Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/AzLa2UGwltEwBm5GiMTu-yY9WRI.roa
File: AzLa2UGwltEwBm5GiMTu-yY9WRI.roa (raw, json)
Hash identifier: F8xGzJTNmlgZ6dkGq+GVPBxCEmdx/gaUdW7G+nBof3s=
Subject key identifier: 03:32:DA:D9:41:B0:96:D1:30:06:6E:46:88:C4:EE:FB:26:3D:59:12
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEF0C83
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/AzLa2UGwltEwBm5GiMTu-yY9WRI.roa
Signing time: Sat 01 Jan 2022 14:59:49 +0000
ROA not before: Sat 01 Jan 2022 14:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208872
IP address blocks: 2a06:e881:6600::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267324547 (0xfef0c83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0332dad941b096d130066e4688c4eefb263d5912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f9:5c:ba:72:ec:e1:d6:8b:37:c2:6d:a0:3a:
44:ab:70:f7:8a:9a:a0:df:9f:2d:6e:a1:53:8e:ee:
c3:8d:69:ac:6f:ba:c2:8a:c1:66:ee:8e:c9:66:e2:
5d:8d:2d:e9:d1:1e:0d:7d:6f:9f:87:ba:b2:55:7f:
40:83:ee:ae:5f:50:bb:c7:09:98:e4:da:4e:c5:52:
72:83:74:49:bd:9a:26:0c:b4:3c:93:c2:ff:86:85:
9c:5d:89:4b:41:ff:f5:94:bf:67:06:6d:c7:03:b9:
ea:e5:09:14:cd:b9:8a:12:d9:05:bd:08:4d:e2:7c:
66:eb:d4:be:59:4e:e7:6f:3d:75:63:04:53:01:e2:
43:fb:63:69:39:9d:6a:c0:16:72:62:fb:f4:0e:c5:
e1:5c:af:4c:d9:cc:83:8e:a1:ad:0e:68:8f:bc:47:
95:c0:cc:eb:21:da:69:a1:ad:ba:52:58:58:9f:c8:
d9:c4:a8:a6:f7:a5:d9:0c:e8:69:da:0f:3c:d3:fd:
e4:7d:f0:a2:9b:c1:39:b4:ef:b4:10:08:49:1b:6e:
64:5b:7d:bd:12:87:a8:34:29:35:a8:18:12:2e:60:
65:7b:25:d4:3d:10:32:30:76:3e:7b:b7:c7:c7:55:
8a:72:7c:58:6e:50:48:92:34:39:5b:11:a4:63:4e:
40:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:32:DA:D9:41:B0:96:D1:30:06:6E:46:88:C4:EE:FB:26:3D:59:12
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/AzLa2UGwltEwBm5GiMTu-yY9WRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:6600::/44
Signature Algorithm: sha256WithRSAEncryption
96:da:77:41:2a:5f:3f:fb:17:d9:8c:ad:ff:f2:f2:f9:8f:35:
f4:93:f3:bd:21:66:87:23:42:18:76:d9:e9:7b:2f:34:c6:da:
87:73:64:bc:e7:bf:30:41:3e:31:3d:06:61:92:0b:40:fc:a4:
d7:3b:f3:4d:d7:28:c8:6b:51:c8:be:5d:a6:34:26:e2:be:05:
77:bd:de:03:6b:0f:b7:10:e1:6c:cc:5d:77:47:87:4d:a3:3c:
53:95:c7:8a:3e:27:b9:91:f2:43:a5:a5:6b:d5:6b:46:e8:4f:
0b:54:a1:0a:e5:e4:e7:23:4b:e4:76:ea:cf:e1:ab:6c:48:4e:
22:5b:34:29:6f:17:a8:4f:e5:3e:bc:a6:d6:17:42:e6:07:9f:
07:40:10:6c:0a:74:ef:c3:b0:39:3d:4d:dd:18:40:f0:8e:13:
b4:b9:99:4a:80:ac:db:86:1e:36:68:26:55:ff:af:f5:d2:71:
74:00:ac:43:b2:85:a8:50:26:2c:50:0f:30:34:e9:a1:40:91:
11:de:c6:9b:7c:b1:58:ee:3e:0f:2d:66:a1:68:90:6d:5e:57:
8d:c1:32:7f:a8:f2:bc:02:5b:de:26:92:96:d8:45:a7:45:34:
6f:72:0c:d4:04:2b:cc:49:f3:d7:91:d0:bf:14:26:a8:1b:19:
6f:8c:f5:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org