d:23:8f:0f:7d:3f:ce:da:e8:28:51:d4:e7:
67:ea:3d:72:e7:56:92:85:41:f0:92:bd:fe:00:0e:
36:ee:ea:8c:d9:9b:7a:d2:45:42:25:f6:a9:aa:25:
02:d4:23:5d:41:a2:6c:2e:7f:43:67:0a:6c:2c:37:
fa:84:66:09:1b:61:a9:32:fb:19:b7:b6:45:a2:7a:
0e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:41:0A:F6:29:DE:95:E5:08:37:C2:34:78:9F:05:CF:CD:02:A7:86
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/60EK9ineleUIN8I0eJ8Fz80Cp4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:190::/44
Signature Algorithm: sha256WithRSAEncryption
d9:bc:7e:a0:c8:45:ed:6c:95:f7:66:41:77:08:e8:88:68:9d:
aa:ff:40:f9:aa:28:bf:0a:b0:e4:1a:26:c3:4a:cf:d2:75:20:
81:56:eb:41:a4:10:6f:41:69:46:82:1b:37:c7:a3:1a:13:ea:
7d:74:c8:4f:06:e8:d0:27:cd:20:67:b7:0a:90:d5:e1:81:26:
f3:c4:b4:c2:bd:4d:b4:5b:04:5f:0c:c2:94:87:18:ed:01:cd:
d2:b1:4f:89:f0:f1:58:61:cc:a1:90:c3:01:e3:b6:5e:16:f9:
93:fa:4c:eb:6b:a5:12:d6:33:c7:37:2b:89:55:ef:e8:0d:b8:
dc:b3:f5:87:69:c5:e0:1c:b4:39:d6:59:81:3a:61:42:43:9f:
df:9a:da:73:85:a9:1f:ee:63:2b:33:f3:77:a9:fc:64:7d:8d:
5c:32:67:34:f3:9e:30:95:24:7c:c3:ce:52:a0:63:52:4a:37:
72:b5:96:de:33:7c:03:d7:da:57:4c:ea:d3:5d:89:0c:3e:f5:
ac:23:3b:8b:3e:66:2d:29:86:bb:b4:6a:b9:69:d9:ef:47:13:
90:23:6a:79:d7:74:85:1f:dd:f9:75:08:8b:31:62:e6:31:21:
f5:94:31:c8:fc:c8:77:e5:a5:0e:22:9b:52:f3:59:40:de:e0:
9d:c2:86:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org