Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/H9MGB-ZTbpw-iEXAOi0bIra5v34.roa
File: H9MGB-ZTbpw-iEXAOi0bIra5v34.roa (raw, json)
Hash identifier: YlhnkAUBdQ/KhZPrvaVaOs9aGu/vlg6/XuDbVRltczI=
Subject key identifier: 1F:D3:06:07:E6:53:6E:9C:3E:88:45:C0:3A:2D:1B:22:B6:B9:BF:7E
Certificate issuer: /CN=597a01de87e011803f890ae17749020f995f140c
Certificate serial: 04D3E3B6
Authority key identifier: 59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/H9MGB-ZTbpw-iEXAOi0bIra5v34.roa
Signing time: Thu 21 Apr 2022 15:44:36 +0000
ROA not before: Thu 21 Apr 2022 15:44:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1271
IP address blocks: 2a07:b980:480f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80995254 (0x4d3e3b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=597a01de87e011803f890ae17749020f995f140c
Validity
Not Before: Apr 21 15:44:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fd30607e6536e9c3e8845c03a2d1b22b6b9bf7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:5c:ca:b6:42:63:13:84:58:07:47:fd:1c:
7a:3a:b3:d5:94:bf:4a:34:a8:f0:f2:d1:56:ad:f9:
fd:9d:dd:51:17:31:1e:4f:b4:b4:3c:73:39:61:66:
24:57:75:44:5e:8f:e0:bb:64:e0:f6:f2:97:78:07:
84:e5:ff:f5:3a:55:59:a4:e9:fe:2c:23:c7:7b:94:
94:6e:3a:6b:46:95:d7:13:6b:eb:19:f0:1e:65:4e:
df:31:4c:ae:fd:06:8b:a5:b4:0e:85:ff:5f:3d:4e:
cc:ea:9d:14:a4:20:44:94:f7:58:24:25:0d:54:10:
9a:d8:50:37:79:99:ac:91:43:ec:21:98:fc:60:62:
97:c7:c3:99:0d:88:fb:45:af:2f:7a:f6:e7:2d:61:
d9:26:c1:35:53:31:fa:0f:7a:d4:92:08:e2:e9:cf:
82:b2:c3:95:bd:6e:6a:6e:32:3d:87:39:33:ec:03:
3c:14:47:5b:51:a0:f3:d7:ad:60:1b:07:2a:b0:20:
a7:f2:a0:5e:22:e2:e5:ed:ab:10:14:e7:bc:4f:b1:
a3:4b:ee:32:c9:94:f6:54:68:37:c3:48:5c:0c:b7:
65:26:e1:4b:33:ae:01:97:4c:c0:d7:3e:5b:66:46:
ee:1b:06:c7:92:5b:81:e4:d8:30:fa:f5:9e:cf:57:
11:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D3:06:07:E6:53:6E:9C:3E:88:45:C0:3A:2D:1B:22:B6:B9:BF:7E
X509v3 Authority Key Identifier:
keyid:59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/H9MGB-ZTbpw-iEXAOi0bIra5v34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:b980:480f::/48
Signature Algorithm: sha256WithRSAEncryption
23:e4:d5:43:e1:f4:28:5d:23:ba:d0:72:43:ad:fb:a6:2d:bc:
f0:35:ee:19:e1:c4:13:41:2a:b6:98:72:aa:f6:f4:c9:f6:8a:
4c:22:c0:c5:3a:b6:37:40:29:99:54:85:09:7d:41:83:8e:46:
1a:e0:3c:7b:41:c1:9d:93:f2:17:f7:6e:47:8f:17:8e:b9:1b:
e2:50:12:d4:6d:fb:40:17:68:f5:c7:65:86:1c:98:b7:dd:53:
eb:36:66:db:e9:fd:e1:98:88:78:ad:e4:7e:31:b8:68:52:bc:
3c:33:84:ac:67:92:3d:ba:ac:ac:ab:b6:64:f9:7e:d2:a6:8f:
8b:89:52:73:ab:b5:e1:44:9d:6a:d4:63:5a:ff:df:6b:86:d9:
f0:21:50:a1:ca:ef:7f:f7:69:aa:71:81:49:00:88:36:47:19:
14:9d:ff:6b:8e:8d:1f:84:92:aa:e0:2e:c1:ee:6f:a7:14:85:
04:a1:6e:8c:6d:28:9d:2b:ca:de:2e:a1:e4:e3:d8:36:c3:6a:
f5:02:22:22:ef:f1:e0:fd:93:c5:b0:e2:f3:1b:0d:49:d2:e1:
4b:f2:b6:db:3b:61:93:ff:59:66:2e:8e:d9:d4:1a:13:42:95:
4a:3d:ba:7c:5f:e3:3d:2d:4e:c5:af:fc:f8:26:46:a5:66:bc:
50:08:47:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:12 2023 by rpki-client on console-fra.rpki-client.org