Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NMSPfu8y5S_NXehFwuhvaz8sHX4.roa
File: NMSPfu8y5S_NXehFwuhvaz8sHX4.roa (raw, json)
Hash identifier: t0TqXtNdt3DOujxdhIpMa4ICkvP3uA2zQfKPSqePyAU=
Subject key identifier: 34:C4:8F:7E:EF:32:E5:2F:CD:5D:E8:45:C2:E8:6F:6B:3F:2C:1D:7E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018313F370A2953C712E1AF30EAD909082A9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NMSPfu8y5S_NXehFwuhvaz8sHX4.roa
Signing time: Tue 06 Sep 2022 17:57:44 +0000
ROA not before: Tue 06 Sep 2022 17:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202976
IP address blocks: 2a0e:97c0:4f0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:13:f3:70:a2:95:3c:71:2e:1a:f3:0e:ad:90:90:82:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 6 17:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34c48f7eef32e52fcd5de845c2e86f6b3f2c1d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:71:2d:7b:2f:b1:67:4c:97:94:c5:95:26:b0:
8e:21:8e:39:36:9b:b7:e2:56:43:61:bc:df:f1:c5:
87:5a:51:89:d9:ae:81:ca:b1:f7:a7:9e:78:35:a0:
1b:f7:7a:01:b1:b5:4b:e3:26:ee:05:d3:82:f8:87:
44:4a:46:89:0c:22:39:21:f3:89:d2:7d:e1:fa:92:
67:1d:9e:c5:72:49:3d:af:08:c9:4f:c9:f5:95:3f:
e3:d6:04:22:44:54:b6:1c:29:d0:18:87:e6:8a:82:
ae:48:26:95:30:f2:8a:a7:af:cf:5b:e5:da:b8:5e:
b0:8e:09:4d:91:c3:0b:d5:43:94:3c:b4:68:b9:59:
96:5c:65:f5:35:f0:36:89:3d:e6:02:60:2f:c6:7c:
84:3a:96:cf:50:e0:a7:45:d5:fc:8d:62:92:78:d4:
cd:17:40:57:f9:72:aa:ab:d8:31:b6:d8:84:97:76:
6f:4c:d7:5d:45:cf:3e:a6:da:79:c7:ef:5c:10:4c:
ee:08:af:c0:4b:3d:48:9c:23:91:ec:b5:fc:8f:1a:
9c:d8:b0:b5:fb:a2:50:51:71:db:ca:84:d1:64:8a:
28:07:21:eb:0e:bf:72:24:d4:2f:0c:e1:38:78:55:
c9:55:e7:c0:6f:ef:9a:1c:1b:14:05:8f:cf:78:b7:
59:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C4:8F:7E:EF:32:E5:2F:CD:5D:E8:45:C2:E8:6F:6B:3F:2C:1D:7E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NMSPfu8y5S_NXehFwuhvaz8sHX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:4f0::/44
Signature Algorithm: sha256WithRSAEncryption
80:2c:8b:92:db:e3:0a:e1:e0:e0:57:5d:0f:27:0e:d2:1b:d8:
c9:82:08:1c:94:0d:56:b1:51:df:ee:64:3a:a8:53:37:b5:79:
18:85:88:1a:e2:d7:f6:82:ad:7e:ae:08:e2:7a:02:7b:da:68:
05:07:0d:17:f6:c6:91:5c:2b:77:b2:a6:5d:16:73:5c:80:d9:
60:a2:0f:14:a6:93:c0:63:d4:a8:56:c6:22:04:cc:e3:3f:5a:
60:5e:23:94:e2:9f:27:ea:ac:24:52:54:ee:70:62:5a:c5:a2:
8c:49:ad:4b:9b:3f:2a:de:22:94:ee:f8:13:6c:e2:d0:cc:b1:
04:00:ed:04:4c:4b:fa:68:92:c0:71:1c:5c:ea:02:b9:28:96:
c7:72:80:c6:07:a7:2a:d1:57:b6:60:ca:dc:08:d2:b5:d1:6b:
4b:3a:c0:dd:0e:f9:01:d1:6e:f7:6f:4d:05:96:e6:b2:45:46:
2c:23:41:33:a4:99:bc:2a:12:e4:f4:ae:7d:c1:a4:6f:0e:be:
f8:86:cd:c2:5f:af:6b:17:2d:1a:c4:b9:fb:e8:28:89:cf:98:
82:bf:fa:8a:22:49:01:ca:14:fb:db:ba:6b:24:83:ef:1a:07:
f0:8d:94:27:2f:9d:9c:94:e6:25:00:07:c1:62:97:b6:be:03:
7b:ce:39:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org