Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/v3M9P217MTt6AggaLQTJdYTiIME.roa
File: v3M9P217MTt6AggaLQTJdYTiIME.roa (raw, json)
Hash identifier: ESdvim5X7MzGPJ6AEKfRxP+WkwSgoImlnApwWqhI5dA=
Subject key identifier: BF:73:3D:3F:6D:7B:31:3B:7A:02:08:1A:2D:04:C9:75:84:E2:20:C1
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0183226C9048F37A7E279B3F0C6EEC487ACB
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/v3M9P217MTt6AggaLQTJdYTiIME.roa
Signing time: Fri 09 Sep 2022 13:24:43 +0000
ROA not before: Fri 09 Sep 2022 13:24:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61004
IP address blocks: 2a0d:2584::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:6c:90:48:f3:7a:7e:27:9b:3f:0c:6e:ec:48:7a:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Sep 9 13:24:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf733d3f6d7b313b7a02081a2d04c97584e220c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b7:b1:74:fd:09:f9:96:be:4b:89:97:ff:08:
ee:6a:d4:0b:d1:9a:f8:2e:12:a0:e5:26:48:79:df:
93:45:ba:58:6f:a3:51:33:a9:22:4f:67:8b:87:2b:
36:75:b7:77:89:81:8b:c9:bf:02:7c:32:3d:d7:62:
82:4e:e6:3e:68:6d:ba:41:c0:4f:ee:d2:c6:cf:c4:
ed:4d:81:08:fb:d0:cb:91:07:d1:cb:a8:57:c3:38:
6d:07:f9:4c:19:38:82:78:39:09:4e:4c:03:8c:a6:
46:f7:3b:2e:6e:55:5b:91:06:11:31:d6:99:ad:f2:
cb:7c:ea:aa:5f:5b:a4:22:c2:50:07:f9:a3:81:f2:
18:46:29:80:e8:1d:7b:38:8a:33:6f:38:41:bb:3e:
99:8a:58:cb:ab:b4:f3:75:39:79:22:fc:5d:17:5e:
3f:be:38:52:90:64:00:e1:a0:8a:e9:42:23:bc:5b:
c7:b0:ed:97:61:04:3f:0f:65:69:1b:3b:be:a2:16:
83:d7:bc:77:06:f0:2a:5d:3f:ff:a5:fb:f4:5c:a6:
89:f2:d7:cd:00:7f:d8:72:0c:15:7e:38:59:4f:b6:
e5:24:f1:6a:09:b5:61:94:2c:74:80:1f:c6:e6:3f:
ed:bd:bb:15:b8:25:0e:5e:f7:51:ab:9e:34:ab:5a:
55:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:73:3D:3F:6D:7B:31:3B:7A:02:08:1A:2D:04:C9:75:84:E2:20:C1
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/v3M9P217MTt6AggaLQTJdYTiIME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2584::/32
Signature Algorithm: sha256WithRSAEncryption
04:a4:67:c0:4f:a8:81:a0:84:36:d3:e8:57:00:58:29:fe:14:
63:07:e6:9b:1f:c3:37:c6:79:fb:21:97:83:aa:df:9b:79:22:
f8:8c:3a:8b:00:24:5c:eb:cb:71:cd:07:84:e5:e4:22:5b:e7:
43:5b:f0:e0:93:fd:60:14:04:72:ba:2f:08:02:cb:b6:2c:a4:
e1:85:c7:a2:27:b7:e7:16:c5:05:da:f6:be:9e:33:ac:9e:d1:
06:ed:a3:b3:94:b0:f9:84:da:aa:a6:2d:79:bc:21:5b:16:13:
9a:e3:bf:9a:9f:61:7f:62:09:99:e3:38:8f:84:c0:50:64:2b:
45:64:c9:c2:30:63:20:bf:6a:15:10:f7:7d:27:7a:ce:0d:12:
b6:48:0e:14:e2:2a:1a:03:12:e8:fc:17:be:eb:54:4b:0b:79:
c0:87:c9:0e:4d:ff:ff:e9:2d:a0:f5:3b:23:45:ca:08:df:68:
bb:32:6c:58:30:7e:1e:45:f8:4a:e7:16:04:50:4e:0a:77:46:
bb:0a:73:7c:f6:c6:29:14:6f:75:f6:30:9e:9b:c0:ce:19:a6:
38:7a:64:66:ae:d4:58:23:13:44:cb:b8:b0:04:5b:db:1d:94:
8c:26:11:af:f2:0d:9a:6f:e1:5a:fc:b1:16:a0:b2:1f:30:6e:
fc:0c:78:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:11 2023 by rpki-client on console-fra.rpki-client.org