Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/mmfj6rQ2BpNbZN3JGVgIqO7tObg.roa
File: mmfj6rQ2BpNbZN3JGVgIqO7tObg.roa (raw, json)
Hash identifier: tmKqF2pKO7bKBCqIqKBCi+H2gBNIQhvU0Ze309qbd5I=
Subject key identifier: 9A:67:E3:EA:B4:36:06:93:5B:64:DD:C9:19:58:08:A8:EE:ED:39:B8
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 0182FD9826AB5295A7CDBF1A3BD341C21963
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/mmfj6rQ2BpNbZN3JGVgIqO7tObg.roa
Signing time: Fri 02 Sep 2022 09:46:23 +0000
ROA not before: Fri 02 Sep 2022 09:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203307
IP address blocks: 2a11:f880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fd:98:26:ab:52:95:a7:cd:bf:1a:3b:d3:41:c2:19:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Sep 2 09:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a67e3eab43606935b64ddc9195808a8eeed39b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f8:c0:25:8b:c1:83:73:98:65:2e:ea:68:17:
27:fc:2b:df:44:37:cd:28:ed:6a:b2:db:d0:10:f8:
d8:94:11:7b:23:c2:2b:7f:16:ce:41:6a:0e:91:a0:
6e:56:c6:8e:48:d9:83:62:33:08:01:41:56:f6:32:
e1:fa:bb:91:7d:8a:b1:d8:1a:0c:7f:0c:6c:e0:43:
de:c8:20:72:10:01:0e:88:8a:44:74:c4:fa:aa:1c:
aa:b2:41:04:8f:10:dc:e7:73:20:e3:a0:97:21:0b:
56:9d:ee:47:78:01:2f:43:07:6a:f1:4e:91:21:84:
9a:ec:31:19:b4:f3:26:bf:61:5d:7e:9f:3d:2b:24:
d5:00:43:84:f7:fe:1a:cd:07:0f:9d:cb:03:47:18:
22:01:bb:dc:1e:51:d2:46:21:26:aa:8a:d1:42:de:
6f:82:dc:fc:88:e1:9d:bf:44:3d:20:2f:f2:bc:1e:
ea:72:a1:87:80:0e:3d:56:de:44:a4:ef:b7:58:61:
da:2a:6f:af:c0:be:bc:08:f3:87:48:fc:cb:23:85:
d0:d6:70:4b:5d:87:3c:19:74:b6:ce:b2:d4:19:06:
5a:13:03:2b:28:ea:91:8d:d7:2f:20:0f:72:70:6e:
1e:e9:80:01:d8:1c:87:95:30:ee:6d:3b:70:08:b4:
12:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:67:E3:EA:B4:36:06:93:5B:64:DD:C9:19:58:08:A8:EE:ED:39:B8
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/mmfj6rQ2BpNbZN3JGVgIqO7tObg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f880::/29
Signature Algorithm: sha256WithRSAEncryption
23:26:94:99:ce:12:6d:d7:ca:88:d3:e6:d1:7d:79:0d:44:18:
35:89:89:6e:da:19:d8:aa:bc:d1:a5:4e:65:71:98:4d:8a:42:
f8:cd:58:3a:ab:ff:26:0c:77:a7:b1:96:4a:fa:27:c8:51:21:
69:81:73:5f:1f:aa:82:ea:42:16:a5:ac:8e:88:a5:b3:34:59:
24:60:bd:c2:64:18:8e:64:47:ce:ea:22:9e:1b:e9:d2:90:64:
ad:12:ed:b3:d6:7e:17:89:ff:96:a2:83:29:31:2d:53:a2:99:
1b:a1:d7:17:48:63:d0:7e:63:0e:1a:e9:62:b2:8e:5e:2b:73:
6d:27:6b:a1:62:a2:d9:32:2e:a2:db:cd:b9:19:75:f0:36:52:
d2:ce:7c:e7:2b:09:1a:59:d3:d0:56:d3:a7:04:40:22:50:0a:
58:ff:c9:00:24:83:e1:f7:90:c8:05:89:83:14:8f:0c:12:42:
a3:ec:5a:32:fd:fc:06:4b:52:0f:f0:f4:98:5f:51:be:38:bf:
d5:62:e3:4a:88:8b:2f:9f:c9:9f:d3:fd:e8:1d:17:02:46:5a:
d1:a9:b5:2b:09:e9:0c:51:c3:f8:04:dc:27:e5:d8:88:f0:c1:
fb:90:02:12:5e:df:64:0f:25:d2:4b:fc:82:19:3c:3c:af:e8:
5a:33:07:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org