Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/mZ3pfgp36Vz56IgSaDbJittNQTQ.roa
File: mZ3pfgp36Vz56IgSaDbJittNQTQ.roa (raw, json)
Hash identifier: sarlk7Lv+0E2ud0zQTscegI6K0YNh1+I1+q0KRZj1gw=
Subject key identifier: 99:9D:E9:7E:0A:77:E9:5C:F9:E8:88:12:68:36:C9:8A:DB:4D:41:34
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 0757E339
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/mZ3pfgp36Vz56IgSaDbJittNQTQ.roa
Signing time: Sat 01 Jan 2022 04:57:13 +0000
ROA not before: Sat 01 Jan 2022 04:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34828
IP address blocks: 2a0f:6580:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123200313 (0x757e339)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 04:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=999de97e0a77e95cf9e888126836c98adb4d4134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c9:08:9f:3b:b6:c0:f1:61:36:6a:27:15:b1:
ad:ba:94:4f:ab:70:20:64:58:f2:33:39:01:8c:8d:
4f:8a:21:f4:2a:c8:06:b4:c3:cf:bf:8e:75:c8:95:
d7:5b:ad:e5:dd:9f:93:5c:98:f3:e5:81:e1:09:5a:
11:a9:d9:91:46:b9:02:0c:b5:8a:d2:1d:1a:d6:80:
49:1b:b0:51:a7:06:91:17:50:42:3a:24:31:6c:9c:
09:6b:f6:3b:24:a6:32:ca:45:ba:04:50:f0:96:fe:
95:73:cf:26:ab:90:5b:7d:8d:7d:26:56:ba:7c:89:
26:d7:69:71:ef:7d:81:8f:7a:d8:54:d6:d6:1d:c2:
93:b2:f6:71:38:53:cb:b9:4d:db:d3:06:2b:7f:66:
f4:64:a9:3f:bc:8c:7b:ba:3c:8b:cf:4b:80:51:5f:
54:72:9d:94:e4:39:e5:89:61:ef:5b:62:33:07:7f:
92:e3:c0:1f:a1:7c:49:2f:63:97:be:b0:d3:e4:2f:
75:6f:29:11:0e:7d:d2:44:47:e1:63:6e:3d:8e:56:
d0:e5:88:92:b2:57:92:7b:ad:bc:5e:6a:a5:f5:74:
66:a7:48:a7:65:d0:3e:f4:b6:e2:bd:16:f6:d5:8c:
55:a6:d1:06:15:66:7a:09:cc:07:b2:25:c1:e1:6d:
1a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9D:E9:7E:0A:77:E9:5C:F9:E8:88:12:68:36:C9:8A:DB:4D:41:34
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/mZ3pfgp36Vz56IgSaDbJittNQTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6580:10::/48
Signature Algorithm: sha256WithRSAEncryption
17:ab:50:ca:22:61:fe:37:e5:5f:07:37:0f:8d:aa:01:cf:57:
83:31:88:52:7a:85:60:ac:f8:ca:08:3c:85:04:4e:68:a8:83:
8e:d4:96:ff:e5:ba:eb:1e:d9:af:22:4d:76:10:56:27:36:2e:
09:b2:b9:43:70:8c:6b:8c:39:90:1e:e1:2e:57:03:bf:2d:c4:
a0:cd:a5:4c:be:6e:5b:de:f7:f1:21:9f:a3:26:61:11:31:14:
ea:70:1f:ab:38:e0:da:dd:74:ad:2f:51:02:97:61:9d:ab:91:
d7:05:e4:3d:d1:cb:2d:34:0a:7f:6b:4c:20:96:e7:39:65:5a:
67:f4:20:78:06:ce:56:b7:80:76:dd:6e:7a:ff:96:fa:0f:ce:
eb:0a:70:e8:60:e5:21:e7:72:c8:72:a9:24:29:30:1b:52:d2:
f7:09:b0:09:13:c8:3e:e6:ee:7d:28:7b:8f:28:a6:4d:93:7b:
b6:01:70:40:9f:6b:c1:68:a6:c8:4c:06:52:fa:4a:77:6d:c5:
ca:05:18:18:1c:63:11:f6:06:bf:81:59:9d:8c:b1:f3:37:43:
02:19:56:ab:fe:f8:f2:d6:25:b1:29:1e:e8:26:ed:a2:15:9e:
c7:3a:1b:7d:d2:00:d1:60:19:e4:81:d9:89:a3:49:fb:26:e3:
53:2f:9d:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:34 2023 by rpki-client on console-ams.rpki-client.org