Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/aQ970ikuPmRVbH9YWui-qJmiT64.roa
File: aQ970ikuPmRVbH9YWui-qJmiT64.roa (raw, json)
Hash identifier: fwShzMuATupkImGM3T73StCk/4UhlauGzdzNt3ypCXw=
Subject key identifier: 69:0F:7B:D2:29:2E:3E:64:55:6C:7F:58:5A:E8:BE:A8:99:A2:4F:AE
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19EF1F16
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/aQ970ikuPmRVbH9YWui-qJmiT64.roa
Signing time: Sat 30 Apr 2022 22:04:30 +0000
ROA not before: Sat 30 Apr 2022 22:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 2a06:82c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435101462 (0x19ef1f16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 30 22:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=690f7bd2292e3e64556c7f585ae8bea899a24fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a7:41:86:4b:44:19:80:31:7a:1b:f1:52:4a:
8d:53:65:f9:69:36:e6:f6:4b:69:3d:a5:d1:ad:2e:
d1:82:ed:e9:0e:e5:31:51:84:47:92:01:80:05:cc:
ba:84:37:48:d1:3a:bc:70:14:8e:15:af:31:6d:eb:
17:41:0f:93:1d:ee:b6:a1:95:e1:79:d7:19:c4:06:
1e:97:bb:36:bd:14:ae:6d:33:10:b2:1b:72:79:14:
28:1c:08:28:37:22:d5:a9:c5:a9:e7:66:ad:7c:b0:
a5:41:6d:36:26:1f:26:14:05:b9:6e:75:1b:ee:62:
7a:b1:60:d0:9f:67:8f:51:79:be:99:2a:78:ab:1c:
81:63:93:09:d6:07:23:dc:6e:14:fe:8c:e1:81:6a:
49:31:ef:04:72:5d:95:32:3e:d3:3e:62:98:c7:3f:
a8:50:55:49:e4:8c:86:03:d7:31:ff:74:eb:2a:cb:
41:59:5b:49:d6:50:c7:36:25:72:13:b7:c4:53:39:
cf:cb:69:cc:5d:3c:fb:d2:ce:36:ae:78:98:b2:0e:
09:d6:1a:79:47:e2:ba:a0:28:69:05:90:7b:82:5e:
c3:f0:9f:eb:ef:e8:0c:00:af:cc:25:c6:a9:04:61:
07:cd:5f:4c:8d:f7:e7:0a:d5:52:c7:c7:55:de:dc:
3d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0F:7B:D2:29:2E:3E:64:55:6C:7F:58:5A:E8:BE:A8:99:A2:4F:AE
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/aQ970ikuPmRVbH9YWui-qJmiT64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:82c2::/48
Signature Algorithm: sha256WithRSAEncryption
6a:8f:29:a1:3e:f8:36:f4:e6:86:0c:01:36:3d:63:15:cb:81:
2e:e0:7e:2a:7c:72:af:1a:9f:7a:3e:fa:f5:57:65:97:ab:39:
62:2c:48:34:02:53:42:f2:7f:f3:55:6b:c2:e2:4c:e5:60:36:
d1:81:60:11:b3:42:c3:f4:18:31:99:b4:4b:b3:70:da:72:cd:
eb:cf:aa:1e:b0:0e:bd:3d:2d:dd:f9:2c:e0:8a:02:78:12:c7:
af:80:6b:eb:dc:d9:4b:34:3f:d3:70:2f:f1:52:71:f9:58:2d:
79:bc:d1:e5:b3:c2:37:39:bd:ae:75:97:b5:10:fa:07:06:a5:
a4:29:fb:96:6a:cc:6e:5f:fc:df:70:86:1b:ed:10:4c:e4:bb:
ce:bb:c8:70:19:71:65:45:e5:91:83:3f:9f:b3:b3:16:e5:31:
2a:58:ec:e9:b3:3f:3b:e1:0b:73:87:a6:2a:c8:94:00:0d:54:
65:27:d1:8a:ac:81:25:36:1b:c6:aa:27:42:82:5d:0d:62:c1:
6e:1e:af:7f:37:13:fb:32:04:d9:7f:64:6d:9b:e5:f8:47:38:
b2:8a:e8:91:b4:35:a8:ec:d3:02:db:f3:04:26:a9:1b:df:0d:
b8:15:36:72:74:75:46:f1:7f:9e:34:8d:91:cc:9f:cd:8d:a7:
f1:a0:93:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org