Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/6H6UqNiXZHo2KrFtEbDhq_7w2xI.roa
File: 6H6UqNiXZHo2KrFtEbDhq_7w2xI.roa (raw, json)
Hash identifier: 2yNJlwIHe06mp81IVih61Mzm6/OhG5MMnjAgZxd3Pcc=
Subject key identifier: E8:7E:94:A8:D8:97:64:7A:36:2A:B1:6D:11:B0:E1:AB:FE:F0:DB:12
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AA41844
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/6H6UqNiXZHo2KrFtEbDhq_7w2xI.roa
Signing time: Sat 01 Jan 2022 08:57:41 +0000
ROA not before: Sat 01 Jan 2022 08:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8485
IP address blocks: 2a02:e840:1002::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178526276 (0xaa41844)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e87e94a8d897647a362ab16d11b0e1abfef0db12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fc:4b:ad:50:31:01:40:fb:b3:c6:4f:54:f3:
92:0f:ff:b7:75:5c:ad:8d:18:84:ce:8c:e8:de:6c:
64:76:96:7e:c4:f0:8e:4e:40:7f:cc:8f:06:2d:7a:
22:f2:1e:80:f2:bd:d3:36:df:9d:dc:1c:02:7b:78:
0d:a9:78:54:3b:69:a2:57:70:12:4f:95:bc:7f:ea:
86:92:6c:1e:d1:36:9e:4d:e5:e0:63:48:cc:a3:87:
81:7b:1d:9c:d0:79:08:ba:55:74:4d:63:9b:95:8c:
41:d5:58:ef:09:be:59:29:93:e6:38:8e:97:c5:2b:
16:92:84:26:43:49:6f:90:c4:73:73:2d:5e:34:fb:
6c:d5:b5:16:65:23:a9:a3:0e:a8:b8:6a:f1:ce:5b:
ce:2f:29:3a:91:2c:1c:db:dc:97:d8:f4:e8:cd:87:
d7:62:e4:0a:55:83:9b:e0:df:26:3b:ad:90:f1:60:
9e:1f:17:a8:98:e1:c4:27:53:fa:2b:28:eb:a6:82:
6a:2c:1a:af:0c:4d:08:0a:04:ec:d0:00:c9:28:44:
4c:e9:1f:b8:bf:69:78:ef:ca:ad:68:ed:e3:75:41:
0f:d9:8b:93:4e:88:24:65:d4:0c:a8:be:2c:83:fb:
cc:fb:42:50:dc:91:c2:98:88:c6:e5:31:bf:89:06:
f2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7E:94:A8:D8:97:64:7A:36:2A:B1:6D:11:B0:E1:AB:FE:F0:DB:12
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/6H6UqNiXZHo2KrFtEbDhq_7w2xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e840:1002::/48
Signature Algorithm: sha256WithRSAEncryption
84:63:e7:2d:73:a9:85:26:ae:68:57:a7:40:c3:11:1f:e1:84:
26:d5:d8:2b:36:18:fa:3c:0b:00:96:e7:95:b0:ff:a6:9f:80:
3e:d5:d5:9a:0c:3b:81:93:dc:8b:dd:74:f6:27:29:c1:08:3d:
3b:fe:12:fa:18:23:f4:8c:0a:3b:34:76:f8:0e:bc:3f:d3:d1:
f1:c1:3b:31:5d:80:e3:f7:00:06:4d:56:81:58:e8:34:6c:29:
b8:39:a8:50:74:ab:44:4e:32:a0:88:55:e3:49:9e:ef:ff:03:
7f:5e:a1:3b:e6:e3:6d:93:c7:d5:00:ef:84:b2:9b:08:dd:e8:
27:15:22:ad:71:61:77:b2:01:e5:71:7b:d0:86:06:bb:9b:52:
4b:ae:f2:38:05:89:24:9d:9b:4e:74:10:78:57:ef:6f:2b:49:
f6:84:76:e7:4d:9d:a9:c0:8b:7d:14:85:ce:60:0e:a5:3f:e0:
e0:95:63:ef:8b:09:59:32:23:3b:c2:ef:95:2e:ec:32:5e:3f:
34:ae:d7:e2:25:1b:e3:99:df:aa:5e:da:f1:68:05:01:5a:e4:
3b:ad:3c:8a:2e:0e:f1:64:a5:fb:2e:b9:59:55:e5:e1:c5:b0:
be:68:03:c0:f4:52:f5:3f:17:32:25:43:23:f6:b8:5c:95:21:
ca:b9:a1:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org