Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/9hxE0sw-8H84j0ZUSdB4qF6E7Zk.roa
File: 9hxE0sw-8H84j0ZUSdB4qF6E7Zk.roa (raw, json)
Hash identifier: vPG/RaBVLztJyQC+t9xPj2ZywXkHXH5F4vk7m9v2xSQ=
Subject key identifier: F6:1C:44:D2:CC:3E:F0:7F:38:8F:46:54:49:D0:78:A8:5E:84:ED:99
Certificate issuer: /CN=2682c816f72686ff7aede53538618cc2e8861039
Certificate serial: 01D5C37E
Authority key identifier: 26:82:C8:16:F7:26:86:FF:7A:ED:E5:35:38:61:8C:C2:E8:86:10:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JoLIFvcmhv967eU1OGGMwuiGEDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/9hxE0sw-8H84j0ZUSdB4qF6E7Zk.roa
Signing time: Sat 01 Jan 2022 14:07:10 +0000
ROA not before: Sat 01 Jan 2022 14:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212894
IP address blocks: 2001:67c:2850::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30786430 (0x1d5c37e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2682c816f72686ff7aede53538618cc2e8861039
Validity
Not Before: Jan 1 14:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f61c44d2cc3ef07f388f465449d078a85e84ed99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ab:5b:b8:9e:fe:df:4e:e4:fa:ab:31:a2:b1:
a0:8c:dc:64:96:d6:f0:d9:f5:b0:90:a6:f3:db:7a:
6e:cc:fe:8d:19:30:e2:27:f8:e0:85:f3:f1:41:1b:
d3:a5:70:28:16:56:12:4b:bb:f5:e9:08:2e:1a:fd:
23:64:1d:11:86:cf:b9:e9:aa:5c:6f:4f:45:60:ed:
2f:0c:e2:c2:8c:aa:34:35:8f:69:16:e2:84:f6:d6:
8a:00:1f:a5:15:cc:5b:c3:9e:06:aa:19:2b:c5:d0:
d4:82:c1:50:9e:ec:ec:fc:d7:56:bd:ff:71:38:b1:
1d:58:14:c3:01:91:60:1d:42:33:a2:25:a9:d7:74:
74:ce:f2:c4:a0:a7:9c:5e:1a:6e:2e:cf:68:fd:ec:
29:dc:9d:01:71:d2:09:67:3d:d9:2d:b6:19:c8:39:
eb:58:ba:ec:b4:09:43:7a:05:82:37:b9:8b:25:86:
4e:41:f9:56:60:63:e0:2e:5e:74:16:58:52:0a:0d:
5a:c7:63:33:7d:30:50:45:be:d7:bb:8a:70:7d:05:
6c:d1:98:c5:77:50:56:6b:e3:9e:3a:e3:65:0e:92:
99:5c:c4:83:82:fb:7d:fd:44:3d:9a:9b:e8:68:6b:
30:8c:a0:09:5d:d0:63:ca:f1:00:62:47:66:8c:85:
5f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:1C:44:D2:CC:3E:F0:7F:38:8F:46:54:49:D0:78:A8:5E:84:ED:99
X509v3 Authority Key Identifier:
keyid:26:82:C8:16:F7:26:86:FF:7A:ED:E5:35:38:61:8C:C2:E8:86:10:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JoLIFvcmhv967eU1OGGMwuiGEDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/9hxE0sw-8H84j0ZUSdB4qF6E7Zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/JoLIFvcmhv967eU1OGGMwuiGEDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2850::/48
Signature Algorithm: sha256WithRSAEncryption
6e:75:39:bf:bf:f1:15:2d:fc:fc:5c:03:8b:fc:96:9c:96:90:
f0:c6:7c:ce:98:8e:bc:43:e4:f4:1b:39:8d:11:b5:3f:ca:c7:
20:a9:28:7a:57:8a:36:c2:16:18:57:bb:ca:54:8d:83:53:07:
f5:bf:ad:64:37:4d:b0:80:06:66:21:97:b0:e5:ec:6a:89:a4:
ac:ce:da:ae:39:46:d9:d7:5e:8e:3a:ef:12:90:91:ce:2a:4f:
89:bd:de:cf:69:97:4e:17:20:2b:39:80:37:c8:e0:ef:1e:06:
a1:a2:d9:f0:cc:c4:c9:39:e3:37:6c:b4:37:6a:fe:ce:68:bd:
ed:d4:11:1e:91:a1:bc:05:b0:42:8e:23:38:2f:61:7a:e7:fb:
15:1f:79:20:ea:34:73:91:dd:d7:a2:39:6b:39:cb:14:e8:87:
33:6e:c3:45:7f:89:e9:8c:4d:4b:08:66:5d:1d:f4:1f:e6:d2:
5b:6a:6d:76:54:70:e0:29:ff:cb:1d:dd:88:c3:12:2b:cb:73:
55:0c:30:d2:ac:17:ad:0b:9d:f8:59:11:8b:6f:a2:8d:e7:2b:
82:eb:d3:6d:6d:1c:bc:ce:83:3f:af:7a:7e:a5:bc:e5:7b:72:
c4:db:37:3e:78:12:3d:24:e8:f8:c3:7d:58:bf:dc:f9:26:bf:
57:1b:01:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:23 2024 by rpki-client on console-ams.rpki-client.org