Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/isZ7TT4h3ih7KbCWlaMP-TH9n5Y.roa
File: isZ7TT4h3ih7KbCWlaMP-TH9n5Y.roa (raw, json)
Hash identifier: eTDiULD/2/uTtgHtToX9DDZlKi8Oq8y+CIVIzjGUhOo=
Subject key identifier: 8A:C6:7B:4D:3E:21:DE:28:7B:29:B0:96:95:A3:0F:F9:31:FD:9F:96
Certificate issuer: /CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Certificate serial: 15BB380B
Authority key identifier: 31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/isZ7TT4h3ih7KbCWlaMP-TH9n5Y.roa
Signing time: Sat 01 Jan 2022 11:56:29 +0000
ROA not before: Sat 01 Jan 2022 11:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199813
IP address blocks: 2a03:9180:2::/47 maxlen: 47
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364591115 (0x15bb380b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Validity
Not Before: Jan 1 11:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ac67b4d3e21de287b29b09695a30ff931fd9f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5a:4d:bc:03:ee:e2:33:c7:91:49:93:cc:6f:
ac:e7:45:3d:d1:c1:a2:4c:af:96:2b:e7:22:26:10:
36:a0:2b:85:1a:64:42:cb:d5:36:a0:3c:87:c6:ef:
ce:cc:a9:2e:20:b9:85:df:05:88:f3:8b:ad:20:15:
55:6b:ce:14:47:2c:5f:3d:71:b2:42:2d:63:36:c7:
67:04:ec:27:bf:a7:47:e0:43:67:b5:a3:bc:68:cd:
e4:3b:e1:1c:2a:b1:e5:c8:53:45:ac:40:5a:e6:fc:
91:77:1a:58:ef:af:0e:59:5c:1f:7a:f4:21:69:81:
3a:86:3f:16:9b:ba:a4:be:57:79:d8:a9:a8:24:17:
c1:30:0c:3a:79:10:ef:00:ee:8d:3e:e4:50:6e:73:
f6:a3:b8:e7:2c:65:65:48:65:0a:36:e2:21:6e:78:
1d:6d:c4:b4:22:5a:26:04:99:49:45:02:73:1a:cf:
ad:52:d0:09:31:fa:89:71:95:78:6b:34:f4:ca:3a:
d0:57:a3:2d:e6:bc:23:46:4d:7a:dc:05:32:5e:27:
14:a0:ba:4d:94:3c:e8:c0:9b:88:13:12:81:3e:5a:
66:57:d6:56:67:c5:4a:3f:73:4b:25:19:a2:75:ca:
90:66:39:f8:1e:82:8d:08:f9:52:dd:78:f9:32:ca:
49:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C6:7B:4D:3E:21:DE:28:7B:29:B0:96:95:A3:0F:F9:31:FD:9F:96
X509v3 Authority Key Identifier:
keyid:31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/isZ7TT4h3ih7KbCWlaMP-TH9n5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/MR1it_2fz8h9_qmHUVdnyDjiG7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:9180:2::/47
Signature Algorithm: sha256WithRSAEncryption
56:fb:9d:77:d9:86:b1:2b:10:17:b7:5b:b8:76:3f:09:63:fe:
af:57:17:a7:c6:dd:86:b0:11:86:72:7d:60:ae:d6:1f:d8:e7:
93:62:5a:5a:f0:46:f0:b6:80:91:4c:61:21:e1:85:c6:8d:e7:
d7:81:4c:25:14:e4:c5:5e:1a:56:14:ab:71:76:04:49:52:60:
59:48:2f:19:f1:17:59:71:29:e2:15:ba:35:ea:de:05:a4:95:
28:92:45:e7:af:05:18:cd:e6:ea:e8:9e:3a:61:df:0d:68:0f:
13:3f:96:8b:22:e4:fa:ab:90:ff:68:2b:52:75:c9:aa:de:d8:
a8:11:c2:1d:38:75:36:ad:5c:57:12:2e:7f:bf:aa:07:bf:cf:
19:39:7c:ef:f4:8c:3e:ae:84:23:1c:42:1a:7f:24:74:c7:39:
b0:2c:6d:b7:df:00:18:f0:71:95:bf:36:c2:68:a3:86:21:d6:
7e:48:11:9a:11:d8:e9:8f:6b:e4:14:5d:1d:36:2e:f3:11:d0:
1f:da:5d:ae:d3:fc:23:af:9b:ad:1f:b3:45:bb:b0:62:f7:38:
6b:2b:7f:7c:bd:0c:c9:fa:b7:37:01:f0:38:fc:37:30:9a:78:
f4:2b:4f:72:5b:e1:8a:66:ef:b5:c3:5b:7c:55:1b:53:28:c4:
aa:3b:0e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:37 2024 by rpki-client on console-fra.rpki-client.org