Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/6g1uYJp_P8wAQicCbqApPN5Q1JE.roa
File: 6g1uYJp_P8wAQicCbqApPN5Q1JE.roa (raw, json)
Hash identifier: oiaMdCjVQYH9FmmcMpj99+ggGFDYuz9RQ+aD7nxoz5o=
Subject key identifier: EA:0D:6E:60:9A:7F:3F:CC:00:42:27:02:6E:A0:29:3C:DE:50:D4:91
Certificate issuer: /CN=89edfa414944d010ac69ee5bfb22773b24b27efb
Certificate serial: 0184B867A4F5B708DA0E11A5AB96D3ACBE2F
Authority key identifier: 89:ED:FA:41:49:44:D0:10:AC:69:EE:5B:FB:22:77:3B:24:B2:7E:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ie36QUlE0BCsae5b-yJ3OySyfvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/6g1uYJp_P8wAQicCbqApPN5Q1JE.roa
Signing time: Sun 27 Nov 2022 09:25:10 +0000
ROA not before: Sun 27 Nov 2022 09:25:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59441
IP address blocks: 2a13:3e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b8:67:a4:f5:b7:08:da:0e:11:a5:ab:96:d3:ac:be:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89edfa414944d010ac69ee5bfb22773b24b27efb
Validity
Not Before: Nov 27 09:25:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea0d6e609a7f3fcc004227026ea0293cde50d491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1c:f3:9f:d4:2f:64:19:68:be:94:6a:e2:14:
30:67:8b:37:02:a4:a2:bc:63:2f:e5:b5:d5:1d:a4:
2e:4d:df:6a:a9:63:90:fd:ae:03:8d:b5:ac:c6:b4:
a1:b9:ec:a7:f3:86:72:e4:5e:d9:11:48:57:2e:ea:
18:2c:3b:e2:e1:ae:5e:79:f0:a0:7a:80:9a:74:7a:
60:1e:d1:7d:fb:79:7d:14:10:6f:14:b0:2d:89:71:
48:87:6d:8c:a3:8e:4c:4b:07:f7:55:da:eb:de:56:
34:16:f2:68:36:0b:dd:af:82:1b:b8:de:88:65:29:
da:71:32:1c:5d:26:72:0a:ae:aa:1a:99:4c:6f:55:
a0:db:95:70:ca:54:6e:46:27:92:b7:9b:1d:12:9d:
ad:c7:c7:0d:06:38:d6:19:71:25:2a:61:05:3c:31:
f2:da:ec:56:50:1f:a9:8a:77:e6:ba:0b:3d:7d:0a:
07:31:29:59:16:51:0d:d6:47:40:dd:95:9c:e4:39:
16:8c:07:4d:9f:6e:18:b7:62:64:83:01:ef:61:d2:
19:3e:8e:28:89:9f:af:6f:9e:47:25:0e:56:46:20:
c5:55:8e:85:40:aa:b3:14:f6:9b:5e:a4:6e:80:b1:
e7:59:b4:80:91:15:74:80:0b:10:f3:2d:d4:a9:9d:
e1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:0D:6E:60:9A:7F:3F:CC:00:42:27:02:6E:A0:29:3C:DE:50:D4:91
X509v3 Authority Key Identifier:
keyid:89:ED:FA:41:49:44:D0:10:AC:69:EE:5B:FB:22:77:3B:24:B2:7E:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ie36QUlE0BCsae5b-yJ3OySyfvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/6g1uYJp_P8wAQicCbqApPN5Q1JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/ie36QUlE0BCsae5b-yJ3OySyfvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3e40::/29
Signature Algorithm: sha256WithRSAEncryption
4d:f9:b1:3b:6f:cf:df:fe:4c:21:f4:77:aa:9c:11:4c:af:f1:
f4:60:9e:dc:5b:fe:84:56:44:cc:bc:2a:28:b0:4b:61:4b:b9:
02:f0:d4:9e:cf:37:79:3d:7d:ba:25:b4:19:ff:3c:37:b6:28:
b2:fe:df:50:bf:ae:14:da:0b:07:4f:7c:71:36:5f:91:6a:f1:
c2:20:7e:5d:e4:f7:ad:ab:c6:f3:bc:34:bb:54:aa:c8:1b:c6:
26:39:b4:ed:f7:73:54:f3:ff:32:07:cd:5a:06:5f:f0:8e:fc:
51:3a:37:c5:c1:50:9f:71:ce:33:3b:db:0a:bb:f9:a2:db:1d:
93:60:00:bb:4c:45:d4:61:5b:dd:7b:c9:22:e8:21:1b:28:0e:
0b:5d:0a:be:11:1e:75:c9:4a:f2:2d:31:96:1d:78:c6:ef:96:
94:1c:d9:3a:ca:db:fd:42:34:0c:7a:1b:42:1b:cb:58:22:21:
96:97:8c:c5:a6:19:20:be:a6:06:62:ef:3a:5f:7a:c1:87:a4:
35:a3:2f:3e:4b:84:15:5a:0f:43:68:72:8f:c3:69:41:4b:4f:
16:29:60:b9:2d:b6:87:a7:a6:46:fe:0e:25:08:6d:81:dc:7a:
56:13:b4:f9:ce:5d:6a:46:16:79:88:29:a1:78:29:3e:79:5b:
aa:2c:8f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:15 2024 by rpki-client on console-fra.rpki-client.org