Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fd17a1-bc5f-49cd-8aed-cb727b4fc379/1/GHA2AOuuQsPxaUrzCFAO0UzgzUw.roa
File: GHA2AOuuQsPxaUrzCFAO0UzgzUw.roa (raw, json)
Hash identifier: 0OdYlfIxCUu7CiI+l/ULlSxAzEha4CqysNMlx9uoIV0=
Subject key identifier: 18:70:36:00:EB:AE:42:C3:F1:69:4A:F3:08:50:0E:D1:4C:E0:CD:4C
Certificate issuer: /CN=6bc4b3b741bb5b5b61721ad306c71147c4df2bc1
Certificate serial: 09D2A1EC
Authority key identifier: 6B:C4:B3:B7:41:BB:5B:5B:61:72:1A:D3:06:C7:11:47:C4:DF:2B:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8Szt0G7W1thchrTBscRR8TfK8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fd17a1-bc5f-49cd-8aed-cb727b4fc379/1/GHA2AOuuQsPxaUrzCFAO0UzgzUw.roa
Signing time: Sat 01 Jan 2022 06:59:24 +0000
ROA not before: Sat 01 Jan 2022 06:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209933
IP address blocks: 2001:678:888::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164798956 (0x9d2a1ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc4b3b741bb5b5b61721ad306c71147c4df2bc1
Validity
Not Before: Jan 1 06:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18703600ebae42c3f1694af308500ed14ce0cd4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:27:f2:d7:09:e9:f9:9d:d5:bd:8d:a6:70:ff:
52:1b:a3:aa:fd:16:aa:9d:3a:78:9b:7f:d5:7d:9e:
ce:a7:d3:ed:83:0a:0f:07:7c:48:93:83:c0:55:9c:
b5:46:d9:dd:8d:9a:1b:ca:1f:f7:3e:32:ad:0e:1c:
68:52:51:cf:e3:6b:d3:79:9d:ff:eb:9c:61:76:47:
90:4a:1a:6d:f7:af:b5:86:f6:1e:57:09:55:28:c9:
5d:48:00:12:a2:fd:01:be:9b:e9:c9:29:a3:58:a5:
72:48:d7:3c:7e:57:69:09:21:a9:f7:e9:ff:f4:36:
ac:c5:0d:02:41:f7:e2:19:6b:d7:83:e6:1c:95:c3:
6e:1a:1c:90:07:ec:a7:46:b3:4d:90:c6:55:51:e1:
c9:4b:f7:59:f9:8c:7b:f4:cb:c0:b9:ba:6a:28:82:
80:16:0c:07:d1:13:74:89:7a:3c:c1:e5:ee:a6:d5:
c0:22:cf:e0:e8:db:11:6a:78:93:48:db:a9:f6:81:
54:c6:01:8d:11:6f:ae:35:84:52:7e:56:c7:13:80:
7f:c8:98:03:be:41:92:d0:28:2e:26:e6:14:0d:90:
52:6a:d2:cc:d6:b7:75:06:99:81:01:d4:78:ad:8c:
0f:a2:9c:96:a7:dd:8a:fe:c0:08:4a:94:bf:cd:e7:
5e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:70:36:00:EB:AE:42:C3:F1:69:4A:F3:08:50:0E:D1:4C:E0:CD:4C
X509v3 Authority Key Identifier:
keyid:6B:C4:B3:B7:41:BB:5B:5B:61:72:1A:D3:06:C7:11:47:C4:DF:2B:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8Szt0G7W1thchrTBscRR8TfK8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fd17a1-bc5f-49cd-8aed-cb727b4fc379/1/GHA2AOuuQsPxaUrzCFAO0UzgzUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fd17a1-bc5f-49cd-8aed-cb727b4fc379/1/a8Szt0G7W1thchrTBscRR8TfK8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:888::/48
Signature Algorithm: sha256WithRSAEncryption
52:4c:74:40:47:3a:8a:96:67:32:01:51:84:14:60:b8:bf:e9:
ac:32:72:51:49:f8:cf:41:c3:fa:3f:41:3e:c2:90:e2:3a:f4:
7e:11:8f:52:eb:e8:42:4f:06:2f:78:79:3d:77:f7:74:3d:88:
2c:d7:40:bc:4d:a4:86:35:13:f6:9d:cc:41:ed:89:80:d5:92:
84:d4:7f:37:d7:a8:11:a2:c5:e2:2b:d2:94:49:dc:3c:e0:1f:
04:71:17:06:56:56:af:19:7e:99:21:bb:76:40:76:07:4e:16:
ad:87:5f:99:7e:cc:bd:03:3d:04:bf:8d:9c:bc:30:8e:65:17:
39:77:15:5d:56:0f:ed:e6:5d:55:ab:e8:87:26:c5:1a:f4:a1:
01:10:d7:a9:60:a3:8c:30:67:d7:13:f0:3c:9a:c7:29:57:de:
c8:60:34:16:aa:be:5d:ce:b7:2c:4d:69:81:41:af:1a:7f:ce:
d3:c1:d6:b5:03:34:be:70:65:59:b8:e2:02:87:92:6f:1e:a7:
91:c0:c6:e3:16:24:3f:64:29:31:e8:8b:b3:f1:64:7d:3f:e6:
3b:fd:e4:a1:a6:f1:2f:b6:f9:6d:71:e8:a5:3b:91:e5:69:d6:
01:a4:70:e3:ff:fe:db:f9:d7:b6:5e:cf:a7:1c:f7:5e:50:13:
25:de:25:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-ams.rpki-client.org