Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/06vZxarKM-_uCRzZ7shfddoONWQ.roa
File: 06vZxarKM-_uCRzZ7shfddoONWQ.roa (raw, json)
Hash identifier: K61M2b2lxs/155rx/6n7h/l5CbsK8Fs39p/N+nzADbY=
Subject key identifier: D3:AB:D9:C5:AA:CA:33:EF:EE:09:1C:D9:EE:C8:5F:75:DA:0E:35:64
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 081810B8
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/06vZxarKM-_uCRzZ7shfddoONWQ.roa
Signing time: Sat 01 Jan 2022 06:55:56 +0000
ROA not before: Sat 01 Jan 2022 06:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211679
IP address blocks: 2a0f:5707:23::/48 maxlen: 48
2a0f:5707:b110::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135794872 (0x81810b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3abd9c5aaca33efee091cd9eec85f75da0e3564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7f:0e:56:39:cb:9f:b9:c3:0a:ad:a1:31:c0:
be:54:35:e1:6d:67:c0:87:0b:6b:73:2a:17:c0:0a:
9e:ca:b7:ba:15:cc:9d:a6:ef:96:a8:18:68:de:c1:
4b:7b:57:6b:10:4b:d8:27:e3:96:27:10:66:3d:f9:
09:1f:4a:2b:bf:a3:34:d1:17:75:14:06:95:26:75:
99:3b:17:2d:f2:1e:bb:3d:ea:43:5d:7a:3f:35:14:
6d:50:ac:87:10:5b:bb:d8:88:64:a2:7d:50:16:2c:
1f:ee:20:2a:f4:94:1f:bd:03:b1:c6:3d:68:72:01:
83:93:db:df:00:9c:d7:70:02:1b:92:f5:e5:5f:ab:
41:7e:10:26:60:e5:66:20:23:e3:e2:93:3f:42:7e:
83:be:29:dd:97:f3:f7:dd:71:8f:1e:a7:00:c6:ca:
ae:8f:53:65:7d:c9:d7:fe:77:81:ec:fd:7f:fe:22:
30:b9:68:5b:e6:06:d3:38:d5:a9:04:eb:62:29:6d:
40:a2:88:a3:d8:8d:ab:ba:ce:1e:b7:db:79:d3:73:
d3:6e:b9:33:99:9d:a6:1f:af:54:8d:f9:cb:77:70:
df:c0:f0:9a:7b:85:b8:5e:9d:3f:f3:5d:89:5a:a9:
af:68:f5:68:ee:22:86:7f:31:c8:1d:a8:6b:3a:42:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AB:D9:C5:AA:CA:33:EF:EE:09:1C:D9:EE:C8:5F:75:DA:0E:35:64
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/06vZxarKM-_uCRzZ7shfddoONWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:23::/48
2a0f:5707:b110::/44
Signature Algorithm: sha256WithRSAEncryption
0c:1a:f3:4e:fd:70:92:49:a8:70:43:2b:76:10:8c:4a:f6:6d:
a7:b2:81:6e:68:50:fb:b3:c4:97:31:fc:b3:18:c9:26:4d:17:
f7:a3:ee:57:44:d4:78:4b:e3:c7:7e:48:66:ff:03:32:1f:6d:
ba:a4:7e:9b:da:37:a9:6d:47:c9:00:0b:ac:bf:13:ca:b2:58:
62:83:1c:42:d9:8e:4d:1d:cb:da:ff:8f:ce:ef:29:13:78:c4:
46:ed:27:98:54:68:ef:54:ba:f5:16:96:b7:cc:b5:46:b2:84:
99:ce:22:1c:6b:98:72:0a:f5:d1:db:e2:9b:85:b3:97:fd:77:
4a:0d:2a:cc:c4:4a:37:31:40:de:1a:c1:9f:67:c0:20:38:d3:
66:e3:a1:6a:98:98:01:a2:24:4b:d9:18:ca:47:b1:8b:67:9c:
7f:b7:87:d0:43:58:45:f2:cb:43:4b:20:1f:b4:1c:a4:69:3c:
51:79:29:51:5e:85:6f:a2:8f:c7:6d:85:ad:31:cc:61:a0:e7:
7f:10:05:e4:65:89:d1:de:a6:d4:0d:2d:cb:63:0a:cc:86:fc:
57:1b:b8:74:a5:26:3d:82:d4:1b:3c:c2:74:d3:cc:73:73:22:
1c:7b:48:85:36:0b:19:5c:7c:ae:39:f3:ab:7b:50:15:5f:bc:
3b:67:a6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org