Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/sAJ4ewAvxvmLYz1d69gfKy6-mRc.roa
File: sAJ4ewAvxvmLYz1d69gfKy6-mRc.roa (raw, json)
Hash identifier: COh8cYc/hEKwnsoC2hT0L63mcItS+nTJMv7kHcbc5ic=
Subject key identifier: B0:02:78:7B:00:2F:C6:F9:8B:63:3D:5D:EB:D8:1F:2B:2E:BE:99:17
Certificate issuer: /CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Certificate serial: 08DB3A61
Authority key identifier: 32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/sAJ4ewAvxvmLYz1d69gfKy6-mRc.roa
Signing time: Sat 01 Jan 2022 14:58:58 +0000
ROA not before: Sat 01 Jan 2022 14:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133846
IP address blocks: 2a09:b280:ff80::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148585057 (0x8db3a61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Validity
Not Before: Jan 1 14:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b002787b002fc6f98b633d5debd81f2b2ebe9917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:22:0f:cc:1a:f0:3f:02:9b:81:89:1e:33:b1:
ea:73:13:48:e2:0e:43:3a:57:ac:82:9e:4c:ee:c2:
ca:c9:9c:46:bf:8e:3a:f5:fc:a7:3b:4b:4a:d1:9b:
f4:6f:95:a3:9d:92:61:b9:87:24:15:55:82:73:65:
c1:4b:83:af:45:b4:17:fe:76:b1:a4:b7:1d:42:93:
5b:66:a6:b0:40:67:b5:a2:b9:27:64:5c:d8:dd:ca:
c3:dd:48:08:a6:f6:e8:31:f5:43:38:a5:45:53:1d:
73:6c:f2:df:e8:70:16:d8:c5:52:d8:f4:03:2b:af:
eb:8b:1a:03:94:0f:3a:b3:37:bb:08:cf:68:18:ba:
d2:d9:f4:91:70:3c:04:57:4d:3a:7e:08:47:5b:40:
3e:de:19:e6:6b:dc:b1:90:14:ee:de:2e:4e:c4:c6:
72:07:e8:26:1f:d0:a9:48:ca:36:d5:cd:e0:e8:47:
d9:75:cd:9d:08:2a:5f:28:5c:ed:5c:e5:ed:83:2b:
59:47:fa:d3:fe:84:9e:4e:f6:bf:b0:12:2a:b5:e2:
b3:71:a7:60:e2:59:3b:1e:0d:9e:1e:a8:e8:78:36:
14:00:23:d5:cc:c7:41:af:03:e6:3a:b5:25:18:c8:
3a:7f:fb:3c:56:b6:f7:3d:06:61:2e:ea:db:90:68:
5e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:02:78:7B:00:2F:C6:F9:8B:63:3D:5D:EB:D8:1F:2B:2E:BE:99:17
X509v3 Authority Key Identifier:
keyid:32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/sAJ4ewAvxvmLYz1d69gfKy6-mRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/MlCPt4HKbb2CIfLC-VSjp0RrK0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:b280:ff80::/44
Signature Algorithm: sha256WithRSAEncryption
41:63:db:e9:3a:53:ff:91:c6:b0:86:d8:ff:14:15:e0:90:09:
11:36:ed:b5:57:76:d3:e5:3a:60:9a:4a:29:09:60:57:41:34:
d7:e0:34:66:b0:bb:8f:b1:0d:88:67:2b:b4:8e:86:e5:b8:52:
dc:e6:a3:09:69:ed:0e:07:1a:c0:2b:27:b3:82:19:b9:d7:44:
40:4c:7b:2d:33:65:17:78:42:e9:e3:52:4b:1f:5e:aa:51:ab:
c0:8f:fd:3d:4c:e9:23:a3:ae:27:33:29:7a:ee:21:d7:fc:44:
0d:ec:58:1b:c1:f0:a6:7a:a4:b6:b2:09:c1:31:eb:00:97:7a:
d1:78:0a:9d:90:ba:45:d8:21:fa:f3:d1:e1:f6:94:e0:7d:42:
a0:5c:92:cc:04:57:98:8a:f1:78:e3:46:61:a5:59:17:d0:0a:
e1:89:97:b6:97:c0:98:2e:e4:5b:f5:4c:4e:dd:e4:0d:ab:7b:
ff:4c:68:5e:6e:fd:24:e3:e9:95:fa:51:46:94:6e:d6:b3:82:
1a:4d:e4:e4:23:87:44:64:b3:9e:f3:27:bd:81:02:95:3c:50:
b3:4d:f2:f7:76:ba:8c:13:6c:8c:4f:29:e6:68:65:4a:69:93:
18:67:72:0c:5b:6f:f8:ff:be:c4:9b:69:4c:dd:6a:16:e7:41:
ee:1e:9d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:19 2024 by rpki-client on console-ams.rpki-client.org