Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/6gFdabY4kuoSqnx9VBqwCqkTJk8.roa
File: 6gFdabY4kuoSqnx9VBqwCqkTJk8.roa (raw, json)
Hash identifier: naPeOc+ndGC2sb17zvoGM9v3nePNHEn5ma8nf+jCkEY=
Subject key identifier: EA:01:5D:69:B6:38:92:EA:12:AA:7C:7D:54:1A:B0:0A:A9:13:26:4F
Certificate issuer: /CN=1a11a6636f8ce2cef5836c443565c5fe3ae2f208
Certificate serial: 0904DCDF
Authority key identifier: 1A:11:A6:63:6F:8C:E2:CE:F5:83:6C:44:35:65:C5:FE:3A:E2:F2:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhGmY2-M4s71g2xENWXF_jri8gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/6gFdabY4kuoSqnx9VBqwCqkTJk8.roa
Signing time: Sat 01 Jan 2022 01:01:09 +0000
ROA not before: Sat 01 Jan 2022 01:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206671
IP address blocks: 2001:678:91c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151313631 (0x904dcdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a11a6636f8ce2cef5836c443565c5fe3ae2f208
Validity
Not Before: Jan 1 01:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea015d69b63892ea12aa7c7d541ab00aa913264f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:98:ed:62:1c:0b:60:8d:dc:19:1c:02:82:e8:
ab:21:0e:72:95:6d:2e:ec:17:29:3a:3c:48:37:e4:
70:a2:d8:54:0a:4d:f6:6f:65:31:15:18:29:5f:a0:
32:d4:86:34:73:14:a0:14:f5:df:7b:e8:e7:5f:a1:
b3:ec:f8:13:4e:45:6d:13:a8:2f:e0:45:57:71:9b:
2f:1f:86:22:b7:cb:46:99:9e:4d:51:00:9d:bb:5f:
6e:f6:5c:46:e9:90:37:0a:d7:e4:fc:a3:03:d1:1b:
9e:cf:1d:ff:85:84:bc:cf:c1:cb:32:92:b8:db:4f:
6d:ba:62:a9:15:a0:c9:be:3f:1b:b2:5b:bb:2d:3e:
4f:85:38:ed:bc:28:c8:44:fb:2c:5e:d7:38:55:58:
65:50:71:46:41:71:52:04:ca:5b:0f:f1:7a:34:15:
03:de:8e:e7:fe:32:b9:25:01:71:15:e4:1c:c2:ee:
d2:43:69:ac:bf:7b:9f:a8:61:75:2f:6e:55:d7:ad:
b3:f2:3d:51:7f:8f:b7:f6:88:5b:65:5b:44:0a:58:
4c:a1:39:59:55:26:77:38:b8:7a:35:34:fb:de:cd:
08:67:3b:c1:ff:06:84:63:9b:da:ce:ea:7f:f9:4f:
11:71:20:5e:98:f8:27:dc:6b:a3:26:87:f9:c5:75:
33:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:01:5D:69:B6:38:92:EA:12:AA:7C:7D:54:1A:B0:0A:A9:13:26:4F
X509v3 Authority Key Identifier:
keyid:1A:11:A6:63:6F:8C:E2:CE:F5:83:6C:44:35:65:C5:FE:3A:E2:F2:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhGmY2-M4s71g2xENWXF_jri8gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/6gFdabY4kuoSqnx9VBqwCqkTJk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/GhGmY2-M4s71g2xENWXF_jri8gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:91c::/48
Signature Algorithm: sha256WithRSAEncryption
0c:03:b7:8a:23:68:da:30:1f:17:f3:e7:b0:c9:7e:aa:5d:fa:
39:af:e5:b1:da:92:66:74:7d:14:00:32:89:d4:62:49:9b:03:
ee:01:ce:78:de:fb:8b:67:80:82:d6:f9:97:e2:c1:f4:06:78:
dc:b1:ee:3e:c9:51:61:05:95:b6:21:79:8d:d4:0e:61:2b:23:
6e:27:09:9b:03:a9:79:0c:da:5d:6b:f8:b2:42:75:22:f4:87:
24:78:6a:e3:aa:a3:38:d1:9a:8d:a6:bf:b0:be:81:3c:1b:79:
2c:84:a9:1e:d8:79:ff:1a:62:e4:0b:2c:b8:e4:97:f5:0d:af:
9b:9d:05:ff:f5:68:a3:3a:8d:87:29:dc:21:82:04:d4:36:6d:
70:31:f1:a7:56:09:3e:22:72:8e:45:ac:66:ef:27:c0:77:d9:
89:2b:3f:28:3c:8d:db:62:cd:aa:ea:d3:f8:17:c1:66:dd:6b:
90:0d:57:63:b1:27:a4:48:b6:52:34:3b:08:95:f8:28:50:12:
cc:29:98:76:5f:69:83:b4:5d:ee:2b:62:1d:67:b9:15:2b:db:
d9:6f:33:42:f0:2a:c6:c7:b9:9f:1e:d7:e1:f9:87:4f:c8:82:
c3:3c:ec:04:b6:33:4a:6d:3c:c1:30:30:e8:20:79:a3:b9:52:
4b:eb:c2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:52 2024 by rpki-client on console-fra.rpki-client.org