Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/m96Kt3z4sWwWRVHJk0-UMlhyT4M.roa
File: m96Kt3z4sWwWRVHJk0-UMlhyT4M.roa (raw, json)
Hash identifier: 2OwI+8US7NQsqykW44kAbKpgXipRqrUUjKrphAPaSKY=
Subject key identifier: 9B:DE:8A:B7:7C:F8:B1:6C:16:45:51:C9:93:4F:94:32:58:72:4F:83
Certificate issuer: /CN=ceac024ffd8df4918741f754c0db218ee7b2748d
Certificate serial: 018486A97762DADACFC8315EAE247DF3CF9C
Authority key identifier: CE:AC:02:4F:FD:8D:F4:91:87:41:F7:54:C0:DB:21:8E:E7:B2:74:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zqwCT_2N9JGHQfdUwNshjueydI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/m96Kt3z4sWwWRVHJk0-UMlhyT4M.roa
Signing time: Thu 17 Nov 2022 17:36:03 +0000
ROA not before: Thu 17 Nov 2022 17:36:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:d600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:a9:77:62:da:da:cf:c8:31:5e:ae:24:7d:f3:cf:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceac024ffd8df4918741f754c0db218ee7b2748d
Validity
Not Before: Nov 17 17:36:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bde8ab77cf8b16c164551c9934f943258724f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:84:00:95:75:46:e4:3e:78:52:d0:9d:73:d4:
ef:92:3e:8d:f7:ac:c7:b5:d8:94:02:25:96:45:f2:
8d:77:94:6a:8c:d8:79:b5:b6:7a:16:2d:fe:9c:08:
98:a4:89:6b:7d:56:8e:98:2c:24:4f:c6:24:8a:a0:
22:06:3f:d6:2d:33:48:a4:ce:b4:fc:49:71:fa:bb:
56:f2:8f:d7:46:ae:54:4d:f3:db:e0:2a:fa:86:ba:
23:1b:71:75:4b:01:48:d0:b8:c2:77:be:8a:03:8e:
e1:92:ce:66:31:53:ee:1c:63:5a:90:87:a2:99:7a:
ce:52:9e:57:e9:b4:70:c4:68:99:d7:be:80:aa:65:
a9:0a:80:3a:ee:41:c2:e3:20:7b:bc:08:68:6d:da:
7e:f6:8d:9f:24:7d:8a:78:c0:4f:86:69:10:a8:56:
4b:d3:dc:a7:25:06:e0:a6:ec:ef:cd:71:73:dc:2a:
9e:ff:a2:44:7c:df:0d:5d:30:48:cd:a7:c4:0e:8c:
00:cf:eb:8a:f3:42:81:4a:6f:20:49:88:c3:dd:69:
31:e7:f6:d1:c0:31:6c:6a:49:f3:4e:a7:be:dc:72:
17:fd:9e:63:cc:7f:cc:3e:1e:58:9c:a8:37:e2:45:
b7:a3:4f:b2:9a:e6:63:d6:90:46:f8:4e:e8:92:72:
cf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:DE:8A:B7:7C:F8:B1:6C:16:45:51:C9:93:4F:94:32:58:72:4F:83
X509v3 Authority Key Identifier:
keyid:CE:AC:02:4F:FD:8D:F4:91:87:41:F7:54:C0:DB:21:8E:E7:B2:74:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zqwCT_2N9JGHQfdUwNshjueydI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/m96Kt3z4sWwWRVHJk0-UMlhyT4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/zqwCT_2N9JGHQfdUwNshjueydI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:d600::/29
Signature Algorithm: sha256WithRSAEncryption
7e:71:5e:f8:ca:30:3d:d5:83:d2:32:f4:e8:82:a9:4b:a1:05:
c0:73:e4:f5:f8:c1:ad:0b:52:2b:52:53:f3:c3:23:53:c8:db:
69:14:4c:7e:a6:99:df:45:6b:be:aa:35:50:29:1a:d8:9e:40:
89:10:37:11:63:cc:3c:b7:e2:12:48:fb:95:98:b7:e8:33:78:
11:15:84:d7:5e:97:2e:01:8b:a0:7e:ec:77:7d:06:ea:06:0b:
52:a2:20:0d:72:9c:f8:f9:1b:77:44:83:6f:94:98:c0:ab:a2:
4e:d4:37:79:78:a2:89:a1:f7:15:3b:83:cb:c3:5e:55:14:2f:
43:67:c0:8b:ec:23:de:9d:57:fd:7e:13:da:26:0b:a2:c1:c7:
c5:45:3b:75:cb:c5:52:a1:bc:ad:60:95:01:b5:fc:45:c2:e3:
54:da:c8:d8:e4:c5:30:f5:8c:dc:90:f8:3e:9b:b7:bf:7a:58:
4f:0d:f2:10:05:31:d1:b6:ce:f3:ee:88:15:b4:9f:68:ff:73:
a1:0c:d9:e2:1e:03:04:5c:55:83:3c:c0:4c:ca:9a:8b:6a:ea:
fd:96:d4:1b:56:87:c2:3d:27:b2:f4:cd:de:5d:7f:df:9f:f1:
0f:0b:eb:20:b1:88:6d:7e:6f:e3:7f:8f:9c:90:8e:c1:b5:6a:
13:2d:f8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:11 2023 by rpki-client on console-fra.rpki-client.org