Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/74f313-7c92-4c54-838f-79c722c54e19/1/6EyrBZrHz1liwLuKcS-A8jA7oKs.roa
File: 6EyrBZrHz1liwLuKcS-A8jA7oKs.roa (raw, json)
Hash identifier: SaueCgAOkyIDq2DuWXdqsjMAKX1ASDL9PsA34rmQkok=
Subject key identifier: E8:4C:AB:05:9A:C7:CF:59:62:C0:BB:8A:71:2F:80:F2:30:3B:A0:AB
Certificate issuer: /CN=615fbbdfc901e8eb0ecd0dd3f4085c1289cfedf7
Certificate serial: 1802C409
Authority key identifier: 61:5F:BB:DF:C9:01:E8:EB:0E:CD:0D:D3:F4:08:5C:12:89:CF:ED:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YV-738kB6OsOzQ3T9AhcEonP7fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/74f313-7c92-4c54-838f-79c722c54e19/1/6EyrBZrHz1liwLuKcS-A8jA7oKs.roa
Signing time: Sat 01 Jan 2022 11:03:32 +0000
ROA not before: Sat 01 Jan 2022 11:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39995
IP address blocks: 2a02:7da0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402834441 (0x1802c409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615fbbdfc901e8eb0ecd0dd3f4085c1289cfedf7
Validity
Not Before: Jan 1 11:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e84cab059ac7cf5962c0bb8a712f80f2303ba0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:82:78:53:c7:01:69:6f:16:d2:c0:68:bc:85:
9c:ca:87:1f:ff:3a:a4:73:ee:cf:06:a5:17:44:b3:
fe:35:e0:50:e7:c8:13:42:7b:e0:82:4f:99:80:34:
4b:d5:df:21:db:24:a8:72:ba:f4:de:94:bc:71:13:
be:47:3a:f7:39:ac:3c:b6:fc:07:bf:4e:90:88:27:
34:fe:2b:31:d3:66:75:1e:c7:3c:0b:54:d1:dd:84:
c8:81:a0:f3:63:19:2b:1c:53:8f:6f:0f:42:db:34:
8e:66:c1:ea:67:ab:73:4a:7f:71:ee:cc:d1:92:a2:
88:b3:a7:4c:34:be:5d:5c:c8:1c:04:2e:c9:fd:fd:
94:34:ac:62:3e:a4:b8:88:7d:96:94:7f:03:04:e3:
77:74:0f:36:08:f9:3d:7b:15:d3:e6:b8:c8:cd:33:
13:23:48:a2:f8:f0:95:a1:bf:a1:17:b8:b5:80:0f:
e4:0a:34:b1:67:7a:31:cf:4f:63:32:22:a9:9c:d0:
a2:30:e6:ee:86:3b:d3:8a:74:94:b1:64:18:5e:89:
5b:84:a0:cf:7e:60:67:d2:85:09:05:ef:fe:cf:5f:
85:9a:5b:b6:86:3e:59:e4:eb:0a:3a:b4:c1:25:ff:
1f:56:35:0a:4f:94:25:88:27:9e:68:1b:d3:af:05:
2f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:4C:AB:05:9A:C7:CF:59:62:C0:BB:8A:71:2F:80:F2:30:3B:A0:AB
X509v3 Authority Key Identifier:
keyid:61:5F:BB:DF:C9:01:E8:EB:0E:CD:0D:D3:F4:08:5C:12:89:CF:ED:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YV-738kB6OsOzQ3T9AhcEonP7fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/74f313-7c92-4c54-838f-79c722c54e19/1/6EyrBZrHz1liwLuKcS-A8jA7oKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/74f313-7c92-4c54-838f-79c722c54e19/1/YV-738kB6OsOzQ3T9AhcEonP7fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:7da0::/32
Signature Algorithm: sha256WithRSAEncryption
86:da:d7:6d:15:1e:54:71:f7:9a:33:ea:30:98:78:f1:a6:e4:
35:83:b6:1d:e8:31:6f:19:fe:2f:9f:73:f8:15:c1:91:94:9d:
7f:12:69:f6:eb:da:c6:6f:43:52:13:c0:3c:d5:07:0f:36:92:
59:09:d3:4e:b4:6e:a8:63:a8:2c:12:cc:c2:6a:5a:cf:20:d1:
a5:e5:c0:01:da:a7:51:08:83:cb:84:da:0a:50:59:52:eb:76:
16:5e:7a:b5:0e:5e:54:0e:53:33:92:be:89:71:e0:3e:a9:a7:
76:77:15:a8:ac:bf:aa:93:3e:1d:f3:f4:5c:2a:4a:b1:55:fe:
11:54:11:0e:38:08:2f:f9:b7:04:27:e5:9d:69:5a:91:b0:81:
41:76:39:e1:46:58:2c:27:a1:de:73:3a:57:c6:98:dc:3c:80:
6d:73:d5:2b:f8:42:54:54:c8:51:e4:31:0b:fc:c2:f6:a2:0c:
47:3b:0c:e1:ac:90:2a:a7:a2:17:40:ba:7b:7e:95:e8:27:6f:
81:49:01:ad:df:e9:2d:eb:ba:f0:f0:b2:5b:a5:cb:2d:d6:c0:
7d:33:49:de:10:e2:41:20:50:0d:73:dc:66:30:77:f4:94:a3:
a7:9d:17:25:3c:15:cc:58:a6:54:0f:37:80:60:3d:7c:7a:82:
67:aa:23:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:37 2024 by rpki-client on console-ams.rpki-client.org