Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/565aed-610a-44ab-91c8-7dd5ed0e70d6/1/mfwC5DsUr52GfzhX8rX3vvkJnKg.roa
File: mfwC5DsUr52GfzhX8rX3vvkJnKg.roa (raw, json)
Hash identifier: kbjugh/AiIWiuSv6aAj6GuH4jEwNfjI9av/tmRwkNTM=
Subject key identifier: 99:FC:02:E4:3B:14:AF:9D:86:7F:38:57:F2:B5:F7:BE:F9:09:9C:A8
Certificate issuer: /CN=947e4676545658de09aa778f8b00e9a4fda0d00f
Certificate serial: 018486AD2C08316ECA56C5BB8E3495250460
Authority key identifier: 94:7E:46:76:54:56:58:DE:09:AA:77:8F:8B:00:E9:A4:FD:A0:D0:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lH5GdlRWWN4JqnePiwDppP2g0A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/565aed-610a-44ab-91c8-7dd5ed0e70d6/1/mfwC5DsUr52GfzhX8rX3vvkJnKg.roa
Signing time: Thu 17 Nov 2022 17:40:06 +0000
ROA not before: Thu 17 Nov 2022 17:40:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:7880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:ad:2c:08:31:6e:ca:56:c5:bb:8e:34:95:25:04:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947e4676545658de09aa778f8b00e9a4fda0d00f
Validity
Not Before: Nov 17 17:40:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99fc02e43b14af9d867f3857f2b5f7bef9099ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bc:e6:a4:af:c4:8a:56:7a:45:61:a8:75:93:
68:2c:5f:00:54:a8:7a:2e:c6:35:fd:86:c4:e5:7c:
65:4f:5b:06:0c:c7:57:c9:20:40:e7:40:40:ff:a5:
2c:5a:00:75:7d:c1:ea:30:3a:95:c0:7e:77:55:f4:
f1:a3:cb:62:82:12:27:be:13:7a:c9:16:3e:2a:0f:
01:74:9e:d3:65:ab:9a:f3:25:20:2e:96:1b:ed:e2:
4d:a7:0c:1b:66:c6:37:20:25:10:3a:a8:e3:27:ee:
bc:a2:ea:24:e6:af:2f:ce:15:0a:91:01:99:7d:79:
ef:ae:ce:46:b1:21:ea:fb:29:78:a1:6d:42:08:d9:
8e:98:02:60:31:c0:da:3a:88:e4:f7:f9:d9:b4:68:
ab:d5:07:57:37:8f:b2:65:eb:8b:c7:d2:73:0a:a5:
58:e2:9e:06:ff:27:b7:ab:74:5f:2b:18:e2:bd:be:
b0:28:49:98:56:e3:16:7e:f0:37:09:8f:90:74:d3:
72:d5:72:0a:9b:de:69:b2:3e:0d:45:e9:e4:a9:4d:
bb:5d:13:35:98:78:21:39:da:77:af:87:7f:39:3e:
fc:ba:30:98:f2:72:66:c7:90:19:de:2c:fc:56:8b:
09:8a:cf:58:08:53:83:aa:36:d5:a1:6b:88:31:49:
a6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FC:02:E4:3B:14:AF:9D:86:7F:38:57:F2:B5:F7:BE:F9:09:9C:A8
X509v3 Authority Key Identifier:
keyid:94:7E:46:76:54:56:58:DE:09:AA:77:8F:8B:00:E9:A4:FD:A0:D0:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lH5GdlRWWN4JqnePiwDppP2g0A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/565aed-610a-44ab-91c8-7dd5ed0e70d6/1/mfwC5DsUr52GfzhX8rX3vvkJnKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/565aed-610a-44ab-91c8-7dd5ed0e70d6/1/lH5GdlRWWN4JqnePiwDppP2g0A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:7880::/29
Signature Algorithm: sha256WithRSAEncryption
89:32:3c:fd:2b:97:ed:47:d2:0a:8d:6c:c2:0b:30:63:a3:d2:
de:07:93:3e:70:01:60:5f:85:f7:b6:37:0b:c2:da:32:55:7f:
c7:0c:4b:bd:43:8b:3c:48:59:d1:ee:e8:d2:04:78:d1:1f:d4:
ea:6e:81:a3:e1:cf:d9:5a:27:04:73:8f:bd:46:3d:3a:a7:57:
29:ea:00:a9:fd:5f:77:f2:45:e2:27:9c:ca:fa:9e:93:b2:eb:
66:6c:97:36:c0:76:86:1e:55:5d:f1:e0:ea:0d:72:df:d8:b1:
e1:e0:dc:b6:41:fb:88:8c:4f:1c:7b:e2:33:5a:5d:2a:3a:a2:
00:3d:e5:c1:d6:95:6a:db:c4:f8:e2:a7:36:e5:6e:7a:f0:22:
6b:c2:17:ba:57:e3:18:f6:ad:fb:d2:bf:7b:21:b7:36:20:ca:
e0:e7:05:15:eb:4c:87:29:da:75:27:7e:b0:eb:3f:aa:4e:34:
f0:ac:b9:67:a8:23:09:95:80:65:59:f0:01:a2:b2:3a:f0:5c:
4e:59:0b:c1:99:a8:3d:90:c6:2b:c0:7a:e1:5d:1b:4d:99:7d:
5d:e3:2b:04:b7:c6:5f:5e:c7:3c:e4:0f:7b:17:a7:2f:40:98:
10:fa:b9:59:a5:b0:f1:3d:75:ff:da:08:b9:af:77:ca:d8:d6:
4a:da:40:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:31 2023 by rpki-client on console-fra.rpki-client.org