Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/m1P9RXNAKJHs40NT5qEd5pYQWLM.roa
File: m1P9RXNAKJHs40NT5qEd5pYQWLM.roa (raw, json)
Hash identifier: 9mWsRyftrjjCrKYEuEFnaW21sruXd5IxDDGAJ7ZVN5k=
Subject key identifier: 9B:53:FD:45:73:40:28:91:EC:E3:43:53:E6:A1:1D:E6:96:10:58:B3
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 093C3D9E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/m1P9RXNAKJHs40NT5qEd5pYQWLM.roa
Signing time: Sat 01 Jan 2022 16:01:05 +0000
ROA not before: Sat 01 Jan 2022 16:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213115
IP address blocks: 2a0b:b87:ffb0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154942878 (0x93c3d9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b53fd4573402891ece34353e6a11de6961058b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2e:af:74:4e:61:fb:6e:72:ff:f1:ba:b1:b9:
fd:03:c6:10:34:0f:d0:13:da:40:08:c9:ea:ba:5b:
73:3d:3c:6c:71:de:42:fe:55:b0:b9:f1:23:f0:6d:
d9:03:ea:81:fa:c1:cc:8e:9e:ef:fc:78:0a:24:2e:
13:f1:f1:ba:da:83:7b:86:10:6f:85:10:20:83:84:
6a:26:7d:d6:8a:2c:a0:ce:71:dc:4b:5a:c0:41:9c:
c9:9c:7a:19:41:8a:af:9e:73:24:c0:47:d2:88:d0:
41:13:4c:f4:2c:9a:16:ad:4d:b5:f6:7d:f4:56:18:
82:fc:5b:71:19:4a:ef:65:0f:99:a7:e5:7b:f9:5b:
38:26:a4:20:34:cb:f2:5a:52:ad:99:9e:58:f5:81:
25:c1:28:a5:29:7d:d7:01:ed:47:f8:37:d0:06:52:
90:24:09:06:f5:aa:43:16:a5:e5:32:6a:31:b7:34:
6c:76:29:34:ac:20:d9:fb:22:6f:0b:85:ad:b7:d0:
ef:e2:b5:3b:92:75:56:73:41:57:1a:74:94:38:e9:
3f:7b:29:a7:9f:dc:f2:4f:32:62:33:90:02:e1:8e:
1d:ef:7e:92:26:11:61:75:27:78:b6:ca:10:18:85:
0d:b4:06:a7:98:70:ec:c2:f9:53:d7:91:c1:43:eb:
3e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:53:FD:45:73:40:28:91:EC:E3:43:53:E6:A1:1D:E6:96:10:58:B3
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/m1P9RXNAKJHs40NT5qEd5pYQWLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffb0::/48
Signature Algorithm: sha256WithRSAEncryption
a6:ba:68:e7:9d:8a:fb:7e:8f:27:93:28:1c:64:9e:5c:ca:ad:
14:33:f6:34:13:ac:a6:94:e4:fc:05:8d:b0:11:78:32:72:8e:
c3:4b:d6:04:64:bd:41:59:28:38:77:f0:40:79:89:82:61:2c:
1c:f6:d7:a5:73:2c:96:22:9a:2e:c9:c7:88:02:35:a4:68:f6:
bb:41:2e:1f:8c:59:2c:27:41:4a:72:7f:96:9f:29:02:ac:3d:
fa:f2:a0:34:25:08:4f:5a:9c:54:ea:f9:1c:7a:31:77:13:bd:
8d:9f:c1:5d:0f:a9:ed:9b:3d:74:a6:18:1f:89:e8:76:ba:cb:
83:b9:7b:d3:be:97:fc:17:d7:e0:a7:17:bc:20:47:0b:04:da:
17:1d:0a:14:cc:ee:d9:56:80:7f:2b:cb:7a:88:ea:eb:28:c5:
4f:11:3d:06:a3:9a:cd:1e:e3:65:6e:93:38:04:4b:86:3d:c6:
94:70:35:ea:c7:fa:59:95:ca:8b:81:25:b9:a5:df:fe:8e:30:
1a:3e:f9:19:55:38:48:99:63:2c:15:01:de:57:0b:1a:b9:82:
63:19:a6:f9:c2:0a:99:45:34:fb:67:10:87:d3:99:44:c7:30:
fc:16:8e:fd:7a:63:fb:ea:3b:67:f7:9a:24:de:1d:23:bc:b3:
cf:a3:31:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org