Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6ZyNMagaK_yQ5v55ZfEE4IZbK8c.roa
File: 6ZyNMagaK_yQ5v55ZfEE4IZbK8c.roa (raw, json)
Hash identifier: dH9Yz9XYeokAlJ2iurH4oUTjEjn1oFU5nWJBQwqsX8I=
Subject key identifier: E9:9C:8D:31:A8:1A:2B:FC:90:E6:FE:79:65:F1:04:E0:86:5B:2B:C7
Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984
Certificate serial: 03E14DF2
Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6ZyNMagaK_yQ5v55ZfEE4IZbK8c.roa
Signing time: Sat 01 Jan 2022 06:56:34 +0000
ROA not before: Sat 01 Jan 2022 06:56:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50389
IP address blocks: 2a00:8860:300::/40 maxlen: 64
2a00:8861:300::/40 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65097202 (0x3e14df2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984
Validity
Not Before: Jan 1 06:56:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e99c8d31a81a2bfc90e6fe7965f104e0865b2bc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:eb:cb:da:cb:42:ed:8e:4c:9a:44:97:73:a4:
74:f5:c8:66:95:11:65:82:da:fd:a0:96:ac:39:71:
38:7c:1a:55:18:ca:a5:2f:7f:d0:a2:fa:4e:21:a8:
cf:2e:8f:28:1c:da:cb:4b:db:d7:40:05:0d:67:32:
ae:d7:bb:11:3d:6b:78:37:f4:dd:9c:99:f7:a7:9d:
53:a1:3a:40:69:9a:74:bc:a6:ef:d5:da:61:84:61:
39:71:91:5b:a9:ea:79:6e:91:a4:86:1c:43:80:be:
c5:14:a3:7f:6e:c5:b9:9b:99:bb:a9:c1:81:81:6f:
f0:4a:73:60:16:62:5f:50:ef:45:4d:5a:bb:72:45:
03:3a:75:31:25:3a:4b:e4:30:91:e6:61:9d:89:e3:
65:b2:ab:eb:92:1a:46:a6:0c:aa:3b:d7:fb:76:dd:
59:21:3c:e1:ad:fa:e9:1b:18:a5:15:28:af:da:13:
b5:2c:6b:85:9c:ec:2b:fd:cb:2a:0b:c1:3e:a0:f6:
c7:92:5c:8f:c7:af:9e:62:4f:83:83:ac:41:95:3f:
fa:c6:8f:5b:ad:84:16:76:8a:48:31:3b:3d:1f:11:
e6:1d:f7:99:01:2b:59:74:fb:be:c0:c9:7e:eb:85:
63:63:66:91:5a:f7:6d:17:1c:b2:e0:40:eb:c9:a6:
39:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9C:8D:31:A8:1A:2B:FC:90:E6:FE:79:65:F1:04:E0:86:5B:2B:C7
X509v3 Authority Key Identifier:
keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6ZyNMagaK_yQ5v55ZfEE4IZbK8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8860:300::/40
2a00:8861:300::/40
Signature Algorithm: sha256WithRSAEncryption
52:6d:d6:2c:81:dc:47:b5:15:d3:74:fb:ac:e1:63:58:d5:7a:
f6:da:9e:22:43:e4:7f:9c:1b:8c:6b:64:43:fe:46:f7:2d:f8:
44:c5:8e:8d:f2:4b:61:6a:2a:a3:e6:b9:18:55:d0:65:f1:d1:
ce:1a:c2:7d:1f:bf:45:a0:3b:29:37:d1:f9:d9:70:1b:3e:f0:
95:dd:46:e1:9a:cc:15:24:99:59:31:a3:e0:1c:a3:bc:95:a9:
bd:43:d8:0a:ea:06:43:e8:e7:ba:d3:c1:6f:65:d2:53:c2:b5:
24:b5:a6:4b:3d:3a:79:21:9f:86:73:46:11:da:23:dd:7f:02:
cf:58:a5:0f:39:35:b7:5a:08:7b:94:b5:ed:85:fc:f9:68:c1:
07:84:5a:af:82:8d:de:85:b2:79:81:f2:97:4e:3d:a1:7d:be:
47:35:b5:51:e9:cf:75:d1:77:ae:35:63:c8:36:10:8c:50:3e:
10:00:80:b0:8b:5a:c5:88:4c:e7:63:48:a1:70:bd:73:7e:2d:
b5:f2:66:69:26:d4:d6:6e:ea:1e:e4:03:cf:f2:07:6b:0e:b0:
99:7f:12:51:9f:79:27:0e:84:50:14:2d:88:91:ba:2c:df:b0:
1f:34:97:ee:38:d0:30:d4:96:d9:47:7c:19:8a:fd:6f:10:6f:
7f:00:6d:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org