Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/6UKR69R7dre3dnTmrqAJTEk2a1Y.roa
File: 6UKR69R7dre3dnTmrqAJTEk2a1Y.roa (raw, json)
Hash identifier: KIZgm6WAcbwIIBaYMohsl7pSp435ii6yDzSELQZpKuw=
Subject key identifier: E9:42:91:EB:D4:7B:76:B7:B7:76:74:E6:AE:A0:09:4C:49:36:6B:56
Certificate issuer: /CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Certificate serial: 2D470E
Authority key identifier: 40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/6UKR69R7dre3dnTmrqAJTEk2a1Y.roa
Signing time: Wed 22 Jun 2022 20:49:32 +0000
ROA not before: Wed 22 Jun 2022 20:49:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204774
IP address blocks: 2a13:5000::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2967310 (0x2d470e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Validity
Not Before: Jun 22 20:49:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e94291ebd47b76b7b77674e6aea0094c49366b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:b5:75:05:71:01:60:f7:e2:cf:c1:e3:c0:
72:18:2a:fb:e6:01:b1:27:16:bc:02:21:3b:9c:8c:
70:aa:27:b6:68:6a:31:87:ee:2f:8a:43:1e:35:83:
22:0b:be:4c:f4:bf:67:f8:9b:15:aa:70:df:29:8e:
63:e9:57:97:9f:83:a4:3a:f4:69:15:68:55:ed:36:
62:ee:73:62:74:89:b1:8e:3c:0b:50:b5:d5:42:da:
94:7c:af:8a:3e:59:ea:5c:bb:a8:c7:8a:0a:8b:1a:
3f:e1:91:c0:49:82:34:76:50:53:22:32:4f:b3:b9:
90:04:e9:33:8a:8f:0e:94:02:96:e1:a2:c0:08:df:
58:d6:fb:0a:de:1e:63:4f:25:e3:d8:2f:6b:cf:d5:
04:63:f7:64:7f:9c:8b:4b:7c:74:20:74:d0:d6:0b:
20:b6:c4:ca:4f:17:07:7c:3f:bf:75:dc:50:4e:6e:
7c:a8:ba:e2:7c:54:9b:55:74:1c:e9:2c:81:49:94:
eb:71:38:a7:f9:49:18:31:62:49:a9:2f:9a:cb:10:
db:59:ad:45:61:0c:64:ca:8c:51:91:1c:da:6b:a9:
93:ab:76:18:91:10:37:95:83:0d:60:b6:f3:85:f3:
d8:6d:4b:d7:f6:6f:fe:42:ad:71:9e:42:11:c5:58:
70:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:42:91:EB:D4:7B:76:B7:B7:76:74:E6:AE:A0:09:4C:49:36:6B:56
X509v3 Authority Key Identifier:
keyid:40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/6UKR69R7dre3dnTmrqAJTEk2a1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QMyB_4LO1hrvhHas56DoGLuuj8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5000::/29
Signature Algorithm: sha256WithRSAEncryption
5d:80:dc:d9:a5:84:da:85:e6:fb:b8:cf:9d:88:d0:a0:e4:74:
c8:b9:fa:ef:7a:01:64:2d:36:cf:ba:36:05:78:e3:b0:a5:64:
1d:8d:f9:d3:8e:49:da:1d:54:7f:7b:f2:8e:0b:26:93:39:10:
aa:2f:2b:fc:8c:7a:5d:b2:19:55:6a:16:fd:0e:60:ae:b5:95:
c5:c2:28:6b:46:23:fe:28:29:95:ff:dc:21:19:e9:b4:bd:a0:
ec:41:9a:41:2d:d1:5c:45:21:50:79:c8:9b:18:16:44:df:c2:
56:cc:70:42:44:53:b2:87:72:73:6e:9b:7c:65:48:90:82:f9:
07:00:59:e9:2a:1d:62:d3:6c:52:bf:ba:b5:b3:d0:55:9e:90:
36:1b:50:ea:47:cf:28:5e:ec:29:5f:2a:59:c2:c8:ef:73:35:
93:c2:e5:1b:0f:83:31:df:1f:9e:ab:48:2c:2e:b2:a8:47:87:
7e:7b:87:69:d3:a3:31:80:ab:47:71:2b:ee:af:b2:51:c4:3a:
3b:11:db:e1:9b:34:c8:dc:30:b7:c5:9c:5c:f3:37:15:94:c2:
64:74:fe:fc:94:9f:29:37:2c:2b:91:e6:50:e7:5b:56:40:93:
a2:ec:7e:b4:5f:b3:04:75:bf:e8:bf:0e:57:6c:cf:89:3c:a9:
b5:b8:3a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:42 2024 by rpki-client on console-ams.rpki-client.org