Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/rCzQRBDCzPW7rElsNctcemV8Sfo.roa
File: rCzQRBDCzPW7rElsNctcemV8Sfo.roa (raw, json)
Hash identifier: ge1KF0t22F3w95rr5BQQJn4JNPeU128X3R3cexdWeNw=
Subject key identifier: AC:2C:D0:44:10:C2:CC:F5:BB:AC:49:6C:35:CB:5C:7A:65:7C:49:FA
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 080D05F8
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/rCzQRBDCzPW7rElsNctcemV8Sfo.roa
Signing time: Sat 01 Jan 2022 06:55:51 +0000
ROA not before: Sat 01 Jan 2022 06:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207469
IP address blocks: 2a0f:5707:ffe0::/46 maxlen: 48
2a0f:5707:fff3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135071224 (0x80d05f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac2cd04410c2ccf5bbac496c35cb5c7a657c49fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:02:03:5b:5e:ac:0f:31:d7:65:d2:63:e6:ff:
c9:3d:4c:34:d4:23:e5:35:4c:2f:df:0b:d4:24:55:
1e:c5:3d:86:17:85:51:23:1d:92:98:fb:e8:a9:c2:
82:0f:7f:72:bd:0c:0d:f0:c5:e7:54:b0:c2:25:9a:
d7:44:28:fe:5b:f4:31:c4:74:2a:22:d3:af:64:dd:
06:10:df:85:63:6c:3b:f6:f5:f6:d3:67:b1:16:5a:
9d:12:14:58:a7:8d:cf:77:18:2d:e1:0d:10:39:2b:
8f:96:aa:22:c7:e7:ba:7f:7f:21:0d:3b:eb:73:28:
e6:b8:92:45:8c:3b:15:01:06:40:d3:aa:a1:7d:e3:
b0:60:2f:c0:c7:32:6c:a1:b7:25:29:a2:e1:e1:17:
bb:be:1e:ec:f5:26:09:3e:6a:d2:61:dc:ab:d3:d3:
7e:b1:86:10:f8:c9:9c:9e:1f:73:88:48:1c:7a:0d:
7e:88:98:fc:3b:fb:3b:03:08:32:a3:7a:db:18:a6:
c0:21:48:fb:e4:08:69:d5:f2:16:8d:aa:43:3f:5e:
d0:88:48:88:b7:3d:fa:e2:8e:09:b3:55:8b:9c:1d:
a5:b8:23:4c:90:2a:13:53:86:da:56:be:2c:1b:cd:
02:68:81:cb:c0:99:30:88:26:ab:a4:a1:e2:82:07:
9f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2C:D0:44:10:C2:CC:F5:BB:AC:49:6C:35:CB:5C:7A:65:7C:49:FA
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/rCzQRBDCzPW7rElsNctcemV8Sfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ffe0::/46
2a0f:5707:fff3::/48
Signature Algorithm: sha256WithRSAEncryption
6c:e1:25:28:2d:07:83:8e:a9:3a:e1:7d:c8:c2:86:4f:37:3f:
d4:42:19:6f:71:a0:b0:5a:fb:84:7c:b9:7c:35:b4:df:c8:13:
56:4c:0c:44:3b:6f:d9:38:0c:d4:e6:85:d2:d9:ba:ff:b7:09:
d8:f2:24:f3:68:78:24:62:b1:ab:da:0f:2a:0b:c7:5b:a6:f4:
90:67:6a:fa:59:bb:a4:b9:69:36:8a:55:d3:29:24:22:c6:40:
4d:80:2e:e4:42:08:12:87:3f:ed:86:2d:c2:7d:de:27:6c:7d:
56:19:18:62:a9:6a:ab:48:5e:3d:71:19:65:80:94:cb:73:c7:
6a:58:16:0e:c4:69:20:81:1c:a0:12:88:0b:6d:55:7f:28:ba:
c9:75:14:c4:56:75:88:77:b9:a0:5d:ce:19:ae:ef:34:eb:86:
0d:cf:e0:48:24:03:0e:36:a5:04:13:d9:6e:db:b7:f3:33:06:
ff:e0:8e:8a:86:13:f8:10:87:d5:0f:37:4e:60:f0:8f:04:d5:
10:a8:83:e4:28:fa:c6:27:f3:c8:f7:a7:21:1f:be:0a:36:4e:
dc:ea:da:ad:28:b5:7e:b4:7d:a9:1b:59:79:7b:b0:77:a5:89:
78:eb:bf:52:96:30:10:65:58:0f:b9:57:00:bb:3d:42:9f:50:
3d:f3:bc:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org