Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Sezr5Nk6TBz2n_Lmdeit-MGxGwM.roa
File: Sezr5Nk6TBz2n_Lmdeit-MGxGwM.roa (raw, json)
Hash identifier: edkZALM0gav4zbORrjJ9MSOvZMOulz5Xmy/AtuBaPEk=
Subject key identifier: 49:EC:EB:E4:D9:3A:4C:1C:F6:9F:F2:E6:75:E8:AD:F8:C1:B1:1B:03
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0184D26BA75FB6AA31B24749179E03CD9C41
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Sezr5Nk6TBz2n_Lmdeit-MGxGwM.roa
Signing time: Fri 02 Dec 2022 10:39:41 +0000
ROA not before: Fri 02 Dec 2022 10:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200965
IP address blocks: 2a0c:9a40:8160::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:6b:a7:5f:b6:aa:31:b2:47:49:17:9e:03:cd:9c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Dec 2 10:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49ecebe4d93a4c1cf69ff2e675e8adf8c1b11b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fd:e1:6c:b7:fd:99:fb:e8:93:3e:25:a6:df:
94:9a:71:b6:a3:ad:23:63:d6:af:27:ce:92:67:66:
42:fb:15:a3:4a:0f:e3:bd:0d:55:b0:cd:2a:4a:03:
15:01:28:08:58:fa:27:5b:ce:3d:1c:8e:66:d2:53:
f8:2c:42:d1:da:92:72:03:fd:5a:67:a5:f1:43:5a:
a0:21:3c:5d:f0:f9:37:4b:56:c2:ae:e0:97:41:72:
fb:7e:6f:cb:b0:e0:d6:9c:39:cf:d7:f7:15:f3:a8:
80:1d:58:ae:13:a8:21:e8:05:d3:61:ef:e0:f3:47:
62:e3:d8:c4:7a:a2:19:b4:c9:9a:33:7e:83:ba:2e:
90:f6:3d:9a:a9:32:66:30:d3:8c:39:32:85:85:24:
0b:29:72:6f:a4:c8:68:23:39:46:43:85:b8:1b:38:
57:7b:79:b3:bc:97:06:90:de:3d:d4:a2:dd:c3:ef:
4c:e3:11:1e:9b:b1:5e:35:46:67:c2:23:fd:7c:c7:
8d:8f:b1:bb:c4:01:b0:04:4d:9e:12:16:0a:b1:1f:
af:ba:ab:31:4b:7e:00:9f:3c:74:d1:a3:c6:4f:c8:
74:cc:f3:b8:6f:13:c8:60:7e:f5:b6:57:5d:69:4d:
04:8d:50:ac:95:20:66:7b:9c:98:ec:af:ee:21:7a:
12:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:EC:EB:E4:D9:3A:4C:1C:F6:9F:F2:E6:75:E8:AD:F8:C1:B1:1B:03
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Sezr5Nk6TBz2n_Lmdeit-MGxGwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8160::/44
Signature Algorithm: sha256WithRSAEncryption
b3:ef:89:c9:10:b7:59:1a:85:73:b6:07:b4:d0:2a:21:dc:3b:
00:08:fa:9a:d2:34:41:30:72:79:b3:81:f1:8e:82:97:15:83:
aa:62:e7:ff:83:fb:3f:0f:47:5f:a0:50:20:e7:7c:d1:4f:5b:
0f:90:d6:ae:ad:20:5c:69:07:83:a7:0c:ec:3e:50:82:88:30:
b4:27:9a:37:38:70:59:ad:05:1a:cd:78:94:3a:ef:7d:29:82:
b2:5c:f8:bf:70:69:87:31:9a:6d:51:81:2b:27:91:4f:b8:5d:
24:d4:ae:b6:dd:7c:24:68:67:b1:81:b7:87:6f:95:8c:68:43:
1b:9c:79:fc:59:33:d5:66:93:c1:a3:a1:48:4b:7f:d0:25:b0:
ce:81:c3:57:c9:6a:9d:d2:f0:f2:ec:98:17:4c:2d:b1:20:99:
f5:60:ce:92:35:9c:db:7d:fb:89:2c:ee:74:27:e3:29:c5:a0:
e5:8c:34:e4:37:46:c6:1a:92:67:a6:b2:97:a3:10:a9:43:cd:
e4:6f:60:b0:fe:68:d5:19:c3:cb:04:60:f8:1e:a7:95:b7:54:
0a:af:06:62:c2:a3:5e:b5:12:0c:cf:3d:37:2c:9f:5c:bd:9e:
9c:b5:08:56:28:9a:e8:f4:b3:d2:6c:46:f9:67:c9:69:a9:aa:
71:77:a3:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:50 2024 by rpki-client on console-fra.rpki-client.org