Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/6XuSirbe_zkNN-UKHzjHRisi-oo.roa
File: 6XuSirbe_zkNN-UKHzjHRisi-oo.roa (raw, json)
Hash identifier: aVqB5AgAv4kzPkk9huIAYm3IUdqNECxcBzYBcP8LPBI=
Subject key identifier: E9:7B:92:8A:B6:DE:FF:39:0D:37:E5:0A:1F:38:C7:46:2B:22:FA:8A
Certificate issuer: /CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Certificate serial: 0ADD14FD
Authority key identifier: 4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/6XuSirbe_zkNN-UKHzjHRisi-oo.roa
Signing time: Sat 01 Jan 2022 16:04:47 +0000
ROA not before: Sat 01 Jan 2022 16:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202165
IP address blocks: 2a0b:a080:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182260989 (0xadd14fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Validity
Not Before: Jan 1 16:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e97b928ab6deff390d37e50a1f38c7462b22fa8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:df:e6:50:0f:72:12:9c:95:39:a4:5f:67:40:
b1:c6:c5:3a:00:a5:d9:08:8e:24:97:fa:52:16:b5:
f1:48:2c:8c:5e:55:60:4b:d4:d3:00:e6:1a:7b:71:
67:ab:8f:38:e6:44:44:5f:55:04:40:61:ef:da:55:
8a:ca:1a:2e:d3:a2:2f:f4:8a:82:c3:74:7f:76:d3:
55:87:ec:9a:68:35:93:6a:35:66:05:20:42:80:d6:
9c:79:9a:e3:0c:c9:92:cf:7c:73:c0:b3:84:e1:e3:
53:da:99:32:53:f1:b9:bd:f8:e0:a8:40:6a:a6:f7:
3c:6a:f9:b4:3a:0b:ab:58:11:9a:12:fd:5b:79:e0:
02:1d:ab:83:39:bf:1d:5f:7b:bd:ee:f1:ae:3a:f1:
a2:07:5e:cb:8e:7f:d7:f2:79:00:1d:f7:34:97:04:
93:3f:cc:3e:7d:8b:c5:ac:93:84:5d:bc:94:af:fa:
6c:07:60:9b:10:84:21:94:b4:47:f8:b7:fa:54:16:
31:80:23:5f:5b:3b:c4:03:88:21:6f:9c:50:3b:f0:
b6:09:2a:6e:07:72:a9:72:da:5c:2a:82:a9:02:4f:
89:f9:f8:4a:a8:c9:b2:0f:2d:1c:7e:f3:9c:49:9b:
e0:a4:8d:8a:73:59:54:95:1f:07:19:b8:61:10:3e:
53:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7B:92:8A:B6:DE:FF:39:0D:37:E5:0A:1F:38:C7:46:2B:22:FA:8A
X509v3 Authority Key Identifier:
keyid:4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/6XuSirbe_zkNN-UKHzjHRisi-oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:a080:1::/48
Signature Algorithm: sha256WithRSAEncryption
2c:f2:e9:d5:a6:e3:45:99:d6:ac:06:45:07:26:e5:2c:cd:8c:
20:95:7d:e3:b1:b4:2b:e5:d6:25:f8:71:bb:85:5d:92:d0:b8:
a5:bf:9a:1d:2f:04:72:84:ab:21:8e:91:a0:53:a5:1a:ea:4b:
d5:30:9f:df:1f:bb:c8:8e:b0:43:64:34:84:36:d6:72:69:d9:
ce:c6:ed:28:b3:af:04:e6:24:6c:3b:25:ad:c1:a9:62:f7:db:
a9:49:37:5c:9d:52:b3:65:eb:66:da:1b:ff:c1:91:be:ef:6c:
9b:e8:b8:fc:13:ca:87:56:26:f6:cb:e5:15:a6:e7:67:37:22:
86:b5:1d:ee:83:0d:7e:d6:87:e7:2b:a8:ed:33:9f:c1:0f:ce:
d6:7b:a6:3d:11:3c:b7:d3:90:fc:95:12:0f:c3:84:9d:41:e4:
7b:9b:cf:77:93:44:45:9c:b5:43:d1:77:81:f5:3c:c8:52:6d:
2d:1b:47:f7:e4:1d:ec:85:a1:cb:89:32:33:13:33:9f:96:26:
62:b9:de:f0:fd:94:8c:77:cd:db:86:ca:c2:4b:b2:65:8b:73:
51:43:30:3e:1d:0c:2f:38:40:b8:69:65:a9:6b:09:cc:d9:a0:
f0:6b:a0:e1:f2:52:31:7d:df:ef:9f:6e:dd:7c:24:df:87:ba:
92:f0:e0:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:42 2024 by rpki-client on console-fra.rpki-client.org