Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/CZ6EUKm6_sHFGyiXH6U67v_KeWM.roa
File: CZ6EUKm6_sHFGyiXH6U67v_KeWM.roa (raw, json)
Hash identifier: lOUyx9/eo5L5+OjX7gdrusWmLJG3uqihRpWIkQQYLIE=
Subject key identifier: 09:9E:84:50:A9:BA:FE:C1:C5:1B:28:97:1F:A5:3A:EE:FF:CA:79:63
Certificate issuer: /CN=0502861f923c7ec1132b548f7abb861baca1f406
Certificate serial: 0AC786E9
Authority key identifier: 05:02:86:1F:92:3C:7E:C1:13:2B:54:8F:7A:BB:86:1B:AC:A1:F4:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQKGH5I8fsETK1SPeruGG6yh9AY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/CZ6EUKm6_sHFGyiXH6U67v_KeWM.roa
Signing time: Sat 01 Jan 2022 00:54:19 +0000
ROA not before: Sat 01 Jan 2022 00:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206281
IP address blocks: 2a06:2ec0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180848361 (0xac786e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0502861f923c7ec1132b548f7abb861baca1f406
Validity
Not Before: Jan 1 00:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=099e8450a9bafec1c51b28971fa53aeeffca7963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fc:a0:20:c0:e8:e1:ed:41:f7:d0:f4:32:d3:
5f:ff:04:c6:90:a2:1e:cd:52:c7:2d:01:c9:69:e1:
69:d1:60:5e:86:f3:69:06:4a:8a:ec:5c:70:13:44:
74:2d:3e:c3:11:8c:81:ad:d2:26:13:64:09:b7:23:
aa:8e:8e:c0:6e:3e:9d:3c:a8:10:c1:52:e1:49:5d:
3e:c7:91:61:08:8d:cc:d6:fb:56:f7:ee:c3:5c:b6:
11:48:a2:17:15:6c:80:23:1d:d3:98:77:20:a4:45:
04:29:94:66:36:08:e9:ab:35:46:dd:fa:80:fc:69:
77:74:03:0f:60:3f:91:53:ec:a3:d6:43:7b:cf:79:
f3:d6:58:88:e7:4b:11:84:da:b2:13:51:1f:7a:1f:
19:0a:d0:e9:49:4d:d0:fe:de:bc:50:59:55:a9:4a:
c4:19:e1:aa:a4:75:34:79:32:d2:41:f3:98:0e:7c:
0a:39:71:34:ef:7f:bd:20:99:5e:5e:42:52:f1:fa:
d6:66:61:18:c5:56:fa:59:11:ef:d9:40:72:89:80:
a7:ac:82:b6:71:a8:1e:c0:03:d5:20:e9:23:40:34:
a5:89:98:0d:9e:76:8b:0b:63:00:c9:98:76:68:08:
97:41:27:22:de:28:34:a7:d0:3d:a9:b0:cb:52:40:
98:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:9E:84:50:A9:BA:FE:C1:C5:1B:28:97:1F:A5:3A:EE:FF:CA:79:63
X509v3 Authority Key Identifier:
keyid:05:02:86:1F:92:3C:7E:C1:13:2B:54:8F:7A:BB:86:1B:AC:A1:F4:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQKGH5I8fsETK1SPeruGG6yh9AY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/CZ6EUKm6_sHFGyiXH6U67v_KeWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:2ec0::/32
Signature Algorithm: sha256WithRSAEncryption
ab:14:bf:82:ee:2c:8d:1c:df:d7:06:3f:af:73:b1:12:1c:b3:
e0:1d:cd:f5:ca:56:28:7b:1e:65:82:22:e8:85:d1:bb:aa:33:
a0:c3:e5:ef:aa:c1:8e:ef:1f:24:5f:97:b4:40:ad:8a:d4:79:
9e:ec:05:51:6d:2e:86:28:3d:05:db:5a:44:fa:20:c3:74:50:
70:dc:e3:e3:66:9f:dd:8a:b5:ba:69:c5:d8:40:e1:f3:97:38:
82:e8:8c:2b:66:7a:c8:a9:de:54:db:25:c9:6b:b6:99:59:29:
d3:b8:c6:4c:bc:5b:3e:d3:4e:9b:90:43:80:5a:6a:29:40:56:
fa:d1:fd:be:e3:32:75:6b:8e:f7:aa:80:00:3a:ff:9a:1b:04:
e0:28:62:07:17:c5:1a:82:7c:0d:75:5f:1f:a7:de:87:c0:c7:
ce:2f:3c:82:f0:69:85:94:0d:a4:ca:45:14:42:40:f9:4c:39:
08:20:26:6c:12:10:b2:a0:01:8c:34:d2:63:b1:2f:e0:fa:4c:
b3:83:21:75:73:90:1d:11:c0:1e:8e:81:80:82:29:85:f6:09:
f1:35:8e:24:f5:40:5d:78:a6:3a:cf:48:49:99:a7:5d:1d:2f:
15:36:da:03:7a:26:da:00:41:cc:76:c4:45:cc:1c:5f:6d:49:
61:37:80:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-ams.rpki-client.org