Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Pmm_g0RGUpKkNBApWsxzNhp0DQo.roa
File: Pmm_g0RGUpKkNBApWsxzNhp0DQo.roa (raw, json)
Hash identifier: zZCuqN99RT4s6l+KSDN/KLEQo/b63KXIOwCg55kyyzE=
Subject key identifier: 3E:69:BF:83:44:46:52:92:A4:34:10:29:5A:CC:73:36:1A:74:0D:0A
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0182FAED2A51CF804072F3168B7D36A8E981
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Pmm_g0RGUpKkNBApWsxzNhp0DQo.roa
Signing time: Thu 01 Sep 2022 21:20:23 +0000
ROA not before: Thu 01 Sep 2022 21:20:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203333
IP address blocks: 2a0c:9a40:8340::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fa:ed:2a:51:cf:80:40:72:f3:16:8b:7d:36:a8:e9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 1 21:20:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e69bf8344465292a43410295acc73361a740d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dc:96:0e:37:da:7f:0d:ef:5d:c1:0e:9f:ec:
07:d9:bf:ce:92:06:6f:bb:39:17:2b:c1:2d:ad:1c:
f3:66:a4:df:13:b4:bc:66:5c:ea:17:4c:4b:8d:d5:
41:76:09:b6:52:7f:d3:16:45:06:02:82:5d:b8:be:
49:68:16:1e:4c:98:f6:b4:89:31:7f:62:e9:91:fa:
2e:3d:2a:bf:f7:5d:6f:f4:e5:41:3c:66:0d:12:72:
e1:a0:41:bb:7f:65:6a:6e:04:b6:2b:be:ab:16:80:
2a:ec:ca:ba:1e:65:86:59:53:e0:2a:c4:74:f5:22:
f3:4c:76:e5:fa:f6:a7:df:ec:b0:7c:a4:fa:6a:5d:
02:0f:bc:12:74:44:08:06:cb:93:58:f4:74:c2:46:
d9:43:b7:f2:bb:20:0b:d7:f7:03:2b:e6:25:cc:16:
86:fd:d6:1b:8c:85:ef:04:14:ad:89:45:6c:d9:d6:
3d:59:7a:43:20:7d:09:f4:e1:d9:ac:15:d8:22:71:
c5:ff:68:db:5c:56:5b:8f:fe:89:2d:66:d4:44:40:
a6:b3:a3:8b:9b:e4:02:c2:b2:10:cb:40:65:47:27:
0a:de:5f:e4:9e:8c:3e:5f:8a:b3:2d:8b:00:58:a5:
fa:ee:b0:43:17:0d:3e:42:47:64:ee:59:a9:de:51:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:69:BF:83:44:46:52:92:A4:34:10:29:5A:CC:73:36:1A:74:0D:0A
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Pmm_g0RGUpKkNBApWsxzNhp0DQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8340::/48
Signature Algorithm: sha256WithRSAEncryption
64:c2:29:01:ed:69:45:ac:b5:c2:c2:9e:96:24:bf:7e:c9:49:
c0:4f:65:26:a8:f0:1d:42:c6:80:97:26:b1:e3:f2:f2:21:ac:
97:99:c2:d6:61:b6:d7:07:00:5c:f1:92:36:84:7f:25:6e:8a:
d4:8f:a2:0a:31:f4:77:1f:62:7d:64:49:e2:7c:3d:56:c9:6b:
65:52:e2:00:36:5e:4d:90:74:07:a8:18:24:70:84:8c:b2:cc:
28:74:ca:4e:7c:b1:41:2e:61:69:60:19:ce:94:eb:55:b3:0e:
95:f7:68:4e:da:29:81:84:e0:ed:be:de:ae:d7:0f:9a:00:9d:
d8:96:c1:19:7d:91:a3:02:38:67:fe:42:98:e5:51:b8:4e:b5:
06:e1:af:84:7b:51:34:85:b7:0f:b6:65:c4:7a:de:05:42:fb:
10:62:ce:25:b7:97:cd:4d:b5:6f:29:b8:70:da:90:f1:64:44:
9b:fa:36:26:5f:92:28:64:6c:ba:49:db:d4:83:85:04:12:0f:
23:e5:e4:cd:59:a0:03:e1:1a:8c:fc:59:7b:78:b9:1b:05:f2:
3e:d0:8f:cc:a4:74:a9:a4:0c:be:88:e5:0a:79:d3:79:bc:41:
29:ca:f8:5c:fc:62:f1:75:5d:9b:68:a2:9c:e1:3a:93:02:e9:
bb:d1:c1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org