Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/7NhLcumY7Q-lxRREQabS4ijSv-A.roa
File: 7NhLcumY7Q-lxRREQabS4ijSv-A.roa (raw, json)
Hash identifier: mfpQ8FqKhGz4L7NdRe/8QernwWl4s7dWsg7Cx6qkX38=
Subject key identifier: EC:D8:4B:72:E9:98:ED:0F:A5:C5:14:44:41:A6:D2:E2:28:D2:BF:E0
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 07FF5335
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/7NhLcumY7Q-lxRREQabS4ijSv-A.roa
Signing time: Sat 01 Jan 2022 06:55:43 +0000
ROA not before: Sat 01 Jan 2022 06:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6369
IP address blocks: 2a0f:5707:ae00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134173493 (0x7ff5335)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecd84b72e998ed0fa5c5144441a6d2e228d2bfe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:06:82:9e:7d:f6:46:df:34:ac:d9:1b:51:
ff:9e:a4:46:98:a8:62:95:cf:86:b9:fb:7f:38:55:
a6:59:99:72:ee:dd:12:08:b4:70:cf:49:75:d2:df:
a8:fe:69:f0:e9:f5:24:bd:b4:dc:69:e7:06:31:08:
ed:c3:db:7a:3f:5a:b4:b3:b5:30:2b:70:71:d1:33:
05:7b:0c:2b:99:ef:09:08:5c:7b:a2:9c:1b:42:ae:
69:73:d6:9a:6d:90:e7:ca:70:7a:99:ca:d5:bb:a7:
51:3a:a4:fa:13:fc:5f:d5:08:84:e1:8c:9d:77:b1:
e6:9f:dc:32:88:b8:9f:bb:45:a8:1a:93:a9:36:9c:
ca:ca:4d:6a:e7:88:a4:2f:e0:e3:9f:c7:69:22:25:
37:f2:47:f2:25:6e:88:cf:21:49:fe:73:b4:ce:f9:
c7:f9:48:c0:9f:8f:d2:24:dd:b1:c3:5a:34:69:62:
8a:d0:49:ab:19:bd:6e:c3:fe:ab:f4:bc:10:ce:76:
6b:29:08:5b:e6:6d:3d:ed:c8:76:f6:3c:9f:4e:a8:
82:2f:84:54:fa:96:bc:6b:0c:3f:92:fc:c4:ae:24:
b9:5f:6e:48:50:75:df:69:a2:4b:f6:ee:9a:73:1a:
1f:a0:c0:df:8e:7d:52:c6:95:a9:9f:02:01:34:c0:
fe:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D8:4B:72:E9:98:ED:0F:A5:C5:14:44:41:A6:D2:E2:28:D2:BF:E0
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/7NhLcumY7Q-lxRREQabS4ijSv-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ae00::/44
Signature Algorithm: sha256WithRSAEncryption
57:d8:88:e4:48:28:52:ca:b6:0f:14:d0:fb:41:fd:90:29:8a:
ff:5e:f0:6c:03:d2:1a:4f:06:e9:35:30:93:19:41:87:c3:64:
53:13:ed:4d:49:fb:25:0e:5f:59:d5:af:f9:0d:8c:89:fe:37:
0f:aa:b8:c5:65:5c:33:e1:a0:dd:34:0a:bd:5c:8c:ae:98:3a:
42:72:8d:32:0b:80:64:5e:f6:6e:37:1e:9e:37:57:27:a1:ff:
5a:3f:ab:4b:d0:87:d9:a1:75:c1:44:89:d9:4e:5e:5d:b8:aa:
78:d9:da:06:77:5f:b3:f3:5b:b1:f9:b3:5c:5d:55:08:88:9e:
3c:dd:3d:f8:31:c7:7f:f1:53:a8:8c:56:76:df:49:5e:95:69:
4b:bc:08:29:25:bb:79:13:0f:2e:57:4e:3f:b5:86:33:48:cc:
30:6d:34:29:b0:68:9d:cb:26:48:e5:5f:51:5c:f8:0b:2a:bc:
c4:80:f2:34:f3:69:75:1f:03:b1:ba:0a:1a:0f:af:0e:12:43:
f9:70:fd:b5:e2:c6:b9:7e:c0:8a:ec:6c:69:f2:19:10:3b:73:
24:d5:69:f6:fc:7a:19:9d:bb:b6:01:8f:06:a5:5f:f8:43:83:
ee:e8:90:d4:30:81:37:57:62:e5:7c:24:a8:6d:33:e9:c3:fa:
af:46:4c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org