Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/MKw0NJDyIchx4bHxfY4x4qLG3So.roa
File: MKw0NJDyIchx4bHxfY4x4qLG3So.roa (raw, json)
Hash identifier: k7UctAF1QDwyqkIQBL8OmYGRQJcCFx9MX+ZBCQjYRic=
Subject key identifier: 30:AC:34:34:90:F2:21:C8:71:E1:B1:F1:7D:8E:31:E2:A2:C6:DD:2A
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018200BD6CE00EE046A4B960369B15EF29E2
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/MKw0NJDyIchx4bHxfY4x4qLG3So.roa
Signing time: Fri 15 Jul 2022 07:23:10 +0000
ROA not before: Fri 15 Jul 2022 07:23:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207806
IP address blocks: 2a00:7180:8004::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:bd:6c:e0:0e:e0:46:a4:b9:60:36:9b:15:ef:29:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 15 07:23:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30ac343490f221c871e1b1f17d8e31e2a2c6dd2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:36:24:20:f4:f8:38:67:6a:ca:13:d2:4f:a5:
8b:3b:1f:dc:98:8b:68:3b:f5:21:f4:ff:67:f2:ef:
2f:5e:82:55:46:4b:19:e8:02:ec:f2:68:85:e3:7a:
09:76:55:fb:3e:bf:ae:2f:f9:a7:e0:a1:bf:1f:d3:
3e:08:3e:c7:7d:4b:73:45:ff:99:80:d4:50:53:c6:
c5:d6:26:5f:1e:a9:55:0d:5f:e7:6f:04:76:d7:8d:
e1:45:2c:d6:d7:05:13:ed:9e:cc:b3:a0:8d:31:66:
82:a8:de:ab:67:62:ae:dd:fd:6b:7a:a1:b1:f2:98:
04:69:86:97:e2:14:11:7b:35:b6:87:65:e5:5a:79:
90:c0:12:b6:b3:9d:75:53:29:d4:86:8a:5c:94:dc:
65:27:fa:60:70:27:9a:d4:d9:f1:31:e2:18:2c:1d:
d1:57:03:0b:4f:2a:a1:ac:19:21:00:04:b7:45:13:
41:92:44:c3:bb:26:74:53:bb:b0:dd:59:6c:c6:9f:
4f:17:31:e9:88:0e:24:ce:6c:f8:5d:2c:79:38:b8:
43:53:89:5c:4b:c7:46:be:38:9d:73:6a:83:46:46:
d6:62:09:5e:24:2b:43:09:b8:09:ec:a2:32:e1:4a:
dc:73:e5:ac:45:9e:eb:96:f9:b9:8c:b2:f8:52:fb:
d3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:AC:34:34:90:F2:21:C8:71:E1:B1:F1:7D:8E:31:E2:A2:C6:DD:2A
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/MKw0NJDyIchx4bHxfY4x4qLG3So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7180:8004::/46
Signature Algorithm: sha256WithRSAEncryption
72:0d:71:2c:c1:6a:48:fb:55:3f:de:94:86:65:ed:10:8b:9d:
05:28:d3:bf:ae:ae:5d:ef:20:b1:86:e5:29:5f:c8:9b:5e:ef:
dd:99:dc:5c:dd:b1:f2:40:da:00:82:71:6f:97:5f:7b:18:fa:
a8:e1:76:22:67:33:a6:27:91:ce:e2:c6:17:37:4a:a6:c5:17:
3b:e5:49:4e:4d:90:c7:40:10:79:da:32:1a:c1:b2:18:56:a4:
27:56:f5:4d:c8:f3:9f:f7:cd:d8:26:2f:8d:c5:4a:23:73:37:
92:df:22:d9:78:e3:a1:fc:d6:a8:fb:c2:ed:4f:3e:d7:b1:3f:
fa:a6:ac:0c:78:37:1a:2d:9d:e4:44:75:36:e9:6c:de:36:37:
7f:80:7d:d1:8b:e8:e5:8b:1e:0c:b3:40:50:61:e8:e4:a2:94:
6c:d8:39:60:e4:42:e6:ed:c2:15:f0:1c:6a:5b:21:e4:66:ac:
e9:e1:42:da:52:ab:66:6a:7a:42:cc:96:8f:b7:80:0a:c4:c6:
6c:12:83:f7:49:c6:5f:a9:ac:42:20:56:51:8c:6a:7a:d8:f4:
0a:fa:01:0e:e7:e2:56:7d:43:c1:ef:75:96:33:84:04:50:46:
fa:45:ed:29:38:6f:9e:db:9f:c3:c8:91:24:05:63:ac:01:f8:
c1:61:87:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org