Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/m_4e-FdnYFb-KUnmfJoE4F8vKnY.roa
File: m_4e-FdnYFb-KUnmfJoE4F8vKnY.roa (raw, json)
Hash identifier: GfypIlZhdoNJ3TdpjCnN6mWG5PH4tDWC1yDcG49xers=
Subject key identifier: 9B:FE:1E:F8:57:67:60:56:FE:29:49:E6:7C:9A:04:E0:5F:2F:2A:76
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018533E96B91E19737275EFC5DEBFCAAAE38
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/m_4e-FdnYFb-KUnmfJoE4F8vKnY.roa
Signing time: Wed 21 Dec 2022 09:00:13 +0000
ROA not before: Wed 21 Dec 2022 09:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57138
IP address blocks: 2a07:e340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:33:e9:6b:91:e1:97:37:27:5e:fc:5d:eb:fc:aa:ae:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Dec 21 09:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bfe1ef857676056fe2949e67c9a04e05f2f2a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:90:d3:e3:b0:27:78:4c:7e:16:c1:8f:ed:53:
1e:08:26:8b:38:15:69:79:41:41:5c:da:67:03:ad:
71:02:00:b0:c4:38:df:b2:23:20:67:6f:e8:d7:f1:
29:6a:49:2c:a9:77:cf:37:8b:4a:76:d3:e8:26:8a:
b8:f0:4e:eb:54:77:dd:62:27:49:84:af:ff:f9:73:
b3:d2:85:78:a0:62:d4:c2:99:73:4e:71:83:87:b7:
6a:63:2b:d1:1d:94:bf:84:b6:65:92:fd:46:de:ff:
0d:57:5f:15:35:8d:0e:5b:f3:47:bd:e2:16:b2:9e:
90:5b:e8:ff:ca:15:b0:b7:1f:ba:0d:64:92:35:9d:
2f:88:53:59:00:54:06:e9:fd:f8:90:16:ce:6b:59:
c1:fc:43:96:1f:46:0f:bf:83:92:18:91:4f:a0:46:
28:dc:fd:35:69:48:e2:99:3f:83:27:d8:cc:3d:65:
7f:3f:86:60:46:ec:3c:a5:4b:c8:b1:82:80:7f:b8:
96:bd:90:19:72:9c:0d:25:9a:49:0d:1f:3d:4d:cc:
24:b9:02:b4:8a:da:c2:af:21:cd:70:d9:f6:05:f2:
3b:1e:fb:0b:0f:9c:8c:b4:33:a5:6c:c0:24:2d:77:
00:81:4e:f9:50:f0:02:3b:0b:9f:54:93:10:ea:0e:
4f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FE:1E:F8:57:67:60:56:FE:29:49:E6:7C:9A:04:E0:5F:2F:2A:76
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/m_4e-FdnYFb-KUnmfJoE4F8vKnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e340::/32
Signature Algorithm: sha256WithRSAEncryption
b6:5b:33:e5:18:d6:1f:3d:56:64:1f:22:e9:ba:16:a1:dc:0f:
a5:d4:56:64:da:5f:c6:4e:00:58:e8:f7:a8:44:0c:30:69:d2:
e0:98:71:97:ac:b4:d9:07:5d:33:c4:c0:e7:64:99:61:4a:65:
cc:72:66:bf:46:c6:1f:e4:5c:58:2e:a2:42:45:af:43:b3:7b:
8e:2a:70:51:c7:ea:66:be:aa:6f:07:15:8b:45:ff:cf:da:7e:
a0:49:fc:a6:ea:bd:9a:b7:af:a9:1a:2d:56:a4:38:eb:22:b7:
0f:c1:45:ef:ff:e6:78:a4:0a:55:43:21:f2:86:1a:f9:8f:1c:
5d:8a:57:23:e3:90:f0:b9:e4:95:05:af:27:18:d0:3d:1f:48:
d4:89:ae:24:36:4b:36:99:68:e4:15:db:ec:21:85:31:b0:1c:
43:f7:19:8d:4b:7e:e0:27:0d:12:6d:b7:4a:30:8c:dd:18:14:
52:b7:be:02:57:3b:53:0d:ef:ca:ff:16:38:25:3a:2b:ee:2d:
d7:bb:b9:8a:38:5a:af:d7:6a:9a:ca:6a:67:17:bb:d8:b6:c7:
09:f1:f5:08:6f:1e:28:e2:ab:04:c0:f1:2a:6c:b5:9e:6a:74:
97:69:d7:ca:0b:e1:d9:37:dd:6a:b6:73:a5:2f:64:0f:88:ff:
40:a9:8b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org