Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/mHbK-714FSeDmYWRqGF7PCOrs0M.roa
File: mHbK-714FSeDmYWRqGF7PCOrs0M.roa (raw, json)
Hash identifier: FB16XmAAK6LeenUk2tHrzImH/74DCTxkT2OPfo3+45Y=
Subject key identifier: 98:76:CA:FB:BD:78:15:27:83:99:85:91:A8:61:7B:3C:23:AB:B3:43
Certificate issuer: /CN=616014101ffbce675139cd4c02ba00634ad86e02
Certificate serial: 0B874F6D
Authority key identifier: 61:60:14:10:1F:FB:CE:67:51:39:CD:4C:02:BA:00:63:4A:D8:6E:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWAUEB_7zmdROc1MAroAY0rYbgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/mHbK-714FSeDmYWRqGF7PCOrs0M.roa
Signing time: Sat 01 Jan 2022 09:53:20 +0000
ROA not before: Sat 01 Jan 2022 09:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204896
IP address blocks: 2001:67c:17c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193417069 (0xb874f6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=616014101ffbce675139cd4c02ba00634ad86e02
Validity
Not Before: Jan 1 09:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9876cafbbd78152783998591a8617b3c23abb343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:76:02:8d:69:57:3a:bc:c2:69:0e:3b:b3:e7:
84:88:e2:5f:0a:7e:2f:05:45:8c:b2:e9:6f:c3:29:
2f:f8:8e:ea:86:9d:f5:b4:29:18:3a:9f:7c:61:2e:
df:99:15:d9:64:ef:b0:1a:cb:4b:b4:d7:39:a1:e2:
e4:55:65:23:b6:11:a3:f8:97:b4:ef:b3:3f:26:28:
38:0d:29:b6:c4:e9:39:20:f3:1e:64:77:60:fd:e9:
08:9d:c8:1c:2f:7f:40:a5:30:3e:6f:82:b9:a6:d2:
2a:0d:35:5d:77:c0:96:62:87:84:8b:82:bf:9c:13:
bc:13:de:9f:b0:59:54:77:aa:23:68:2f:f2:7d:be:
33:8d:0b:c0:4c:e1:64:ab:77:3a:8b:ee:08:bc:16:
e8:a7:48:f7:ca:23:4d:01:54:0f:2e:2c:08:ea:6c:
87:95:2c:58:4c:25:ec:14:ae:98:35:ab:34:93:c0:
75:82:a1:53:15:9c:ef:46:b1:3d:6e:53:3d:f1:df:
df:be:c9:b7:23:59:23:70:54:40:01:b2:93:df:31:
ed:23:1c:62:f5:64:0f:c4:27:b1:c6:fb:e2:25:1f:
8c:63:33:64:6f:6f:8b:28:83:20:41:95:4b:b3:7c:
f6:ea:00:d5:61:0e:5b:5d:95:00:29:39:b4:40:a9:
8d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:76:CA:FB:BD:78:15:27:83:99:85:91:A8:61:7B:3C:23:AB:B3:43
X509v3 Authority Key Identifier:
keyid:61:60:14:10:1F:FB:CE:67:51:39:CD:4C:02:BA:00:63:4A:D8:6E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWAUEB_7zmdROc1MAroAY0rYbgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/mHbK-714FSeDmYWRqGF7PCOrs0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/YWAUEB_7zmdROc1MAroAY0rYbgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17c0::/48
Signature Algorithm: sha256WithRSAEncryption
8f:dc:4e:21:92:e5:2a:d3:35:b2:1a:0d:4a:9c:f6:58:03:01:
d9:0e:b3:fb:2c:2c:4e:19:2d:e3:4b:a7:b5:a9:00:1a:25:2a:
24:1e:cb:1c:d6:1a:da:a8:ac:fe:a6:6c:36:39:82:dd:7e:6e:
9f:8b:16:c7:8a:22:e5:44:6d:e1:8d:c1:b8:c8:8c:d9:3b:1c:
b3:63:94:78:50:aa:70:9b:eb:14:d5:27:25:c6:9a:a2:a2:14:
2c:43:e7:44:15:fe:44:dd:be:37:49:09:8a:1e:24:c2:df:8e:
35:b8:95:e9:3b:a4:e7:b9:f0:0b:12:a3:00:1f:b7:74:27:13:
69:17:04:c4:8d:c6:a3:64:7b:fd:d5:7e:06:b5:4a:75:da:01:
ec:fb:27:2a:78:f9:de:5d:4d:6a:7a:cb:00:ad:79:04:ee:48:
b7:81:8c:9f:84:f3:07:2f:a8:ae:7d:9e:8d:a8:9f:42:32:99:
a5:b5:8c:80:04:9e:e8:78:5d:33:0f:eb:f8:74:e3:ce:bb:44:
d2:0d:57:50:99:10:e6:1d:60:43:5a:b3:d4:61:ac:00:b0:86:
52:f6:0e:7e:c4:a2:2d:39:16:b4:a8:46:9d:4e:ce:4d:b9:df:
d4:ae:b0:fa:8d:4c:e8:5a:25:79:81:b4:5e:13:46:d9:ee:9d:
50:a7:2d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:40 2025 by rpki-client