Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/MshgVsnpGLZk7g8jpGvhNOeU8-k.roa
File: MshgVsnpGLZk7g8jpGvhNOeU8-k.roa (raw, json)
Hash identifier: MYHVvmRkxz/nRU6n7mo6jmBC6VAsil1ZCIp3rzXTA5E=
Subject key identifier: 32:C8:60:56:C9:E9:18:B6:64:EE:0F:23:A4:6B:E1:34:E7:94:F3:E9
Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3
Certificate serial: 06E9572D
Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/MshgVsnpGLZk7g8jpGvhNOeU8-k.roa
Signing time: Sat 01 Jan 2022 14:05:45 +0000
ROA not before: Sat 01 Jan 2022 14:05:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a0f:6040::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115955501 (0x6e9572d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3
Validity
Not Before: Jan 1 14:05:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32c86056c9e918b664ee0f23a46be134e794f3e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1e:f2:37:b7:33:78:e6:6a:e1:2a:e8:e8:e2:
25:32:9b:c5:70:a5:46:06:a4:e6:82:9d:02:e2:b9:
e4:0e:bb:8f:ba:38:77:37:66:c9:82:b4:28:4b:33:
36:9b:9a:d1:07:7e:0c:42:be:6e:ca:6c:0b:5b:fd:
25:b0:39:53:f3:c7:7e:62:c9:58:62:c2:4d:92:05:
71:49:10:1a:ca:da:4a:83:fa:97:31:4a:87:83:07:
fc:0d:6b:2f:97:f6:1e:a4:50:de:50:f9:0d:f8:1a:
2e:52:cf:55:d9:06:7c:13:c4:80:bf:3c:21:cc:38:
f5:bc:28:c0:23:b3:1e:e2:93:38:9f:38:4f:78:31:
6a:b1:5f:e1:27:c5:45:dd:c2:f9:d9:21:66:1e:1c:
49:0a:0d:85:f7:c6:13:09:4e:46:ac:ad:fc:50:82:
9d:56:5a:88:80:69:2e:8c:e8:03:33:ce:25:90:b4:
0f:32:47:d9:2a:d1:c1:3e:9d:df:58:cd:88:55:2a:
93:59:ad:5f:c8:d3:b2:10:db:4f:f0:0d:bb:8d:17:
9d:64:54:2e:d2:a4:ed:3f:8e:3b:e9:26:42:94:fe:
e1:82:d5:fd:4c:3f:f9:24:53:26:7f:bb:26:41:1e:
3f:ed:03:87:ec:84:6b:45:98:58:ac:4a:e9:a2:3d:
71:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C8:60:56:C9:E9:18:B6:64:EE:0F:23:A4:6B:E1:34:E7:94:F3:E9
X509v3 Authority Key Identifier:
keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/MshgVsnpGLZk7g8jpGvhNOeU8-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6040::/29
Signature Algorithm: sha256WithRSAEncryption
8d:3a:ea:97:be:9d:2e:4e:59:aa:02:d3:a3:32:63:41:3b:10:
eb:88:4d:cb:a8:28:4c:1c:5f:94:af:81:50:e7:fb:47:b0:ce:
31:36:e9:4f:e6:12:a8:f4:8b:7d:45:6d:27:b4:75:17:9f:46:
76:b2:b0:fe:71:6e:b8:78:ec:d4:11:57:7c:16:4b:b0:93:a8:
a1:76:c5:57:cd:9c:c2:2e:83:a5:0e:e4:0f:4b:19:b6:50:4b:
c8:9a:14:3f:cc:9a:52:c5:b6:0e:24:16:94:ad:3e:21:b5:e6:
4a:87:b6:e2:02:5c:35:61:52:df:a0:8e:61:cc:dd:a2:5b:f3:
c9:9d:e4:4f:6b:84:fe:0e:5b:a4:cf:41:2e:e9:7e:01:26:db:
be:49:d7:28:e5:04:56:6d:35:d2:19:de:38:70:a7:12:58:0a:
36:8f:d4:7b:ae:b8:aa:14:09:4e:2d:05:c6:43:6a:a5:29:f5:
15:f4:f9:e0:d4:43:e2:45:c4:b9:89:1c:66:14:a7:29:9e:68:
d5:39:e7:46:bd:7a:54:6e:45:9d:cc:a4:8b:94:2d:96:36:4b:
92:cb:b9:33:a8:7b:28:d6:52:3d:ca:19:f8:6e:41:1d:94:6e:
51:4f:74:0f:58:9b:44:7d:be:49:93:bc:ca:84:5e:93:48:b1:
71:d9:37:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:25 2024 by rpki-client on console-ams.rpki-client.org