Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/e6qqgZbXfLIUQ0NpjPyWehet_64.roa
File: e6qqgZbXfLIUQ0NpjPyWehet_64.roa (raw, json)
Hash identifier: VhumMfLNcO0JY2VdIEBYqKOB2afNreIzhXbYqVynBF4=
Subject key identifier: 7B:AA:AA:81:96:D7:7C:B2:14:43:43:69:8C:FC:96:7A:17:AD:FF:AE
Certificate issuer: /CN=bfe9f12c96ba20683aff5c958bfad8e4c577f7fe
Certificate serial: 0B8D745D
Authority key identifier: BF:E9:F1:2C:96:BA:20:68:3A:FF:5C:95:8B:FA:D8:E4:C5:77:F7:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-nxLJa6IGg6_1yVi_rY5MV39_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/e6qqgZbXfLIUQ0NpjPyWehet_64.roa
Signing time: Sat 01 Jan 2022 12:01:02 +0000
ROA not before: Sat 01 Jan 2022 12:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 395747
IP address blocks: 2a09:bac0:108::/48 maxlen: 48
2a09:bac0:133::/48 maxlen: 48
2a09:bac0:131::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193819741 (0xb8d745d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe9f12c96ba20683aff5c958bfad8e4c577f7fe
Validity
Not Before: Jan 1 12:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7baaaa8196d77cb2144343698cfc967a17adffae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:07:41:1e:13:a5:a5:45:62:d0:45:39:ec:d2:
c9:d5:f4:73:bf:e9:9f:fc:7f:d1:7d:4d:5e:a8:ea:
ba:68:63:53:b5:ea:65:4b:ff:0e:ed:80:2e:06:f2:
a5:8a:9f:f0:ba:38:f8:cd:89:c5:22:a6:49:7d:ba:
1f:84:af:90:57:99:1d:2b:b3:c2:70:57:da:08:2e:
b7:71:56:ec:b2:aa:5e:68:04:70:3f:9a:c1:ec:b5:
07:c3:1a:f9:a8:e0:1c:db:a1:26:98:f1:11:d5:76:
15:de:da:5e:60:36:38:ae:94:4a:a3:d8:74:70:cf:
42:4c:ad:67:df:41:97:5c:bc:78:71:20:de:77:1d:
9c:73:c6:89:fb:17:78:8f:39:ee:18:4c:d2:2a:38:
df:b6:3a:41:95:42:8a:de:3d:87:79:4e:0a:2c:e0:
1b:bd:be:8c:d2:e5:44:ab:b2:0d:8b:12:3a:5d:9b:
bc:c9:ef:b4:4c:a2:88:d2:27:eb:0f:ef:39:f9:39:
44:ab:db:57:d4:de:50:54:19:e7:9d:65:08:ca:6d:
fd:91:13:ca:6b:8d:99:60:c4:b8:29:cf:12:ef:f8:
bf:58:2c:64:37:42:40:30:10:33:4f:70:00:bf:bb:
6e:ce:bc:6b:2a:5a:ed:ff:6f:19:25:a5:75:7d:16:
a0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AA:AA:81:96:D7:7C:B2:14:43:43:69:8C:FC:96:7A:17:AD:FF:AE
X509v3 Authority Key Identifier:
keyid:BF:E9:F1:2C:96:BA:20:68:3A:FF:5C:95:8B:FA:D8:E4:C5:77:F7:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-nxLJa6IGg6_1yVi_rY5MV39_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/e6qqgZbXfLIUQ0NpjPyWehet_64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/v-nxLJa6IGg6_1yVi_rY5MV39_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:bac0:108::/48
2a09:bac0:131::/48
2a09:bac0:133::/48
Signature Algorithm: sha256WithRSAEncryption
07:ba:21:b2:1c:48:33:b4:8a:d6:d6:db:de:b8:79:1a:bd:2c:
b0:0d:3b:b2:f8:44:71:18:da:cb:85:55:6a:c1:a3:1d:61:23:
98:aa:85:ec:a8:c8:c2:de:dc:5f:82:1f:65:d2:e4:61:ee:c8:
b7:42:04:b2:5d:4e:3c:81:8d:ca:04:17:a8:b4:c6:38:60:d8:
10:f5:ca:a7:f9:d2:5f:e8:c9:0f:24:fc:da:03:14:69:7f:48:
b7:40:bc:0e:d3:49:53:34:6c:bc:c4:16:98:08:ad:61:67:d2:
85:78:c4:04:99:1f:a6:32:52:78:92:21:82:dd:45:b1:f9:9e:
e5:08:e1:4f:e0:79:68:3e:77:4a:f0:7d:36:17:02:5a:a9:d0:
71:d7:ff:52:d7:ca:fa:41:f1:1d:9c:5b:d3:aa:77:90:6a:f7:
bd:d4:84:b4:ed:64:52:19:e9:a5:7d:6c:6f:7f:4e:bd:35:9f:
33:15:e6:df:d7:9a:13:05:94:5b:7a:3a:5d:af:dc:b8:fe:65:
d2:9e:30:c8:7b:f1:2b:24:fd:4d:5b:b7:70:a3:4f:be:d2:1a:
50:3a:e0:a3:bd:ca:cb:6d:2a:c7:a8:05:9f:0c:a5:e2:d3:f2:
55:4b:14:3f:75:bd:f5:b6:e9:3b:5e:84:12:ba:67:29:d6:46:
5c:8f:5c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:21 2023 by rpki-client on console-ams.rpki-client.org