Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6uGRcr8zOo0TBJ1e5_qtDqGtjTk.roa
File: 6uGRcr8zOo0TBJ1e5_qtDqGtjTk.roa (raw, json)
Hash identifier: IoHgMQFKSV9zKqx6abPiwo3q4zvWklEf/sE+5Rs3bcY=
Subject key identifier: EA:E1:91:72:BF:33:3A:8D:13:04:9D:5E:E7:FA:AD:0E:A1:AD:8D:39
Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984
Certificate serial: 03E463DF
Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6uGRcr8zOo0TBJ1e5_qtDqGtjTk.roa
Signing time: Sat 01 Jan 2022 06:56:38 +0000
ROA not before: Sat 01 Jan 2022 06:56:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210266
IP address blocks: 2a00:8860:700::/40 maxlen: 64
2a00:8861:700::/40 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65299423 (0x3e463df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984
Validity
Not Before: Jan 1 06:56:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eae19172bf333a8d13049d5ee7faad0ea1ad8d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ef:45:25:ef:5d:ae:04:50:29:af:dd:46:5b:
15:cc:94:c3:40:70:55:03:09:fe:c2:93:cd:d5:d6:
30:5b:f2:ab:7b:d7:bd:81:ba:d1:c5:6f:6f:74:18:
3a:09:4e:d6:fa:e7:a9:82:5f:b0:ca:81:f9:4d:2c:
87:12:40:10:a5:b9:b9:12:24:78:5b:b9:70:f7:fd:
67:65:d2:6a:7f:21:04:7b:2d:70:88:bb:3d:5b:4f:
28:8b:8d:33:7a:29:a8:95:95:db:15:04:f7:fb:9b:
78:f9:34:3b:f7:13:3c:33:3f:9a:8e:16:3e:5e:50:
81:ea:e0:bf:cf:db:fe:76:ef:9e:98:a9:bf:ca:cf:
6a:13:81:a0:b2:18:09:6f:1c:d8:0c:79:7a:ed:80:
e7:cf:aa:9a:54:88:be:2f:7e:ee:7a:96:fc:df:52:
5e:c7:69:1d:54:c0:42:35:45:8d:18:1e:66:14:e9:
48:79:cc:82:0d:2f:b7:04:44:d8:bc:83:62:4a:91:
e9:61:61:f1:df:6f:e0:e3:b2:d2:15:73:f6:69:ab:
9a:2d:71:ae:56:4b:09:01:3d:3a:fd:a0:98:fd:f0:
6b:1c:dd:d5:9f:7e:03:ec:08:74:a8:b3:ab:f1:53:
a7:8c:03:c3:8f:92:c9:01:1a:76:30:88:aa:b9:a9:
04:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E1:91:72:BF:33:3A:8D:13:04:9D:5E:E7:FA:AD:0E:A1:AD:8D:39
X509v3 Authority Key Identifier:
keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6uGRcr8zOo0TBJ1e5_qtDqGtjTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8860:700::/40
2a00:8861:700::/40
Signature Algorithm: sha256WithRSAEncryption
16:58:b8:13:71:01:da:79:4b:c3:a2:37:3e:0c:e5:6b:53:d0:
54:32:86:fc:28:ae:63:6a:fc:27:e4:34:2a:7d:a1:8a:7c:e8:
c0:0c:32:b7:e2:c8:ff:8c:4e:ea:9d:ba:08:fd:b0:77:1b:f1:
af:e2:26:fb:cf:7d:41:81:61:d3:3e:80:b6:1f:75:3f:b0:9b:
c4:27:59:fb:be:2a:f4:16:3d:70:47:24:ef:3a:e5:ee:a3:6a:
3f:fd:b0:7b:84:77:f4:d0:de:ef:11:d4:36:85:8a:a2:66:fa:
e9:f8:f9:8e:9c:3e:da:5d:f3:d7:7f:d1:cf:91:34:53:18:95:
1d:be:06:69:6d:0d:e7:fa:6f:0c:78:08:54:72:c2:54:88:23:
e6:65:85:d0:b7:63:1f:f3:01:42:0b:12:c1:17:56:59:d3:59:
bb:f0:d3:84:00:f1:7a:21:3f:c6:45:f8:68:16:cd:a4:7f:43:
de:8d:f5:1a:3c:1e:c6:64:9f:29:d3:e3:bd:82:7f:75:82:89:
56:66:f0:85:d5:31:67:ee:20:8d:46:44:86:e9:57:27:c3:3f:
d0:65:18:dc:d7:b3:05:70:d4:51:0b:a2:24:98:72:ce:b9:cf:
e3:e3:ec:a6:47:d0:e5:7a:6f:c0:29:3b:60:8e:7b:3a:fa:4f:
33:27:aa:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org