Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/6PdygjCbPfFG1YyDujBRxqMsLj0.roa
File: 6PdygjCbPfFG1YyDujBRxqMsLj0.roa (raw, json)
Hash identifier: zobmoZY8aX342FI6e0NiDJ1iPFnM3VbAEsvKjwf9uU8=
Subject key identifier: E8:F7:72:82:30:9B:3D:F1:46:D5:8C:83:BA:30:51:C6:A3:2C:2E:3D
Certificate issuer: /CN=668d2f64c337465ed38da5f7cc4584df87d4a744
Certificate serial: 03B8DBF5
Authority key identifier: 66:8D:2F:64:C3:37:46:5E:D3:8D:A5:F7:CC:45:84:DF:87:D4:A7:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zo0vZMM3Rl7TjaX3zEWE34fUp0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/6PdygjCbPfFG1YyDujBRxqMsLj0.roa
Signing time: Sat 01 Jan 2022 09:59:53 +0000
ROA not before: Sat 01 Jan 2022 09:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203329
IP address blocks: 2a00:b404:e000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62446581 (0x3b8dbf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=668d2f64c337465ed38da5f7cc4584df87d4a744
Validity
Not Before: Jan 1 09:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8f77282309b3df146d58c83ba3051c6a32c2e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:17:4f:b3:9d:e6:2c:22:17:c2:55:1b:38:b9:
92:75:81:2a:04:77:f5:77:57:b1:f2:f8:6d:41:28:
52:45:b6:bc:98:ad:e2:65:64:47:68:81:d1:3d:7f:
a4:e0:22:cb:57:27:6d:20:09:59:d2:70:94:e6:48:
3b:2a:bf:a1:f9:30:c0:03:14:29:b2:9a:f5:17:8f:
cf:72:ff:05:a1:38:b7:e1:e8:f1:80:11:32:a1:c7:
14:bf:8f:48:71:11:e5:c9:29:2c:0b:04:05:77:5d:
c8:9c:65:65:d8:47:29:b1:81:aa:20:14:17:66:f7:
22:df:ee:39:98:b8:c3:9c:e2:46:42:e5:0b:aa:8c:
ec:f1:c2:06:e7:05:33:7a:d0:7d:a4:a1:2c:4b:38:
d3:10:89:ac:c9:65:8d:f7:2a:03:d4:76:17:10:4d:
91:68:47:74:e3:c2:99:56:7e:f2:4f:7f:09:e8:ac:
f5:65:fa:eb:95:b0:b4:39:dd:a9:49:9e:95:5f:b2:
b6:68:b8:70:dc:ff:1b:cb:c3:01:26:df:a9:69:72:
8b:b3:2c:94:2b:64:d1:b4:14:43:88:82:89:27:d5:
f3:46:1b:3a:f9:53:b5:5a:23:d2:3f:ec:aa:a7:1e:
3a:f7:ce:a2:c6:8c:60:d9:e4:37:b8:10:2e:c6:49:
59:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F7:72:82:30:9B:3D:F1:46:D5:8C:83:BA:30:51:C6:A3:2C:2E:3D
X509v3 Authority Key Identifier:
keyid:66:8D:2F:64:C3:37:46:5E:D3:8D:A5:F7:CC:45:84:DF:87:D4:A7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zo0vZMM3Rl7TjaX3zEWE34fUp0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/6PdygjCbPfFG1YyDujBRxqMsLj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/Zo0vZMM3Rl7TjaX3zEWE34fUp0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:b404:e000::/36
Signature Algorithm: sha256WithRSAEncryption
7d:a4:9d:81:10:79:b5:ce:f3:99:f6:6d:b1:10:1b:e5:76:71:
e3:6b:7d:7b:92:13:f4:55:5d:26:b5:0a:af:24:5e:12:f5:c2:
9b:05:d3:5d:b8:b7:cb:60:31:fc:fa:c4:8a:2a:b8:e1:7f:01:
35:02:51:55:55:bb:61:fd:17:57:39:2a:08:ba:87:51:e5:fc:
6c:ff:ca:56:65:20:b6:af:ca:95:c9:8d:4d:bc:e1:c8:c4:72:
80:bd:02:f5:99:62:95:e9:be:2c:a4:c7:4d:11:58:64:24:aa:
3a:8c:d0:85:45:b8:34:89:a7:29:69:65:c7:8e:ba:3e:d5:4f:
a9:ba:bf:df:84:1d:2b:f3:4f:90:38:a4:f1:14:4e:69:86:3d:
09:ab:71:b2:f4:7b:81:40:24:69:1c:72:d4:2c:d6:b1:f2:b4:
34:6e:26:2e:5d:48:cb:15:f3:fa:2c:86:e1:8b:ac:ab:b4:ce:
83:ed:e8:85:a4:9c:cb:b3:a6:3a:02:c9:f2:58:1b:c6:8d:df:
94:cd:c6:dd:a9:c1:f6:6a:b2:34:d7:88:50:ad:19:1f:2a:fa:
04:df:00:05:2d:33:2c:db:35:4c:fc:ca:76:ca:31:e6:1b:21:
be:90:6b:58:86:11:7a:99:85:37:e0:2b:04:ec:74:88:e1:4e:
a7:03:50:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:11 2024 by rpki-client on console-fra.rpki-client.org