Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/NLbdNM8SyrRbkuEb8jKRN9nPTZ4.roa
File: NLbdNM8SyrRbkuEb8jKRN9nPTZ4.roa (raw, json)
Hash identifier: AO9nAz29/Dt3bnmue7LeZL0QpSVWQ7kS6RPX7t10oOQ=
Subject key identifier: 34:B6:DD:34:CF:12:CA:B4:5B:92:E1:1B:F2:32:91:37:D9:CF:4D:9E
Certificate issuer: /CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Certificate serial: 0185153996B595F45EB94FB305B0EDEC5F32
Authority key identifier: CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/NLbdNM8SyrRbkuEb8jKRN9nPTZ4.roa
Signing time: Thu 15 Dec 2022 09:59:33 +0000
ROA not before: Thu 15 Dec 2022 09:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400587
IP address blocks: 2a07:e04::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:39:96:b5:95:f4:5e:b9:4f:b3:05:b0:ed:ec:5f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Validity
Not Before: Dec 15 09:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34b6dd34cf12cab45b92e11bf2329137d9cf4d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:34:6b:9f:75:14:62:74:59:62:7a:be:19:
a1:9b:0a:51:21:1c:92:37:5d:54:6b:74:ac:4b:1e:
86:a8:52:6b:fb:5e:dc:fd:07:05:ec:28:ee:03:c1:
bf:ee:5b:ac:9c:9b:55:3f:2b:34:bc:56:9f:5c:20:
08:6a:3a:77:15:71:0f:f3:fd:ff:34:ee:e5:af:79:
4b:d7:23:8e:4c:20:d2:11:65:91:33:e8:80:85:59:
4b:25:f5:50:4c:7f:f7:85:c2:24:1a:1f:50:36:b6:
66:63:08:fb:46:b5:bd:05:15:29:3d:39:ae:43:77:
fe:d7:42:3b:bd:85:56:41:93:f1:c9:3d:ff:f7:97:
a7:ba:62:b2:23:7b:d5:e4:be:ba:2e:26:0d:bd:43:
07:0c:7c:de:4c:16:6b:73:7d:0f:db:58:17:1b:60:
fe:76:cb:36:c0:59:fd:90:27:59:7b:4a:7f:1c:e0:
a2:cd:c0:1f:67:43:cf:1f:0a:c2:49:d3:2e:f4:11:
d3:4e:26:e4:57:38:95:01:85:77:25:52:47:22:38:
06:fd:98:09:7f:bf:13:1c:13:a6:66:30:55:01:8c:
98:3d:5e:8e:0a:fc:10:18:fc:fe:bf:22:af:ae:f1:
b6:a1:1d:66:d5:75:d0:58:ec:3e:d0:5a:74:f3:29:
f7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B6:DD:34:CF:12:CA:B4:5B:92:E1:1B:F2:32:91:37:D9:CF:4D:9E
X509v3 Authority Key Identifier:
keyid:CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/NLbdNM8SyrRbkuEb8jKRN9nPTZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e04::/36
Signature Algorithm: sha256WithRSAEncryption
b9:f2:e5:4b:81:64:40:4d:dc:73:5d:9a:85:f2:c2:3f:72:f0:
6f:77:bc:67:f4:ed:ca:bd:97:e3:36:47:71:83:9a:05:d6:3b:
af:b8:f1:50:ad:b2:ec:3d:29:6a:28:40:1d:6f:97:6a:79:14:
aa:27:9b:d0:e7:a5:63:42:95:77:34:d2:91:e8:17:5e:16:7c:
45:c1:48:06:86:8a:ab:ad:93:b2:3d:07:0f:8c:ff:42:37:82:
ef:97:60:dc:3e:ac:be:92:88:29:0e:b6:1d:d2:52:de:54:dc:
d0:a8:f6:17:d4:cd:cb:7d:28:05:1e:e5:2a:0e:55:42:b3:64:
54:04:3a:2c:26:aa:95:85:7c:e4:3f:2e:e0:91:8d:f2:2a:44:
10:5b:f2:e8:ab:a9:01:e1:c2:33:6c:83:39:eb:21:07:ad:bf:
3c:02:d2:b0:43:db:0e:df:13:0c:07:d6:5b:32:d4:e7:ff:aa:
d1:11:ab:82:82:ee:d9:f1:9e:3e:e2:b3:a3:5f:21:da:08:0b:
15:ac:04:55:94:12:1a:a2:ad:7b:d4:b4:14:29:ed:e7:70:b9:
d5:74:91:5f:7c:97:7d:54:11:dd:92:f3:79:fa:56:55:2e:3f:
fa:63:f0:03:24:94:1f:fd:4f:06:02:b0:f0:1b:fb:c9:bc:fd:
ce:17:03:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:13 2023 by rpki-client on console-ams.rpki-client.org