Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/mQmDFdPprUvCopkMFBBZVJMORwI.roa
File: mQmDFdPprUvCopkMFBBZVJMORwI.roa (raw, json)
Hash identifier: XhaYrwV6H7/H0QseIcomUCi5b8NgaqSvo9iKFge3X64=
Subject key identifier: 99:09:83:15:D3:E9:AD:4B:C2:A2:99:0C:14:10:59:54:93:0E:47:02
Certificate issuer: /CN=81b65a230d6927dbac201097f949e2eaa2731220
Certificate serial: 018530BCECF8CC23191492845958DEDC5434
Authority key identifier: 81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/mQmDFdPprUvCopkMFBBZVJMORwI.roa
Signing time: Tue 20 Dec 2022 18:12:45 +0000
ROA not before: Tue 20 Dec 2022 18:12:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203218
IP address blocks: 2001:67c:2d80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:bc:ec:f8:cc:23:19:14:92:84:59:58:de:dc:54:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81b65a230d6927dbac201097f949e2eaa2731220
Validity
Not Before: Dec 20 18:12:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99098315d3e9ad4bc2a2990c14105954930e4702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:67:b5:16:70:56:a2:c2:f1:9b:cd:e0:fe:5a:
37:56:7b:5d:96:64:a0:5e:2a:13:70:cb:3e:90:22:
a7:82:e6:d5:52:01:29:1d:87:81:fe:e5:91:a4:34:
47:60:b4:8c:d4:fc:ab:6e:e2:26:79:c2:9a:80:00:
32:c1:0f:34:82:4e:2d:5f:0c:03:c3:ef:09:ac:78:
3a:3f:cd:c1:7b:0e:ea:86:a0:9e:5a:07:53:06:58:
6d:8f:48:c5:9b:8d:15:de:5b:a9:bc:b4:08:cd:1d:
21:e2:fd:ec:ae:11:d7:92:33:55:dd:85:32:e5:76:
a5:fc:16:74:75:6d:fd:8f:9b:65:e9:5c:87:31:1e:
6e:3c:57:bd:27:09:3d:df:af:0d:57:50:e9:9e:53:
ae:2c:ec:6a:d1:06:6a:e4:1b:5f:66:b1:1b:4f:96:
af:10:6f:15:21:15:b5:e1:20:7d:a7:8a:18:6f:5c:
3c:0b:db:7a:94:3b:5a:7e:4b:1c:59:d8:68:4f:98:
bb:7b:5c:74:33:a1:55:89:41:e3:04:8d:26:60:b3:
cc:de:a5:9c:bb:a2:84:84:de:65:39:12:ef:09:4d:
ae:78:34:47:5f:70:a4:12:d9:af:92:36:cd:07:ee:
d8:a8:19:df:76:cf:cf:19:a3:cd:35:64:fd:c1:f4:
6f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:09:83:15:D3:E9:AD:4B:C2:A2:99:0C:14:10:59:54:93:0E:47:02
X509v3 Authority Key Identifier:
keyid:81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/mQmDFdPprUvCopkMFBBZVJMORwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/gbZaIw1pJ9usIBCX-Uni6qJzEiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d80::/48
Signature Algorithm: sha256WithRSAEncryption
6b:39:7f:31:51:fd:98:2b:28:55:78:eb:33:0d:49:37:00:2f:
e4:c3:a6:95:08:66:57:d0:2e:f6:87:de:c3:2e:55:b5:53:40:
0d:32:e1:d8:16:52:87:83:97:e6:5b:d0:ca:7c:34:ee:26:ab:
07:15:40:b1:56:b0:48:57:76:6a:48:5f:3c:63:db:84:eb:ed:
fa:7f:f8:25:c0:70:5d:ab:e1:53:e7:81:ec:69:ee:11:3a:15:
7e:0e:17:1f:60:71:06:f5:11:13:ec:4d:dd:2d:35:c0:52:cc:
46:9a:fd:dd:47:fd:be:16:13:90:d5:80:9e:82:25:fb:77:59:
cb:a1:34:d3:8a:51:cc:1a:07:a4:68:c1:4d:89:64:ac:96:cd:
75:0f:e3:3c:28:3a:58:c6:47:9a:ce:d8:a1:a2:e2:99:50:1f:
67:a7:cb:43:df:34:f4:fe:2c:bc:0a:ef:8e:1f:99:37:d6:b5:
71:9f:ac:76:6d:49:5f:d6:06:b3:dc:12:24:45:f2:5b:20:2b:
76:3d:6a:6a:12:0a:74:f1:6e:63:4d:83:22:a6:8f:41:a9:cb:
e6:e0:27:c9:cd:d6:ab:48:05:6f:6a:fa:59:c3:bc:2c:06:f0:
37:5d:98:da:40:fb:65:17:2f:c5:28:5e:6f:e4:c2:e6:94:d2:
46:cd:54:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:01 2024 by rpki-client on console-fra.rpki-client.org