Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/dhARP6SBGEAjqvfRZ5zjP25qnuk.roa
File: dhARP6SBGEAjqvfRZ5zjP25qnuk.roa (raw, json)
Hash identifier: 29NEf/wOtTksqM7Mhm+Ie1xrjFeGQ9ttrYfNncSHoVU=
Subject key identifier: 76:10:11:3F:A4:81:18:40:23:AA:F7:D1:67:9C:E3:3F:6E:6A:9E:E9
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 08BE1731
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/dhARP6SBGEAjqvfRZ5zjP25qnuk.roa
Signing time: Tue 08 Mar 2022 22:15:11 +0000
ROA not before: Tue 08 Mar 2022 22:15:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34681
IP address blocks: 2a0f:5701:3200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146675505 (0x8be1731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Mar 8 22:15:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7610113fa481184023aaf7d1679ce33f6e6a9ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d6:73:84:26:f8:c1:5c:7a:df:0f:5b:02:14:
d4:2e:fb:b1:ee:19:7d:5e:9e:bf:5b:6e:af:36:8d:
04:16:9b:c0:f4:90:93:1e:e9:a9:b0:84:16:46:58:
7f:d3:0b:fb:44:8a:65:d1:78:5c:f0:9a:e8:08:22:
73:cf:c8:55:db:a2:d6:6f:f5:2b:85:bb:07:27:15:
83:ee:39:07:a3:3f:19:d9:25:8a:67:46:8a:4a:4c:
ed:34:1f:be:36:89:e3:4b:b6:a4:d4:19:75:8a:8e:
b3:a5:91:bf:ba:60:5a:be:07:e9:bb:ff:31:e7:90:
ee:c9:a5:73:c6:76:d2:0d:03:80:fb:3a:0b:d3:80:
9e:fe:1c:90:8c:34:4a:9b:c7:ec:cd:84:68:dd:07:
b7:92:b6:5c:62:d8:a2:3b:05:01:20:a2:d0:e9:be:
17:88:79:e5:d0:0f:a5:fb:bf:28:d2:0b:3b:ac:75:
44:a4:a9:d9:3e:9c:a2:6e:72:57:aa:0e:8d:2c:a7:
4f:06:93:94:e5:d4:05:8f:1d:7b:82:36:0b:27:a6:
a9:2b:01:4f:6d:81:b3:12:ad:b1:1f:05:83:ed:9d:
2a:13:af:1d:3a:18:f5:63:67:fa:0b:72:b6:37:f9:
1f:3b:d3:74:74:04:c0:46:c8:79:29:db:c6:ed:3c:
64:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:10:11:3F:A4:81:18:40:23:AA:F7:D1:67:9C:E3:3F:6E:6A:9E:E9
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/dhARP6SBGEAjqvfRZ5zjP25qnuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5701:3200::/40
Signature Algorithm: sha256WithRSAEncryption
99:74:5f:ad:79:2c:2e:9e:83:ac:63:c8:4e:37:a2:f9:2e:97:
f2:24:ea:5b:0f:80:b5:62:0d:d4:4b:cd:f6:b2:30:32:aa:23:
ed:e7:29:44:99:4b:42:e2:96:d2:5a:b7:3d:ff:50:40:3d:19:
5e:11:c3:a7:d3:eb:f7:5d:61:60:9f:9c:dc:86:67:a5:bf:e4:
66:d2:2c:9a:11:03:53:dd:c2:b3:79:ba:23:4c:cc:5c:48:f4:
08:e5:66:55:87:ee:50:67:d6:2a:82:13:f9:0b:5a:15:dc:e5:
68:06:5c:00:df:1e:33:ad:82:48:34:f1:c4:48:16:01:9b:20:
a8:d3:33:37:74:90:78:03:77:64:b4:07:6f:39:68:3f:b1:75:
ac:90:35:7a:d0:e8:c1:c3:a3:59:f6:d9:f7:0d:57:3e:ea:6b:
bc:2b:29:82:e1:81:cd:ce:cb:42:a3:bb:c5:7e:79:db:51:60:
5d:60:4c:62:98:01:fc:4b:07:80:bc:f7:c6:41:89:7a:23:77:
18:00:ff:20:ef:18:2f:a8:4e:ff:57:fa:68:4b:83:49:2d:40:
7d:5a:14:90:ba:3b:3c:35:e6:6d:c5:23:9c:05:17:f5:67:b9:
e0:b8:3b:bc:af:15:f1:d2:81:4d:6e:63:91:4e:0f:75:53:1d:
09:34:fe:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org