Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/6MPWq6yyXKTNXRjJpTfOkvW-a7s.roa
File: 6MPWq6yyXKTNXRjJpTfOkvW-a7s.roa (raw, json)
Hash identifier: 7CTUWgTQpC7skm73KcAs9EkNiRHFI2wgdTwpd5EgqfE=
Subject key identifier: E8:C3:D6:AB:AC:B2:5C:A4:CD:5D:18:C9:A5:37:CE:92:F5:BE:6B:BB
Certificate issuer: /CN=101287927ad7b1db479ae5ab92ab87c4a4faf496
Certificate serial: 19BBCE86
Authority key identifier: 10:12:87:92:7A:D7:B1:DB:47:9A:E5:AB:92:AB:87:C4:A4:FA:F4:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EBKHknrXsdtHmuWrkquHxKT69JY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/6MPWq6yyXKTNXRjJpTfOkvW-a7s.roa
Signing time: Sat 01 Jan 2022 09:54:09 +0000
ROA not before: Sat 01 Jan 2022 09:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15557
IP address blocks: 2a00:be80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 431738502 (0x19bbce86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=101287927ad7b1db479ae5ab92ab87c4a4faf496
Validity
Not Before: Jan 1 09:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8c3d6abacb25ca4cd5d18c9a537ce92f5be6bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:85:56:5c:60:03:a2:e5:59:49:c6:d2:57:c9:
0d:74:cf:1d:b8:6d:0f:81:d1:75:14:a8:45:e2:5e:
02:85:48:87:fa:71:06:21:fa:3d:03:54:7a:b7:66:
8b:9a:9d:1b:5d:f5:bb:ed:a3:b5:18:5d:b9:37:e3:
cc:54:90:d1:6e:b4:c5:86:93:cc:32:58:77:59:ec:
8b:77:d6:6c:72:3b:3f:fc:f0:67:cb:95:1e:18:28:
6e:57:1b:6f:c0:ac:c8:ab:f9:cd:7c:d1:bf:1a:00:
59:4b:55:9d:f1:05:4e:57:bd:91:be:a5:b6:2a:57:
d7:6f:b0:7d:c9:49:7b:b4:31:7f:3c:1d:9b:fb:c1:
bc:94:c5:2b:2b:58:bd:2f:59:4a:de:67:42:bd:61:
a3:ab:21:a5:69:9d:2f:2b:b8:15:58:cb:eb:81:3a:
c0:4a:69:32:21:fb:8d:3e:e1:2b:b6:e1:d3:9a:9d:
80:74:f8:68:96:91:c0:9a:87:98:55:19:b0:db:a0:
c3:1f:7d:7a:b8:9a:3e:2e:51:58:b5:50:21:d2:59:
c0:d5:8a:82:9d:cf:04:8e:1a:2d:37:18:e7:21:79:
95:88:ac:a9:aa:e2:a5:fc:30:5d:cf:01:b5:9c:3d:
86:f2:68:36:01:a4:a3:f3:84:43:2d:4e:5a:2b:57:
ee:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C3:D6:AB:AC:B2:5C:A4:CD:5D:18:C9:A5:37:CE:92:F5:BE:6B:BB
X509v3 Authority Key Identifier:
keyid:10:12:87:92:7A:D7:B1:DB:47:9A:E5:AB:92:AB:87:C4:A4:FA:F4:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EBKHknrXsdtHmuWrkquHxKT69JY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/6MPWq6yyXKTNXRjJpTfOkvW-a7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/EBKHknrXsdtHmuWrkquHxKT69JY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:be80::/32
Signature Algorithm: sha256WithRSAEncryption
81:9b:b2:8c:9a:2f:c4:78:dc:2c:79:59:c3:d2:bb:39:62:48:
bf:ce:69:59:c6:4d:03:73:48:4d:dd:fd:1f:72:b9:69:22:d1:
48:cd:3b:2b:5d:30:da:e2:38:22:14:5b:95:25:99:74:1e:46:
10:37:27:83:82:14:4a:59:00:be:80:07:ec:7b:ed:b3:23:d8:
f0:33:c2:22:53:b1:e3:44:54:30:ef:0a:9e:80:c9:68:08:ba:
02:51:f9:0b:44:22:8e:ea:39:ae:b5:ab:5d:99:ca:22:a7:6f:
2f:75:01:30:28:97:c4:3b:44:fb:52:c6:d2:46:ff:30:e9:76:
fc:ef:e3:5a:4c:11:9c:29:9e:db:5c:eb:3e:83:03:88:73:c5:
b5:f1:9c:ae:48:bf:ba:c7:dd:ed:c1:60:f9:31:0d:3f:9a:91:
f8:95:31:4c:54:fd:57:66:20:55:4c:c8:2c:da:cb:fb:68:ab:
bb:1d:c2:b0:4c:f9:85:f3:52:8c:bc:d2:19:51:8b:12:fe:a4:
69:0d:82:2a:0e:bc:c7:6e:fa:c7:1c:fb:1f:62:e9:cc:d8:63:
9d:5c:c7:48:07:db:89:04:30:74:8f:17:6f:20:00:c5:85:0b:
28:e9:36:dc:fe:c1:53:fc:ba:8a:f1:fe:18:e2:51:09:9f:f1:
0b:f7:40:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:36 2023 by rpki-client on console-ams.rpki-client.org