Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/9jRM4HWm9C6xol6_exzARpiCCWs.roa
File: 9jRM4HWm9C6xol6_exzARpiCCWs.roa (raw, json)
Hash identifier: stTNWKD3t75up/rNPN6AavKmwJygGlXLqWK2PeV3sO0=
Subject key identifier: F6:34:4C:E0:75:A6:F4:2E:B1:A2:5E:BF:7B:1C:C0:46:98:82:09:6B
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 074662D4
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/9jRM4HWm9C6xol6_exzARpiCCWs.roa
Signing time: Sat 01 Jan 2022 14:00:21 +0000
ROA not before: Sat 01 Jan 2022 14:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 2a0f:ca80:de0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122053332 (0x74662d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 1 14:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6344ce075a6f42eb1a25ebf7b1cc0469882096b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:be:dc:85:1d:49:2a:0b:72:ec:b6:b5:03:90:
96:6c:e1:78:86:92:15:ec:1c:bc:83:63:3b:d3:6b:
a5:f9:2e:4d:b5:56:91:9b:83:69:b6:81:39:a4:30:
45:7d:81:c5:5e:62:92:53:76:99:cb:34:3c:ac:ec:
83:bd:ec:a3:c1:b4:fa:75:88:1b:51:6b:26:86:a6:
12:1b:20:71:5e:17:66:2d:a7:be:2e:fc:7d:dd:3d:
92:71:0e:f7:61:70:31:7c:73:86:24:0d:aa:99:33:
5a:cd:dc:1f:8a:90:44:4f:1e:39:ec:26:32:82:63:
02:96:e1:4d:78:e0:0a:9d:1d:97:fc:dd:5f:d5:0f:
e7:79:ec:14:95:b9:44:52:5b:92:2c:bb:3b:ae:98:
10:6e:b7:bc:27:2d:cd:5f:13:1a:2f:3d:86:7e:79:
34:20:32:9f:69:f6:da:d0:9b:55:b2:9e:db:50:db:
72:93:1d:b3:7b:5a:c9:35:e3:4a:76:cd:07:25:f5:
f6:4b:c6:60:2d:14:4d:e8:b8:b4:d3:5c:f3:11:21:
83:c1:33:99:aa:54:e1:c9:d5:93:90:88:51:2e:91:
d0:c6:f0:39:c4:d2:41:4e:34:9e:b5:ec:35:d7:7b:
9b:64:d9:30:9e:0e:a0:59:2c:4b:67:78:1c:32:dc:
0d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:34:4C:E0:75:A6:F4:2E:B1:A2:5E:BF:7B:1C:C0:46:98:82:09:6B
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/9jRM4HWm9C6xol6_exzARpiCCWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ca80:de0::/44
Signature Algorithm: sha256WithRSAEncryption
53:86:11:16:fb:1b:a9:47:6b:4f:7f:6b:5c:a4:63:70:55:c9:
79:24:52:30:d6:5e:28:7c:49:57:8d:2b:b8:45:12:1f:b5:d4:
61:24:06:98:b9:3e:d3:88:f1:58:c0:1a:52:f4:c5:38:d7:dc:
23:fa:36:d9:b2:74:af:b7:21:7f:71:29:41:1f:0c:a6:a8:bc:
40:51:a2:aa:72:09:43:46:00:47:0e:28:05:77:4a:03:97:3e:
d7:86:f0:df:fc:7e:e5:58:3f:be:14:76:4f:97:89:6e:9f:58:
56:6a:7e:ff:c5:72:1c:b6:a4:84:d8:86:b4:cb:c3:e8:07:e4:
cc:d0:62:08:3a:fc:3f:8d:f4:aa:69:47:fa:97:25:ae:3f:f8:
16:f3:7e:f6:e4:3f:94:a4:d1:58:0c:05:0b:dc:9c:9c:87:53:
a6:d9:1a:05:96:dd:32:5a:cd:d2:28:d1:bb:e5:12:a7:a0:78:
79:d1:28:da:10:1b:1d:2d:cf:3b:aa:b2:c4:1f:2c:b2:4f:39:
cf:9e:13:1a:6f:95:8d:db:a5:4b:b0:af:a1:bb:e2:5f:a1:f8:
8c:83:ab:55:13:6b:61:54:19:4a:63:87:21:ed:6d:51:1e:9f:
50:49:bd:27:e9:9f:b5:b1:7b:c9:03:b8:1b:58:13:9a:88:54:
85:1e:dd:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:46 2024 by rpki-client on console-ams.rpki-client.org