Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/ejAq2zRCFN22VAFkaO1TfqD73Uw.roa
File: ejAq2zRCFN22VAFkaO1TfqD73Uw.roa (raw, json)
Hash identifier: Jv+8Pj/e2xqqWim/UCAz1xqWn6lhDJAeEwkCRlMG4PI=
Subject key identifier: 7A:30:2A:DB:34:42:14:DD:B6:54:01:64:68:ED:53:7E:A0:FB:DD:4C
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 09C863C4
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/ejAq2zRCFN22VAFkaO1TfqD73Uw.roa
Signing time: Wed 15 Jun 2022 05:48:44 +0000
ROA not before: Wed 15 Jun 2022 05:48:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42093
IP address blocks: 2a06:c3c0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164127684 (0x9c863c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jun 15 05:48:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a302adb344214ddb654016468ed537ea0fbdd4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:60:b0:af:53:0d:2f:48:72:30:49:2a:ea:
71:ef:eb:10:0f:9a:f1:18:c0:ba:6e:a2:a9:8a:f7:
2a:ff:61:55:d0:1b:36:0e:6e:9e:66:52:eb:7b:7c:
ad:a0:01:b0:ff:36:e1:75:4e:98:b3:25:53:a9:3f:
dc:a0:50:88:ee:64:cb:cd:90:f6:ad:1a:13:5b:b1:
a2:30:6e:76:f8:2c:24:f3:7e:19:83:99:10:19:3c:
5e:0a:b4:7d:03:6d:32:88:b0:d8:b6:b2:85:59:b7:
68:ea:39:cf:83:e6:83:75:3d:8b:1e:ad:5d:a2:32:
84:37:6a:46:09:25:94:13:b4:b8:6a:ca:2c:70:b0:
df:47:d9:48:68:d2:15:fd:7a:d9:c8:da:19:59:13:
c3:24:ab:e1:1a:f7:4c:63:f9:59:03:34:84:6e:a8:
c7:0e:91:52:62:96:37:ef:53:f1:60:aa:a7:c9:ba:
fb:41:1f:a0:d7:3d:be:14:ae:58:97:d4:88:05:57:
3e:bd:33:97:0f:a9:23:8f:c9:76:d2:ec:32:d5:33:
c8:88:76:9f:91:f3:79:0f:33:e2:df:3f:4a:a3:da:
a7:83:30:16:8f:27:ba:37:f9:9c:ed:62:be:64:ed:
03:05:d7:2d:56:7e:89:5d:ad:b2:c0:d8:08:13:1f:
8a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:30:2A:DB:34:42:14:DD:B6:54:01:64:68:ED:53:7E:A0:FB:DD:4C
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/ejAq2zRCFN22VAFkaO1TfqD73Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0:3::/48
Signature Algorithm: sha256WithRSAEncryption
9e:10:6e:dc:94:9b:44:2b:51:a9:5b:85:91:fe:24:3f:4b:46:
98:59:c0:c5:6e:5a:13:6d:5a:55:78:01:96:1e:67:6e:88:f0:
68:5a:25:63:b6:c9:69:7a:aa:4b:a0:de:40:c3:d2:40:62:c1:
62:82:9a:0d:fd:42:57:53:a4:84:2e:ec:15:58:e9:77:2f:68:
06:e6:2b:c6:b9:ef:b3:39:b3:2b:7d:c3:13:be:c2:bd:39:b9:
4c:1b:cf:ee:ae:2f:64:3d:a8:64:f3:aa:eb:78:ef:db:4d:53:
52:05:f4:d0:0f:26:19:13:d7:f5:33:6a:65:7e:c2:cb:f4:f4:
ed:35:13:9c:58:6c:3b:7b:4d:68:4e:ab:be:c7:9e:f6:cf:1e:
f5:cd:f0:d1:ce:f4:da:c0:9a:8d:9c:fe:1b:41:c4:46:f7:db:
70:47:50:4e:32:12:12:49:1b:9d:c2:a3:92:e7:f2:a9:b4:c5:
89:bb:bb:8d:8a:87:23:18:a7:19:5d:6f:98:9b:16:ba:f1:07:
be:2a:48:23:44:12:61:be:73:61:af:2a:a9:97:b4:97:4d:71:
86:0f:6f:8f:26:de:35:af:da:30:67:d4:f2:70:c5:13:fe:dc:
1f:6a:c4:7d:7b:92:5f:0b:19:b2:73:6a:59:c4:38:1c:7b:76:
4d:17:29:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org