Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/6BMVybrKrlSEJnLdCIABFQ7kOSA.roa
File: 6BMVybrKrlSEJnLdCIABFQ7kOSA.roa (raw, json)
Hash identifier: CGcbElFDyFdtOKAVflvUzOROn/LtpR9i4K6CI5rdYSw=
Subject key identifier: E8:13:15:C9:BA:CA:AE:54:84:26:72:DD:08:80:01:15:0E:E4:39:20
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 08137617
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/6BMVybrKrlSEJnLdCIABFQ7kOSA.roa
Signing time: Sat 01 Jan 2022 06:55:55 +0000
ROA not before: Sat 01 Jan 2022 06:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210881
IP address blocks: 2a0f:5707:abd0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135493143 (0x8137617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e81315c9bacaae54842672dd088001150ee43920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bf:56:38:5a:8e:9c:b1:e7:cc:94:48:53:ff:
5e:0a:51:b4:1f:7f:22:a3:fd:27:46:cb:1d:ac:b7:
66:b3:43:07:ca:a1:a3:7b:bd:76:2a:f3:22:8b:78:
d5:d8:1f:8e:5f:5d:be:bb:b1:20:a9:d4:c0:0a:53:
50:78:43:a9:21:b3:29:80:ca:83:5f:60:83:3b:b8:
c8:e8:6f:dd:f3:fb:48:58:06:2a:2e:07:c5:97:17:
59:cd:bb:ec:5b:9f:96:fd:26:fc:21:6f:fe:d6:43:
88:b5:a7:e8:fe:e8:57:47:ca:c8:82:d5:98:be:fe:
0b:38:16:6a:4d:c9:c0:24:b1:69:a7:bd:29:d3:21:
bb:32:10:aa:bb:35:8f:38:c5:c6:35:bb:be:74:fb:
ac:49:3a:b3:fe:2a:c7:15:1a:e1:d1:d4:9a:1f:1c:
91:84:6a:d1:0e:d8:ab:49:73:9b:02:82:21:34:d6:
30:4b:83:8b:d6:73:49:15:4c:a5:f3:e2:35:91:2b:
b0:a9:41:fd:01:77:f9:6d:7b:95:26:14:91:66:96:
50:cf:10:42:ac:74:c0:a9:27:4b:c0:9a:07:ad:19:
30:64:24:f8:86:99:26:5b:02:72:0f:fb:48:a7:5d:
1b:01:0e:d7:c2:e2:66:c7:49:24:5d:40:a0:3a:0d:
9b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:13:15:C9:BA:CA:AE:54:84:26:72:DD:08:80:01:15:0E:E4:39:20
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/6BMVybrKrlSEJnLdCIABFQ7kOSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:abd0::/44
Signature Algorithm: sha256WithRSAEncryption
86:ad:c2:d2:8f:7a:d3:64:18:92:70:03:b1:ca:d4:a3:17:8a:
66:51:6c:7b:5e:ec:72:1e:14:e5:77:47:3b:9e:b3:6f:81:c3:
5d:82:f7:f2:81:a5:a5:89:95:67:97:2d:23:96:c1:f7:99:7d:
06:21:f5:1c:ed:41:30:92:8c:b8:ac:e1:80:71:b6:c0:eb:43:
e7:f3:a4:2e:0c:8e:fa:53:fd:87:3c:ac:60:b9:c2:de:82:1d:
73:63:28:28:de:b2:87:24:83:3d:10:4b:f0:de:c2:39:a0:9e:
0b:ea:f9:eb:b2:b1:43:d1:ce:b5:8e:b3:36:30:4e:d2:cc:2b:
ee:f0:59:0e:76:84:5a:b3:fe:c6:f8:65:47:fd:26:36:0a:b0:
d0:2d:7a:03:3b:13:f2:23:42:28:61:ff:c4:dc:50:22:de:d1:
0f:a8:85:d3:8c:cf:6f:51:d3:e5:55:b3:3f:ba:d9:d4:f3:08:
f3:b6:97:21:d2:72:39:e9:2a:51:ec:2c:20:22:df:c6:84:da:
c9:ac:81:c7:9b:e1:ff:24:42:c9:66:21:56:72:bd:43:d1:c8:
f1:e9:45:d6:96:19:6c:3b:ad:66:28:99:53:97:1c:40:60:6d:
b3:52:3f:ae:d1:49:59:50:6b:e2:20:fa:cb:24:8e:8c:76:f3:
69:0e:58:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org