Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/Rn6VJMk2w99Q6Q30HuJVvZD4G_o.roa
File: Rn6VJMk2w99Q6Q30HuJVvZD4G_o.roa (raw, json)
Hash identifier: kl7D+1NPjP3gdnKAiBLM1N0kRQrPnEFID21svMgWRgM=
Subject key identifier: 46:7E:95:24:C9:36:C3:DF:50:E9:0D:F4:1E:E2:55:BD:90:F8:1B:FA
Certificate issuer: /CN=e97592f1eb41d6c893cd0dd72b63fc34ee553533
Certificate serial: 35AAD96C
Authority key identifier: E9:75:92:F1:EB:41:D6:C8:93:CD:0D:D7:2B:63:FC:34:EE:55:35:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XWS8etB1siTzQ3XK2P8NO5VNTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/Rn6VJMk2w99Q6Q30HuJVvZD4G_o.roa
Signing time: Sat 01 Jan 2022 08:59:57 +0000
ROA not before: Sat 01 Jan 2022 08:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200044
IP address blocks: 2a00:eb9::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900389228 (0x35aad96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e97592f1eb41d6c893cd0dd72b63fc34ee553533
Validity
Not Before: Jan 1 08:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=467e9524c936c3df50e90df41ee255bd90f81bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:7d:34:5f:f2:cf:a4:e5:3a:f9:8d:d6:b8:
bf:44:e4:07:ac:1a:45:6d:26:2a:12:8f:6d:46:8a:
24:72:37:b1:7f:d8:36:6f:be:6d:d2:db:54:07:86:
8c:0f:1f:5e:37:1f:4e:b3:22:78:2f:5c:c0:ac:43:
4c:53:6a:4a:d7:81:00:3b:c0:28:e8:7f:8d:b8:d8:
0c:97:2f:a0:2b:27:25:54:4a:d9:9e:b8:ce:f3:e9:
78:c9:b4:cd:45:e8:12:b1:37:32:41:3e:0d:97:44:
7e:9a:9b:3f:eb:ca:2c:6c:b1:0d:12:1e:ac:48:b5:
27:01:29:12:b4:a0:87:ed:ca:86:42:e4:15:3b:8e:
8c:54:6a:1b:b4:e7:ee:fd:e7:65:41:a2:9a:00:c4:
ff:e8:24:de:1a:eb:9a:1e:a0:c3:bb:35:eb:84:05:
55:0d:8d:f7:3b:59:e6:b3:d6:b4:0d:1c:97:6d:fd:
e6:05:5e:e0:81:7f:7e:b4:b2:e3:22:31:51:93:1a:
68:bd:a3:0b:5e:5a:a4:f9:3c:8d:51:3e:8a:c9:95:
1f:0e:a8:0f:d5:44:9c:66:8c:62:01:7e:fa:fe:83:
3d:43:bb:d0:47:da:3e:ec:f0:7d:25:58:a4:aa:4e:
cd:71:73:f3:2f:8c:65:c2:86:1d:32:63:2f:f7:01:
80:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:7E:95:24:C9:36:C3:DF:50:E9:0D:F4:1E:E2:55:BD:90:F8:1B:FA
X509v3 Authority Key Identifier:
keyid:E9:75:92:F1:EB:41:D6:C8:93:CD:0D:D7:2B:63:FC:34:EE:55:35:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XWS8etB1siTzQ3XK2P8NO5VNTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/Rn6VJMk2w99Q6Q30HuJVvZD4G_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/6XWS8etB1siTzQ3XK2P8NO5VNTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:eb9::/32
Signature Algorithm: sha256WithRSAEncryption
4d:30:c5:91:1a:5b:ae:4c:1d:8f:69:d6:1d:db:5a:b9:57:c5:
de:3d:1b:39:41:82:43:6b:a7:bd:52:c8:a8:2d:0b:16:df:b1:
6e:ff:4c:10:5a:5d:ff:bc:5c:81:7f:b0:1a:7b:0e:e6:f9:83:
83:b3:ef:58:a6:2c:a1:12:55:25:19:7b:db:ff:32:83:70:92:
63:98:76:f3:3f:f1:02:31:71:ed:ac:3f:86:8a:ca:a2:02:94:
6d:b2:30:e4:93:06:5c:06:b0:d1:bd:b8:d1:5c:f1:b4:7b:7c:
4d:df:22:2e:d3:1f:55:2a:d8:a7:d6:68:95:a3:16:dc:5f:ca:
ea:36:ff:e2:2d:7e:50:8f:f8:fe:58:c3:8f:09:85:be:3d:8a:
1a:6a:10:fa:de:a7:e2:31:5c:04:68:20:f1:45:5d:5c:0b:4d:
f7:a8:e3:e0:b7:43:dd:eb:e9:fe:a1:5b:91:7b:cf:c2:f0:d4:
3c:6f:43:db:9c:2e:1f:29:8b:d0:48:cd:8b:13:2b:9c:b3:c2:
3d:15:d2:82:ea:36:28:76:0c:23:cf:a9:17:ad:7b:71:77:07:
b3:2b:e9:2f:25:38:56:b4:5a:ac:f8:3e:7e:1f:4b:f0:e8:ee:
0a:92:b3:37:f0:4e:7f:c7:af:29:dd:40:91:98:a9:63:22:a6:
bc:e8:c5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:25 2024 by rpki-client on console-ams.rpki-client.org