Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/ElC2eC1rA4z2Nfs21Ol_x_yV698.roa
File: ElC2eC1rA4z2Nfs21Ol_x_yV698.roa (raw, json)
Hash identifier: Qq/CwHbQkFYEmERjDs59MmXrOTMXta/rs3S+FZ84N/c=
Subject key identifier: 12:50:B6:78:2D:6B:03:8C:F6:35:FB:36:D4:E9:7F:C7:FC:95:EB:DF
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 080E511F
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/ElC2eC1rA4z2Nfs21Ol_x_yV698.roa
Signing time: Sat 01 Jan 2022 06:55:52 +0000
ROA not before: Sat 01 Jan 2022 06:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207622
IP address blocks: 2a0f:5707:aa20::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135155999 (0x80e511f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1250b6782d6b038cf635fb36d4e97fc7fc95ebdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:bc:72:0c:ec:96:a3:e6:b5:2d:36:fb:c1:bd:
b4:dc:41:f4:71:79:67:59:3f:60:ba:93:17:fe:d3:
6d:96:8a:75:0e:9e:57:33:00:07:1a:c9:2b:d6:96:
2d:22:ed:69:f7:ce:21:f7:5c:a1:65:4d:b9:39:da:
b0:0b:d2:f0:ef:ea:c0:97:d2:f5:f9:6a:45:b9:d0:
df:81:24:16:3b:8a:cc:0d:c6:86:0e:d8:43:ac:6f:
8a:65:58:39:7d:4b:e2:87:a3:85:71:46:ca:0b:58:
ca:f3:6c:a9:54:a5:26:4c:68:92:4e:42:75:9a:13:
ae:36:c4:c6:0e:69:cc:ef:1d:7f:80:76:76:2f:c5:
57:18:ec:0b:ed:7b:ed:c4:34:48:18:0c:14:b9:ef:
b0:f8:a0:92:e9:32:21:fd:a2:25:7b:c3:30:24:a2:
a8:fa:b1:84:90:69:4f:1e:c7:69:d4:02:5d:bd:34:
c5:a8:c8:de:38:0a:f1:e7:df:f0:fe:db:66:17:25:
b5:8f:41:69:2b:0e:cc:86:bc:0c:79:35:1d:a5:c3:
54:80:e0:14:23:21:b0:53:82:d1:2f:2d:b2:a5:bc:
2f:57:88:c7:d2:4c:a0:e1:39:99:c0:a9:92:45:0e:
d1:a0:2b:23:2c:b5:88:a6:79:59:0a:c7:92:0f:78:
21:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:50:B6:78:2D:6B:03:8C:F6:35:FB:36:D4:E9:7F:C7:FC:95:EB:DF
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/ElC2eC1rA4z2Nfs21Ol_x_yV698.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aa20::/44
Signature Algorithm: sha256WithRSAEncryption
4b:e4:38:8b:34:1e:2d:16:02:b1:74:ef:8d:82:65:6f:9b:ce:
03:6c:1c:f3:5f:ec:e2:0d:cd:61:29:97:cb:d3:89:4b:9b:4f:
54:79:30:38:95:49:5b:6a:1a:b3:ca:c5:b0:c3:63:18:18:38:
29:22:30:05:c4:47:23:a2:67:28:6f:ff:39:d3:a0:61:57:98:
94:5b:29:82:c3:cd:ce:2d:f3:85:02:2f:1f:58:cb:26:cd:1b:
0b:3a:40:ee:95:83:fd:25:16:4b:db:ca:32:3b:cf:8a:a3:cc:
79:f0:a9:4e:d7:d6:48:9c:b9:73:62:ae:98:77:4e:c9:ab:5e:
d2:dc:9b:1c:ba:90:ce:62:dc:b1:f7:a7:59:6e:f1:f9:d5:e2:
a2:c3:d9:2b:b7:23:48:14:77:49:0a:57:5b:49:d4:95:b1:f4:
ae:80:1e:c3:b9:19:84:2f:85:cb:d4:e7:ba:12:b3:45:82:7f:
96:ca:66:88:49:60:f7:d4:f6:96:b5:fd:9c:7c:f8:0d:cc:ea:
13:37:14:a6:35:01:9a:6b:ce:00:60:a0:f1:bd:2f:06:cd:12:
47:24:12:05:56:cf:c8:3e:f4:15:57:e7:ce:18:d9:14:77:a0:
b9:3f:50:1e:b8:d1:a2:9b:57:eb:d1:87:80:7d:b6:8c:30:c9:
69:42:c2:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org