Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/bn3TMMytKOKwwURn63wkqHCTxSs.roa
File: bn3TMMytKOKwwURn63wkqHCTxSs.roa (raw, json)
Hash identifier: 0jGpr0UUgNJ+ARKQ8mNk7CqRj6+k4u4jJsj6AIRw8o8=
Subject key identifier: 6E:7D:D3:30:CC:AD:28:E2:B0:C1:44:67:EB:7C:24:A8:70:93:C5:2B
Certificate issuer: /CN=23662c9a980ad7584650abaa3545b9ea91d3e35e
Certificate serial: 125E6EE0
Authority key identifier: 23:66:2C:9A:98:0A:D7:58:46:50:AB:AA:35:45:B9:EA:91:D3:E3:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I2YsmpgK11hGUKuqNUW56pHT414.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/bn3TMMytKOKwwURn63wkqHCTxSs.roa
Signing time: Sat 01 Jan 2022 03:51:11 +0000
ROA not before: Sat 01 Jan 2022 03:51:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49009
IP address blocks: 2a03:2267:4e16::/48 maxlen: 48
2a03:2267:54ae::/48 maxlen: 48
2a03:2267::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308178656 (0x125e6ee0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23662c9a980ad7584650abaa3545b9ea91d3e35e
Validity
Not Before: Jan 1 03:51:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e7dd330ccad28e2b0c14467eb7c24a87093c52b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:3f:31:44:11:37:78:bb:af:b0:d8:50:ec:7b:
f7:69:f8:5d:71:56:c7:b2:bd:44:1f:ae:09:cd:c1:
37:00:06:a1:0c:0b:4d:46:39:1a:73:74:71:ee:a4:
97:e3:e3:53:11:c5:18:0d:88:df:f1:b0:6f:41:63:
a4:ac:be:a6:49:42:c7:6f:b7:a5:c3:1f:0a:3a:f6:
b5:49:33:61:aa:1d:95:0c:32:c9:06:16:c5:61:15:
28:0c:4d:40:81:a4:8d:87:80:73:56:64:50:d2:bb:
f7:0d:8f:7c:81:c0:74:6a:ea:bd:5b:e1:41:fa:d5:
ea:33:fb:b2:84:91:bc:2c:83:26:ae:8e:80:d2:c2:
36:3f:f6:22:20:e3:3f:e0:a6:5e:04:02:a6:a0:fa:
eb:e4:6f:3b:d6:2f:b3:c2:bc:cf:e7:2b:cd:e3:7c:
31:c6:15:5e:4f:60:b9:36:7e:7a:6d:8e:41:52:3f:
d8:8b:db:07:ad:91:d8:09:ff:32:e8:0c:ae:50:e0:
fa:64:1e:0b:85:05:0d:ac:51:2b:9b:b1:4f:a0:1b:
0b:fa:ff:d0:30:1a:d3:ad:cc:94:35:9f:e7:2c:97:
b5:b3:1f:93:88:a2:9e:e2:ff:c7:e1:5a:e4:57:25:
e8:bb:1e:37:b3:09:47:05:95:43:50:48:65:4d:e8:
5d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7D:D3:30:CC:AD:28:E2:B0:C1:44:67:EB:7C:24:A8:70:93:C5:2B
X509v3 Authority Key Identifier:
keyid:23:66:2C:9A:98:0A:D7:58:46:50:AB:AA:35:45:B9:EA:91:D3:E3:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I2YsmpgK11hGUKuqNUW56pHT414.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/bn3TMMytKOKwwURn63wkqHCTxSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/I2YsmpgK11hGUKuqNUW56pHT414.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2267::/32
Signature Algorithm: sha256WithRSAEncryption
2f:89:99:01:ff:b4:31:b4:9e:48:52:5f:fb:c3:d6:db:12:d7:
12:19:78:76:26:80:12:41:d0:7c:ec:a6:1c:7d:87:e1:b5:d2:
56:57:b7:07:f5:eb:f6:fd:81:d9:4c:ea:99:ff:df:56:5a:ce:
33:3c:30:2f:6d:e0:e5:42:2f:5d:28:0d:74:28:1f:96:a4:d6:
20:14:b7:d3:a1:f4:19:14:9d:47:f0:27:20:9e:a7:5e:4e:0a:
da:fa:b1:82:43:33:65:db:02:8e:7c:f4:79:a5:bd:a0:65:26:
5e:88:2e:d5:ab:e5:e6:62:e5:f3:07:b1:25:bc:4b:4f:a9:38:
ba:3b:37:9b:35:17:7d:bc:9e:10:8a:21:eb:10:80:32:f4:57:
06:97:a4:e9:e8:5a:41:60:a8:e3:78:86:18:e3:cd:60:08:62:
c7:41:bd:7b:c5:97:81:98:ed:23:5b:49:c0:52:87:b7:88:e9:
ea:76:42:76:e2:4b:60:50:de:a5:d3:34:d1:a2:32:43:0b:5c:
1c:0c:56:b2:78:d1:03:a7:4d:fc:9e:f7:f9:21:8a:d9:8f:80:
fd:68:fa:a0:b2:e5:e8:a8:aa:0b:24:73:0f:70:52:2a:64:a6:
73:4b:e1:61:4c:94:51:fa:bc:b2:d4:ad:ad:a8:a7:6e:1e:7f:
ac:c1:c1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:30 2023 by rpki-client on console-ams.rpki-client.org