Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/6RgM80ZWxzjkIELhFdnZdCR5CzQ.roa
File: 6RgM80ZWxzjkIELhFdnZdCR5CzQ.roa (raw, json)
Hash identifier: OVN0gAMXHJHsYORNNruxOi+KhpVyNkF2TYOnO2dCZd0=
Subject key identifier: E9:18:0C:F3:46:56:C7:38:E4:20:42:E1:15:D9:D9:74:24:79:0B:34
Certificate issuer: /CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Certificate serial: 08F6EDA1
Authority key identifier: D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/6RgM80ZWxzjkIELhFdnZdCR5CzQ.roa
Signing time: Fri 04 Mar 2022 13:37:45 +0000
ROA not before: Fri 04 Mar 2022 13:37:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212469
IP address blocks: 2a0e:e704:60::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150400417 (0x8f6eda1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Validity
Not Before: Mar 4 13:37:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9180cf34656c738e42042e115d9d97424790b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a2:ff:20:47:da:87:60:ea:1d:12:58:b7:03:
2c:81:c1:99:8f:d1:b3:2b:90:6c:23:4b:78:54:26:
e2:7f:20:9d:da:b7:cf:e9:77:f0:2c:72:d7:ed:f4:
7a:2f:44:33:59:b0:83:2d:dd:65:63:93:24:3c:c9:
ed:ab:02:e7:4b:d8:ef:94:f4:c4:51:b9:90:65:6e:
d5:ce:6a:17:1f:f8:f2:6c:04:92:3a:39:97:46:35:
75:c6:68:54:d5:f9:62:2c:61:94:cb:2e:d9:cb:cd:
79:cd:f8:ab:c5:cd:26:ed:11:d9:14:a4:3c:02:1d:
cb:0a:d2:1f:0e:32:e3:1e:b7:55:22:18:f1:99:8b:
8a:fc:43:33:a0:92:34:de:78:c3:50:48:6c:e3:43:
e7:bc:b1:4b:11:9b:e8:b9:f1:88:1e:1f:d3:82:8d:
98:69:ba:ba:8c:86:61:03:97:a5:d7:8b:75:b9:f8:
03:13:1c:d9:39:de:37:ed:ab:9d:4c:9f:6d:ff:f7:
af:7e:9f:f6:6d:bd:01:50:aa:b7:cd:de:83:05:a8:
35:b6:79:ce:22:af:89:6b:7c:57:cf:fb:d2:20:df:
20:fe:8a:c7:25:b7:88:b6:89:ba:8a:2f:a0:fa:7f:
64:4d:97:be:b6:a5:56:d3:c7:9f:36:e0:9d:2e:6a:
2d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:18:0C:F3:46:56:C7:38:E4:20:42:E1:15:D9:D9:74:24:79:0B:34
X509v3 Authority Key Identifier:
keyid:D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/6RgM80ZWxzjkIELhFdnZdCR5CzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/1g9F98xLaR_UoxwfHAtPYF13pu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e704:60::/44
Signature Algorithm: sha256WithRSAEncryption
14:e8:b5:98:a0:9c:10:6e:d8:ce:b2:a4:bb:09:7e:fd:c4:49:
90:36:3e:a0:3c:d8:81:aa:e8:0a:36:62:24:ae:7c:69:54:82:
bc:fc:0e:f1:84:19:94:ff:36:6a:f3:2a:59:30:0a:59:44:42:
cf:cf:bd:24:7d:1b:5f:19:c4:07:ef:2c:00:4e:82:38:fa:e4:
ea:6b:ef:e8:a3:82:59:c6:3c:d6:54:ad:eb:8f:a1:dd:a1:18:
c4:8c:c9:26:30:11:9e:2a:a5:30:e4:ff:e5:83:3d:f1:32:94:
d4:8a:73:53:9e:e9:04:f0:3f:f0:72:b3:7e:73:63:e1:6e:b8:
65:e3:81:bf:08:5a:eb:36:6b:20:9f:d9:07:69:7a:71:50:9a:
ea:74:cf:be:01:f0:23:fa:a7:0c:52:b4:4e:d1:ec:31:32:4d:
f7:be:a4:f8:2c:63:1a:89:e8:b0:0b:10:53:09:4a:18:c0:5d:
c4:5c:c2:18:09:df:78:07:af:f4:ed:c9:11:1a:65:3c:b3:3f:
66:ad:05:ee:1c:85:c9:a1:b4:2e:71:5d:fb:eb:43:24:f7:35:
37:83:4b:9d:b1:7b:3b:17:7a:ab:45:65:bd:eb:02:d1:ed:30:
7c:f9:7f:ee:45:f2:cd:5a:ee:98:73:14:ae:1d:88:3a:5d:6f:
77:d9:cf:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:23 2023 by rpki-client on console-fra.rpki-client.org