Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/mF13NhIHf8HnOg1FnjYgogJPU_8.roa
File: mF13NhIHf8HnOg1FnjYgogJPU_8.roa (raw, json)
Hash identifier: 1vC7vuej/AsNB9G7hU6IhpIQ0888Fop/gs8BKG5EM+E=
Subject key identifier: 98:5D:77:36:12:07:7F:C1:E7:3A:0D:45:9E:36:20:A2:02:4F:53:FF
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FDADA7A
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/mF13NhIHf8HnOg1FnjYgogJPU_8.roa
Signing time: Sat 01 Jan 2022 14:59:38 +0000
ROA not before: Sat 01 Jan 2022 14:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:e881:7700::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266001018 (0xfdada7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=985d773612077fc1e73a0d459e3620a2024f53ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:81:62:ed:51:14:fb:c5:ec:87:21:eb:73:53:
f1:a7:db:6b:e3:b8:ac:6d:e7:a3:9f:27:c5:41:bb:
4c:90:e4:3c:2e:d4:fa:a7:cb:2b:e3:11:2c:77:d9:
2c:32:b1:40:8b:3b:1a:40:ab:ff:dc:4a:01:ad:00:
e4:48:9a:61:f7:bd:91:44:29:b6:65:66:a5:30:33:
8a:2e:7f:f1:a8:ec:d3:c1:45:fb:b5:62:64:af:a2:
44:68:70:1d:db:63:08:73:0f:a8:b5:62:f0:20:a3:
a3:af:7c:42:98:c5:ab:03:f2:d2:61:c4:a9:f9:54:
ac:34:92:97:35:b4:85:97:67:02:9c:d6:7e:da:31:
b6:8f:3d:b7:e3:d7:39:bc:30:1f:20:dc:8b:4e:98:
a3:9c:b7:70:db:06:70:84:4c:20:ef:f4:d9:29:52:
b6:f3:e6:b5:24:d8:b4:a4:8f:b8:85:bc:0c:a5:56:
7a:57:69:12:50:6a:46:e0:e5:bc:3e:dd:27:0b:ba:
eb:7d:eb:c6:da:b6:a5:3e:e4:7b:8e:8e:c9:18:66:
7d:28:a8:d5:e6:ec:64:43:7d:29:e0:30:5c:18:89:
5e:2d:ce:52:a8:c8:67:ca:c3:c5:85:d0:2c:eb:71:
6c:3b:35:65:3c:c9:af:3e:b7:3f:a4:a8:db:17:72:
28:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5D:77:36:12:07:7F:C1:E7:3A:0D:45:9E:36:20:A2:02:4F:53:FF
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/mF13NhIHf8HnOg1FnjYgogJPU_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:7700::/40
Signature Algorithm: sha256WithRSAEncryption
79:8c:87:95:3f:a5:e4:3a:25:51:65:fb:e0:f2:1e:7e:52:a6:
75:ce:3f:0d:ed:2e:c9:eb:30:92:65:a6:ec:e4:58:a8:32:27:
2a:8e:4c:04:e1:a8:bb:b0:0c:29:18:86:fb:82:a3:a4:e1:92:
4a:1b:08:0c:5f:de:26:d8:01:9a:a5:dc:72:f3:f4:97:65:c6:
ea:90:34:29:fd:77:50:3d:1d:3d:37:8c:da:4b:fd:a6:09:6e:
9c:82:b9:2c:7a:47:cc:40:b4:30:be:48:cc:85:3b:a5:f4:92:
f3:36:12:4c:78:f7:ab:73:70:13:23:cf:fa:2a:12:89:3c:f4:
2b:ac:0b:ac:bb:6f:99:37:1d:ff:d7:81:90:1e:aa:e1:60:00:
5e:45:a5:50:1c:1d:3d:db:cf:b2:2f:89:ef:90:59:84:53:72:
a9:36:5c:b1:61:3f:e0:88:f7:fd:1a:b5:88:5e:c0:79:c3:02:
ac:27:21:a9:9a:40:33:f6:8b:19:0b:fd:3a:8c:79:cf:dc:9c:
9c:b5:4f:3c:7a:a8:eb:4f:c7:de:6b:f0:ff:ba:53:d5:a9:51:
ef:ed:4a:50:d8:7b:4e:6d:b2:86:45:a0:c2:be:9c:79:85:e8:
22:47:38:3b:42:b3:45:5a:a8:f9:47:4a:9c:c8:22:9c:86:7a:
3e:36:32:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org