Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/7FUhUxily3EgU8gykWX5kqzWwYA.roa
File: 7FUhUxily3EgU8gykWX5kqzWwYA.roa (raw, json)
Hash identifier: AZgt+UCBq5bJO+eOspxGKXazUTVcuwHBJwYnGfakqng=
Subject key identifier: EC:55:21:53:18:A5:CB:71:20:53:C8:32:91:65:F9:92:AC:D6:C1:80
Certificate issuer: /CN=6d3006dcd289c47f9f58e128eb29757239144bb6
Certificate serial: 01839AB57C3C622A728BB4B595C744535017
Authority key identifier: 6D:30:06:DC:D2:89:C4:7F:9F:58:E1:28:EB:29:75:72:39:14:4B:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/7FUhUxily3EgU8gykWX5kqzWwYA.roa
Signing time: Sun 02 Oct 2022 21:58:48 +0000
ROA not before: Sun 02 Oct 2022 21:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212294
IP address blocks: 2a13:2187:9e00::/39 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9a:b5:7c:3c:62:2a:72:8b:b4:b5:95:c7:44:53:50:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d3006dcd289c47f9f58e128eb29757239144bb6
Validity
Not Before: Oct 2 21:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec55215318a5cb712053c8329165f992acd6c180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:bc:be:f9:a9:95:2d:85:92:bd:05:fb:9f:3d:
6d:dd:cb:ac:13:84:31:01:43:88:58:19:be:fa:9c:
e8:a6:4a:3a:86:cf:cb:51:e5:fb:f7:96:e0:a5:3b:
06:d2:7a:7d:53:68:8c:d1:15:3f:7d:40:32:70:71:
95:66:0e:7f:4f:f8:e9:78:ad:27:70:c5:43:ff:c1:
2f:ee:09:03:d5:6d:59:09:06:f7:51:3b:c9:99:0b:
ab:95:2c:99:5d:2c:b6:4b:d9:23:3a:aa:ea:55:a1:
33:7e:25:5a:c9:3a:30:48:5d:05:a0:3d:13:04:7b:
50:3e:26:4d:21:a5:c5:a8:9c:2e:5a:5f:79:92:f6:
9d:a3:b7:6b:e9:ae:1e:83:f1:87:99:8e:b6:dd:ce:
d2:8d:47:6e:37:3c:72:1e:1c:88:fe:e6:67:15:fb:
14:f9:78:64:8e:be:ec:b4:11:83:a1:b2:ab:52:6f:
09:a3:f6:aa:31:87:d1:df:bc:30:5b:34:6e:1c:1e:
4a:2f:fd:fe:2f:2e:20:b8:20:5c:20:0a:a3:fd:05:
ae:e0:33:e9:8b:0f:ff:7e:91:68:c4:52:52:27:83:
be:45:7f:e6:cf:7f:79:ad:b7:13:d4:9e:57:4e:e9:
83:58:87:54:48:1c:e2:94:3a:da:af:87:ca:c3:3c:
b0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:55:21:53:18:A5:CB:71:20:53:C8:32:91:65:F9:92:AC:D6:C1:80
X509v3 Authority Key Identifier:
keyid:6D:30:06:DC:D2:89:C4:7F:9F:58:E1:28:EB:29:75:72:39:14:4B:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/7FUhUxily3EgU8gykWX5kqzWwYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2187:9e00::/39
Signature Algorithm: sha256WithRSAEncryption
7a:b8:0b:dc:69:ce:be:80:4a:c3:49:7e:03:e8:6e:d3:37:24:
71:f3:89:4f:88:73:73:c2:1f:8f:b3:19:ea:76:a0:9a:31:5b:
c9:99:15:04:ad:7e:6a:80:d2:1d:4e:d1:66:fe:9c:15:d4:da:
83:60:6a:1f:49:f3:96:62:4d:7d:b6:ae:4c:a1:7c:d9:12:37:
b6:15:5c:9b:08:45:7d:e7:5b:3b:2a:84:d3:99:a6:eb:52:d0:
79:2c:53:64:87:af:91:a1:78:19:74:30:54:80:8e:fc:df:d1:
2f:4b:96:c6:08:ff:8c:b4:0b:60:f7:b7:65:0d:23:e2:21:c0:
a3:a4:e9:cc:79:98:0c:05:00:d9:e9:a4:51:ef:a7:2d:95:a0:
e5:0c:22:95:7d:b6:fe:85:79:94:c7:ad:b2:1b:17:e5:1b:b7:
b4:9a:b8:2d:df:0a:9e:fa:9d:b1:14:5c:99:1f:f6:e9:8c:15:
2e:60:f6:19:4d:e5:22:ef:96:aa:f9:b5:71:ed:ae:77:a1:a4:
6d:12:13:1a:6d:db:fe:46:a3:aa:16:59:a6:2f:2e:06:27:08:
66:f8:fa:61:5e:51:f3:ab:4c:a6:c6:32:60:62:f8:02:7e:93:
01:cb:f0:d1:7e:14:e2:f4:46:55:d6:0c:ab:54:3c:ea:b9:d0:
88:7f:59:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:38 2024 by rpki-client on console-ams.rpki-client.org