Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/aguir9wjLIME9qmWrNND2j8gml8.roa
File: aguir9wjLIME9qmWrNND2j8gml8.roa (raw, json)
Hash identifier: 8ixX2+eosRGtqC9f5fOTsToupK8bZpiKIq/PXJxi41A=
Subject key identifier: 6A:0B:A2:AF:DC:23:2C:83:04:F6:A9:96:AC:D3:43:DA:3F:20:9A:5F
Certificate issuer: /CN=09d1a634bbb7aefad87d121a5fe545648738c8c5
Certificate serial: 0183136BEE5C20CE4FDCFEB48C082884B402
Authority key identifier: 09:D1:A6:34:BB:B7:AE:FA:D8:7D:12:1A:5F:E5:45:64:87:38:C8:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CdGmNLu3rvrYfRIaX-VFZIc4yMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/aguir9wjLIME9qmWrNND2j8gml8.roa
Signing time: Tue 06 Sep 2022 15:29:43 +0000
ROA not before: Tue 06 Sep 2022 15:29:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8769
IP address blocks: 2a06:9c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:13:6b:ee:5c:20:ce:4f:dc:fe:b4:8c:08:28:84:b4:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09d1a634bbb7aefad87d121a5fe545648738c8c5
Validity
Not Before: Sep 6 15:29:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a0ba2afdc232c8304f6a996acd343da3f209a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:74:22:5d:9b:f6:ce:63:33:da:7f:70:18:fb:
9f:4e:75:b2:a5:4a:35:71:8b:07:04:d5:a4:eb:eb:
3e:9d:04:b8:0f:ac:6a:42:5b:00:eb:bc:12:a8:8e:
53:db:68:36:0f:08:9f:a3:08:b1:ee:1b:3d:da:1a:
ea:4f:2c:b3:e2:6a:3a:d2:39:78:39:b2:cc:f6:70:
6e:0a:d7:0b:e7:41:0c:13:9b:94:5a:d0:5b:50:23:
e5:a7:62:bb:fb:d0:cd:9a:62:70:35:fa:84:1d:0a:
ae:e0:d9:2d:9e:eb:58:c7:ee:9f:e5:e9:34:a9:36:
54:56:31:1d:1a:54:23:a5:f5:72:0b:7e:54:47:42:
9c:41:38:02:15:70:84:d3:22:b4:9f:fa:4a:85:85:
8d:2f:be:1c:e9:10:8c:01:c3:49:c7:00:1f:8f:ff:
d1:75:4e:51:fc:94:79:40:67:06:a0:a7:37:cd:81:
4b:bf:4e:5f:71:92:86:55:a7:72:6e:f4:62:24:6d:
a0:86:b7:2d:80:fc:17:eb:8d:7d:30:53:00:33:d1:
fc:62:ba:99:61:cd:e2:99:03:d9:a5:2a:8b:83:44:
50:e8:77:0f:cf:5f:a1:c9:ea:55:c1:da:d3:50:0d:
3f:b0:53:07:70:ce:70:d2:74:eb:3c:c1:75:4b:73:
bf:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:0B:A2:AF:DC:23:2C:83:04:F6:A9:96:AC:D3:43:DA:3F:20:9A:5F
X509v3 Authority Key Identifier:
keyid:09:D1:A6:34:BB:B7:AE:FA:D8:7D:12:1A:5F:E5:45:64:87:38:C8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CdGmNLu3rvrYfRIaX-VFZIc4yMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/aguir9wjLIME9qmWrNND2j8gml8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/CdGmNLu3rvrYfRIaX-VFZIc4yMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9c40::/29
Signature Algorithm: sha256WithRSAEncryption
85:11:5f:37:19:ec:80:79:a8:0c:32:d1:11:cf:21:08:1a:92:
2a:42:4b:2b:4a:de:a9:2f:79:bd:69:03:c2:06:3a:df:d1:99:
c0:5b:54:5e:81:34:20:8b:c5:aa:31:d8:0d:09:33:72:12:f4:
7f:b8:d4:6d:84:4e:ac:6e:18:4f:19:f7:e7:0d:d8:66:9c:c3:
dd:00:94:69:80:f3:d2:e6:f9:68:6d:63:c0:ca:02:4d:23:4c:
4c:c1:da:81:cb:95:17:4b:a8:88:ce:52:3e:a6:98:1a:3c:00:
98:b7:85:e3:82:1d:41:20:57:9e:25:8c:65:c9:49:f5:28:0f:
19:2a:9d:ac:11:37:f0:b3:19:34:ea:26:9b:28:45:3a:a2:6d:
50:23:77:78:f4:58:6f:f8:ce:4c:f0:9e:ca:94:5a:88:58:57:
3f:f3:83:a8:68:cb:33:0b:d1:fc:ef:25:a4:73:7f:9b:90:53:
86:5d:3d:ca:c6:3c:85:ce:a3:41:45:d7:5d:7d:9b:20:01:ca:
f7:cb:a0:01:8f:82:3e:38:dd:36:43:90:ab:1e:5f:e0:0c:e6:
cc:3f:3a:2d:25:da:1c:96:2f:7c:63:98:e5:b8:dc:a2:8c:f5:
6e:1b:12:90:b8:63:c2:84:a7:00:cb:5a:47:14:50:b4:04:37:
97:dc:c0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:02 2024 by rpki-client on console-ams.rpki-client.org