Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/mW69OerSmyHb07yhREzqpP9wivM.roa
File: mW69OerSmyHb07yhREzqpP9wivM.roa (raw, json)
Hash identifier: 1TACmzFe1tHfPCUwzeCaPTPDvv1pkGZ1ex0vaCmubJc=
Subject key identifier: 99:6E:BD:39:EA:D2:9B:21:DB:D3:BC:A1:44:4C:EA:A4:FF:70:8A:F3
Certificate issuer: /CN=9a620e691d95aaceb3262dbdfcb0ca5099ee2444
Certificate serial: BD2A
Authority key identifier: 9A:62:0E:69:1D:95:AA:CE:B3:26:2D:BD:FC:B0:CA:50:99:EE:24:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mmIOaR2Vqs6zJi29_LDKUJnuJEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/mW69OerSmyHb07yhREzqpP9wivM.roa
Signing time: Tue 15 Mar 2022 18:40:38 +0000
ROA not before: Tue 15 Mar 2022 18:40:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212717
IP address blocks: 2001:678:e24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48426 (0xbd2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a620e691d95aaceb3262dbdfcb0ca5099ee2444
Validity
Not Before: Mar 15 18:40:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=996ebd39ead29b21dbd3bca1444ceaa4ff708af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:13:2f:88:04:9d:32:6b:eb:25:d6:24:f0:53:
91:0a:31:90:8d:ee:1a:1a:7b:91:4e:99:f0:a0:8e:
88:3b:50:d0:82:51:b6:70:b7:12:04:0e:dc:57:f0:
53:ed:71:2d:52:4d:fb:12:3a:4b:fe:7e:d8:c7:f7:
36:81:c2:cd:a8:93:a9:bc:10:cc:d8:3f:60:52:f3:
f3:0f:23:86:2f:8a:ce:39:66:7e:cd:96:31:da:3c:
8b:6c:46:2f:7b:6a:ce:e7:58:cf:f1:81:19:45:26:
61:d1:64:a1:25:e6:91:6e:70:e0:2f:18:fe:e9:25:
91:f0:c9:26:c7:44:26:ba:7b:15:b4:c4:2e:b9:67:
43:60:04:55:92:09:d6:f4:d4:ed:5d:cf:d5:0d:52:
4d:cf:eb:a9:f6:48:79:7e:fb:5f:7b:c2:0f:09:de:
a6:84:47:c3:d9:94:66:94:34:70:32:17:30:8c:a7:
e1:f6:b7:4b:06:bd:59:fa:4d:f5:6c:e0:a7:be:30:
61:07:42:54:e6:92:82:f3:1e:79:e1:79:25:36:6e:
a0:52:c6:e5:cd:5c:14:a3:a6:50:cf:f0:ca:8d:19:
39:d4:af:77:ff:ff:57:63:8c:8a:d8:b9:e1:5b:07:
8a:bf:d8:bd:b8:13:59:d4:be:d8:f0:96:b9:6b:ee:
47:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:6E:BD:39:EA:D2:9B:21:DB:D3:BC:A1:44:4C:EA:A4:FF:70:8A:F3
X509v3 Authority Key Identifier:
keyid:9A:62:0E:69:1D:95:AA:CE:B3:26:2D:BD:FC:B0:CA:50:99:EE:24:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mmIOaR2Vqs6zJi29_LDKUJnuJEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/mW69OerSmyHb07yhREzqpP9wivM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/mmIOaR2Vqs6zJi29_LDKUJnuJEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:e24::/48
Signature Algorithm: sha256WithRSAEncryption
4c:2d:90:0d:13:1e:52:59:53:05:8e:58:e9:75:c3:85:f3:86:
f8:31:58:cc:40:ca:da:43:b9:26:f3:64:a8:77:e5:fe:03:7d:
72:be:81:15:21:81:2e:c5:a8:82:5b:a1:30:38:40:6a:de:fe:
5b:65:8e:ae:3f:94:20:d6:70:8e:cf:82:b0:0a:8c:1b:83:68:
95:f9:e9:02:21:28:a4:b2:b6:6f:f2:15:4f:4c:e8:17:c9:17:
be:cb:14:67:de:47:08:3a:63:9a:1e:32:72:64:61:55:68:7d:
24:07:a1:6f:66:00:25:25:1c:af:65:08:5c:4b:ac:ba:af:d1:
55:aa:1b:a8:3d:7a:d6:92:5f:e8:2b:b8:11:36:76:6b:69:0f:
c8:d0:81:bb:03:b8:19:df:28:0d:50:c6:e6:be:b2:e0:38:7f:
f0:55:d0:94:3b:bb:ba:02:13:c3:ed:7e:cb:65:3e:12:ad:3a:
13:42:d7:90:3a:23:90:f2:01:98:5e:c6:17:35:eb:e4:d7:07:
96:50:80:34:00:02:23:35:29:ac:01:4b:53:10:6c:f0:3e:5d:
d8:af:82:88:4b:ed:9e:8b:bf:fc:a6:f6:45:a8:71:8e:96:21:
69:4d:64:75:9b:1e:37:a3:78:6d:6c:9f:2b:0e:3e:d2:cd:fb:
95:76:e0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:40 2024 by rpki-client on console-ams.rpki-client.org