Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/m4X4WUlqsbvhmCxH8EBBZ7zYzk0.roa
File: m4X4WUlqsbvhmCxH8EBBZ7zYzk0.roa (raw, json)
Hash identifier: aNWFHLDx13UHUHkuHP/FqGrHOS86lk6MdEJoS2USr3w=
Subject key identifier: 9B:85:F8:59:49:6A:B1:BB:E1:98:2C:47:F0:40:41:67:BC:D8:CE:4D
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEB9683
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/m4X4WUlqsbvhmCxH8EBBZ7zYzk0.roa
Signing time: Sat 01 Jan 2022 14:59:47 +0000
ROA not before: Sat 01 Jan 2022 14:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207748
IP address blocks: 2a06:e881:7100::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267097731 (0xfeb9683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b85f859496ab1bbe1982c47f0404167bcd8ce4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f6:14:a8:b8:1e:5d:ae:69:e2:36:b9:95:be:
df:fc:dc:2f:68:6b:f0:8a:a6:c5:64:54:40:72:76:
9e:87:d2:9d:08:96:b4:80:a5:0c:df:bf:64:a0:e9:
96:23:bc:47:a3:88:a8:bc:4a:b9:d5:10:f7:35:c7:
ed:20:b8:15:66:00:ea:15:bb:ed:a8:6b:44:77:70:
46:8c:d1:93:87:21:f1:1b:10:7a:88:91:a4:2d:5b:
e1:85:73:0d:71:24:57:b4:d1:8a:12:97:44:55:df:
74:3c:e5:bc:53:e4:f9:7d:16:76:79:2f:5a:7b:64:
ff:6b:89:c3:3b:de:82:59:12:6f:a5:cb:46:4a:b8:
1d:2e:92:d4:73:0e:89:50:79:88:d0:81:23:62:76:
59:aa:26:54:b6:12:73:b6:6c:1a:2a:48:3e:8c:9c:
de:7a:d0:83:85:91:f9:3a:3c:2d:1a:58:df:da:0f:
5a:4f:81:77:fe:70:bd:7c:97:36:f4:13:e3:dd:fe:
ad:1e:91:ed:13:57:fc:2b:85:5f:17:c9:91:8a:13:
6d:f2:1f:9a:48:d0:88:39:98:77:6d:13:1b:e0:c8:
a6:a5:8a:16:46:27:af:8f:1e:af:9a:ec:65:94:62:
e6:c4:40:31:dd:ff:08:c9:42:54:15:36:25:3b:70:
5d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:85:F8:59:49:6A:B1:BB:E1:98:2C:47:F0:40:41:67:BC:D8:CE:4D
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/m4X4WUlqsbvhmCxH8EBBZ7zYzk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:7100::/46
Signature Algorithm: sha256WithRSAEncryption
10:61:1b:17:45:86:a2:24:90:5a:c1:32:77:3c:5b:89:6f:7b:
00:70:e0:18:f0:a3:28:d2:e6:bd:c2:50:86:fe:9c:0e:0b:de:
88:5f:95:cc:18:77:8a:e5:ea:67:df:47:45:07:b2:61:ff:4e:
aa:4a:1b:d9:b6:30:8f:16:17:89:a7:1f:8c:7d:dc:d0:b4:90:
c6:de:c1:41:e8:ab:19:3a:20:8f:89:35:96:ab:ae:60:8e:74:
42:06:4f:72:f0:11:85:d3:ab:fe:78:f4:41:c9:3a:1f:f7:c7:
b7:36:de:71:5e:fc:24:73:fc:93:df:09:35:94:81:82:b4:8d:
29:9f:1d:fe:2d:e5:c1:a7:07:4b:e4:9b:47:b4:96:7e:d3:f3:
da:00:89:b8:a3:bf:26:a1:00:4f:7e:be:94:d0:10:23:bd:f5:
04:0d:d9:c8:27:d5:48:fe:59:7c:64:67:34:31:a3:5e:d8:7a:
55:f3:8d:90:33:96:d8:1c:c3:b7:7f:53:b7:7a:aa:31:49:7b:
7f:4c:09:1f:0b:80:c7:1f:fb:02:4b:e8:ed:6f:6b:6d:64:46:
31:76:d8:22:a7:fc:6c:db:0b:6f:0c:02:8d:45:c5:82:97:36:
87:b2:c4:0f:03:32:37:44:94:eb:33:dd:59:e3:c9:05:71:49:
d4:64:56:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org