Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/McUqy1NjCLUzZS7hRo4IB62xyC4.roa
File: McUqy1NjCLUzZS7hRo4IB62xyC4.roa (raw, json)
Hash identifier: Zr8DAME5+i5AvC2RDAqQuvNPNUatZThvP3EXOlUrPpI=
Subject key identifier: 31:C5:2A:CB:53:63:08:B5:33:65:2E:E1:46:8E:08:07:AD:B1:C8:2E
Certificate issuer: /CN=234b54b119a7b3eff153085b7315507cd8513a0f
Certificate serial: 01A943
Authority key identifier: 23:4B:54:B1:19:A7:B3:EF:F1:53:08:5B:73:15:50:7C:D8:51:3A:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0tUsRmns-_xUwhbcxVQfNhROg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/McUqy1NjCLUzZS7hRo4IB62xyC4.roa
Signing time: Fri 01 Jul 2022 18:34:25 +0000
ROA not before: Fri 01 Jul 2022 18:34:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206499
IP address blocks: 2a04:5b81:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108867 (0x1a943)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234b54b119a7b3eff153085b7315507cd8513a0f
Validity
Not Before: Jul 1 18:34:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31c52acb536308b533652ee1468e0807adb1c82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:27:79:b7:81:d7:08:e6:c4:45:70:11:7b:
d9:fd:8a:1d:67:51:30:b0:77:f5:7e:e0:10:d3:c3:
7f:f8:ac:b0:22:17:72:55:23:3d:2a:56:8f:3a:93:
b7:16:84:6d:40:18:e5:b9:42:02:4a:79:36:4d:14:
24:ae:45:a1:1e:bd:0a:4b:d6:64:e0:bc:ed:30:da:
d5:65:20:05:07:c6:fa:b4:b7:e2:55:58:10:f7:fb:
0b:4a:96:4e:17:a1:01:ac:2c:67:85:8c:1b:91:a4:
64:95:56:4a:e9:63:59:a6:33:71:a6:cb:48:35:c1:
87:88:d1:2b:1c:f7:a8:46:fe:3a:56:59:ce:59:8b:
f4:0d:94:c1:5c:11:21:d4:24:91:2d:7a:de:b9:7e:
c5:ef:c2:81:fd:74:61:20:98:2b:da:03:aa:b0:d7:
7a:fa:3c:8b:ce:7e:2a:cd:e0:e8:9f:24:66:f1:b9:
23:57:68:f4:65:f1:25:55:db:f9:05:5d:22:35:14:
ff:b0:c5:77:ad:44:c8:4b:9a:3f:87:80:5c:73:e6:
79:77:fd:de:bc:98:31:40:aa:ed:6c:cc:96:6a:75:
34:4e:52:60:e5:ce:d2:38:fa:a0:ff:de:3a:24:0a:
0a:d1:d3:70:33:bd:d7:33:0c:fb:38:49:98:82:e3:
31:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C5:2A:CB:53:63:08:B5:33:65:2E:E1:46:8E:08:07:AD:B1:C8:2E
X509v3 Authority Key Identifier:
keyid:23:4B:54:B1:19:A7:B3:EF:F1:53:08:5B:73:15:50:7C:D8:51:3A:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0tUsRmns-_xUwhbcxVQfNhROg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/McUqy1NjCLUzZS7hRo4IB62xyC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/I0tUsRmns-_xUwhbcxVQfNhROg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5b81:2000::/48
Signature Algorithm: sha256WithRSAEncryption
37:8c:6a:cc:ff:1c:56:a8:73:e1:be:90:d2:3a:62:fc:8f:3f:
fc:4d:18:1d:29:4f:d9:02:cd:2d:6c:af:36:78:79:ef:c9:9a:
49:82:ea:a5:c3:16:e8:38:41:c8:65:b7:17:e7:39:7f:36:88:
52:57:3c:be:a2:bf:1e:11:ed:ab:7e:42:fa:f9:12:b3:90:d9:
de:ad:5e:18:84:8a:d9:93:ea:04:9b:61:15:38:af:71:52:6c:
44:03:93:ae:44:ba:54:b4:d7:90:b6:f5:6c:85:5c:86:9b:9e:
cf:dc:29:28:3d:9c:38:00:b0:3f:74:fa:fd:70:ae:92:41:76:
b7:a9:b2:a5:6b:5a:8e:71:d7:b4:db:94:b9:2b:12:8b:11:be:
81:64:9c:95:1e:7f:15:40:6d:e0:7b:35:c2:49:a2:ba:e4:a9:
a7:09:43:76:27:94:1a:b6:e7:2b:85:49:fc:dd:9f:d1:8d:d0:
24:be:1b:7a:ef:74:e5:2b:9d:58:5d:3a:06:91:a3:c3:04:af:
38:7d:06:6d:90:fd:83:4e:36:09:ec:01:40:37:15:ba:f4:26:
14:e0:48:0c:08:20:61:90:eb:a5:62:c6:cf:a1:be:2f:38:ee:
b6:d8:cc:b5:d0:5e:fb:6e:21:36:cb:f8:80:ea:43:21:88:e5:
6f:9c:99:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:26 2023 by rpki-client on console-fra.rpki-client.org