Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/geEc1HQvZc2xxoflrfxWIq3tulU.roa
File: geEc1HQvZc2xxoflrfxWIq3tulU.roa (raw, json)
Hash identifier: Sjf/XbC88eh2p+sdKlibK8k84VrGYdCQmvf0zYrj3wA=
Subject key identifier: 81:E1:1C:D4:74:2F:65:CD:B1:C6:87:E5:AD:FC:56:22:AD:ED:BA:55
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018405C4C49A5A3C3C939C63C336F3EECB85
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/geEc1HQvZc2xxoflrfxWIq3tulU.roa
Signing time: Sun 23 Oct 2022 16:54:52 +0000
ROA not before: Sun 23 Oct 2022 16:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43959
IP address blocks: 2a0f:5701:fe11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:05:c4:c4:9a:5a:3c:3c:93:9c:63:c3:36:f3:ee:cb:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Oct 23 16:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81e11cd4742f65cdb1c687e5adfc5622adedba55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5a:c3:71:f5:bb:05:00:16:86:69:af:2d:7c:
3f:97:c1:75:20:ad:56:a7:f4:18:a2:a0:7d:cb:0a:
85:9d:7c:cb:52:d4:17:11:9a:ec:0c:c3:23:c0:4d:
21:29:22:ef:5f:57:d4:0b:73:6c:9d:c3:2d:fa:41:
5c:e0:b4:c4:32:58:81:c0:c3:27:5a:2f:be:92:88:
d8:5f:0a:13:15:1a:36:b8:be:c0:f4:3b:d5:16:fe:
16:72:a6:12:93:de:f0:44:97:3a:c8:50:61:f1:bf:
54:3e:60:ec:8e:66:60:b8:d7:8c:b8:c8:48:7b:8b:
58:c7:6f:86:94:b5:77:cf:00:26:d6:c5:4f:ff:75:
66:ca:5a:13:8e:74:73:99:89:d1:01:e6:cc:df:34:
3a:fc:96:5b:42:2e:53:e9:65:d8:02:6b:c8:09:d7:
db:a7:de:23:a5:03:fa:ee:e7:64:b8:0e:55:03:ee:
3a:cd:62:03:9c:8a:f1:b0:07:2b:cc:12:0c:26:4a:
2c:6d:65:41:b9:f7:88:6e:5b:24:5a:87:d9:72:c6:
3d:c5:85:78:be:0f:75:94:dd:d2:f1:1a:81:2c:ff:
b7:0e:a9:ad:7d:35:15:d0:cb:f8:53:71:62:2b:e7:
20:8c:f2:75:1e:53:17:66:4e:0c:ab:53:95:3f:e0:
f9:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E1:1C:D4:74:2F:65:CD:B1:C6:87:E5:AD:FC:56:22:AD:ED:BA:55
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/geEc1HQvZc2xxoflrfxWIq3tulU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5701:fe11::/48
Signature Algorithm: sha256WithRSAEncryption
c0:ac:5f:16:c0:73:02:f9:f4:2a:8e:cb:ef:c3:5b:76:46:50:
99:75:be:db:a3:f8:fc:ab:00:a7:c0:ac:ab:b3:59:d3:04:c8:
a3:bf:8d:08:16:1b:cf:7c:d5:dc:3e:ca:61:ec:47:53:bf:12:
9f:f0:7d:56:16:89:33:99:f8:18:f4:e5:2f:b5:4c:29:7e:34:
30:e0:02:c3:d0:83:5d:bd:de:08:6f:d1:f2:fc:37:59:bb:0a:
a2:eb:30:b2:1f:c5:bf:0a:3e:b3:ad:30:e0:79:9c:1a:24:3a:
91:14:62:97:49:33:f0:4d:08:c0:12:43:3c:59:04:52:4c:98:
37:42:33:1b:fc:ca:84:a0:9e:fd:52:65:3d:be:c3:45:cc:a3:
cd:91:57:98:aa:ec:0b:63:ff:0c:d4:4e:bf:17:9f:e4:82:b9:
cb:45:bd:02:e4:6c:64:f0:ae:87:23:bb:0d:18:a8:33:c2:3d:
76:ff:eb:fe:81:2e:9e:c6:8f:c5:ed:b5:15:18:d2:2c:3c:3e:
29:24:e7:08:18:1b:55:e6:ab:c8:66:fb:87:46:fd:ce:d6:a5:
0d:21:bf:b0:bc:bd:9c:d6:a6:5d:f4:96:2d:5f:91:cd:70:d6:
3f:b9:be:56:79:d5:46:e8:f3:ec:83:be:84:26:54:be:cc:4d:
89:d8:8e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org