Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/MTKGlFUnd63mFIQ-E0nfPD4LAmM.roa
File: MTKGlFUnd63mFIQ-E0nfPD4LAmM.roa (raw, json)
Hash identifier: SqDtjgNWRaJFxOQY15SUDcgFh/hwJ41mlxnxc6zfInk=
Subject key identifier: 31:32:86:94:55:27:77:AD:E6:14:84:3E:13:49:DF:3C:3E:0B:02:63
Certificate issuer: /CN=40f75d327761b90c0899638f430eb614c87c3106
Certificate serial: 0233F363
Authority key identifier: 40:F7:5D:32:77:61:B9:0C:08:99:63:8F:43:0E:B6:14:C8:7C:31:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPddMndhuQwImWOPQw62FMh8MQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/MTKGlFUnd63mFIQ-E0nfPD4LAmM.roa
Signing time: Sat 01 Jan 2022 09:59:45 +0000
ROA not before: Sat 01 Jan 2022 09:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2001:678:2cc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36959075 (0x233f363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40f75d327761b90c0899638f430eb614c87c3106
Validity
Not Before: Jan 1 09:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31328694552777ade614843e1349df3c3e0b0263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:73:4a:1f:9c:6e:b9:ba:8b:3b:bf:d2:e6:f1:
c6:d5:a6:03:c1:ef:d4:14:3f:a6:15:ac:65:37:61:
5e:a5:08:38:e8:8f:cc:5d:d6:af:cb:76:9f:41:7e:
9a:8c:a6:91:89:ee:ca:c1:90:4a:a6:c0:d5:37:2a:
5e:5b:94:83:65:18:14:03:91:82:12:35:04:33:01:
c4:d2:78:03:bc:30:5a:b1:32:a3:89:a9:93:09:1f:
84:39:4a:a7:93:4a:06:0c:19:8d:70:66:e0:38:6d:
e2:85:b5:ca:a0:10:c1:69:e9:74:37:3a:10:42:0a:
34:f4:0d:ba:25:fc:84:36:d4:fd:0d:32:af:a9:a6:
71:b8:1f:90:a7:ff:47:f8:0d:0d:3a:80:39:70:65:
54:d3:c3:9e:00:2a:85:95:e3:49:b7:a2:ce:2c:c4:
58:a2:f0:37:01:ae:71:db:98:e4:02:0d:22:07:0f:
5f:3a:e5:0d:f7:d1:a5:7d:06:46:aa:3d:29:41:7c:
af:07:32:8c:b5:6d:97:70:21:25:7d:2a:e2:33:63:
d9:1a:95:14:c7:72:fb:5e:fb:09:80:6d:cc:e8:0b:
45:fc:70:d9:0b:80:73:08:40:90:1d:e3:56:19:49:
64:08:52:30:a8:36:db:c1:f0:6b:34:9f:07:15:65:
dc:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:32:86:94:55:27:77:AD:E6:14:84:3E:13:49:DF:3C:3E:0B:02:63
X509v3 Authority Key Identifier:
keyid:40:F7:5D:32:77:61:B9:0C:08:99:63:8F:43:0E:B6:14:C8:7C:31:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPddMndhuQwImWOPQw62FMh8MQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/MTKGlFUnd63mFIQ-E0nfPD4LAmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/QPddMndhuQwImWOPQw62FMh8MQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:2cc::/48
Signature Algorithm: sha256WithRSAEncryption
9b:c4:7d:89:20:af:e3:20:04:3b:4e:56:78:56:0f:17:67:da:
cf:17:2d:0c:dd:ca:1d:65:93:2c:f4:54:46:df:3f:7d:a4:91:
c3:9b:ba:b2:5e:0e:88:d9:ee:fd:13:a7:8d:c1:e9:56:f8:ad:
43:f4:bc:4a:78:49:80:25:10:d8:53:fa:5a:10:76:43:86:52:
c4:f6:4d:0b:91:fe:bf:74:6d:0e:80:ce:0a:04:07:c5:93:1a:
28:50:12:ec:5e:a3:6b:cf:c9:64:bd:45:4a:fc:8e:a1:84:b6:
6f:01:59:01:d7:f5:68:99:d0:3c:67:af:9d:0e:b9:a5:fb:a3:
b3:aa:83:d6:f9:c6:9c:18:30:3d:b0:6e:34:0f:f6:09:af:86:
fb:3e:0e:d0:46:36:ec:b2:3f:f3:f3:be:41:dd:52:8e:f4:19:
d1:a3:75:b4:be:7a:70:fb:6f:3d:42:2a:c5:d9:2b:d2:72:8b:
e1:16:31:94:46:48:c8:64:47:02:27:5d:d1:c6:27:b3:88:a6:
6b:8a:ff:ae:e9:d2:c3:59:38:34:2a:df:ab:bb:4d:70:4a:dd:
7a:b0:26:33:8b:10:21:e8:ca:2d:dc:02:2a:66:19:30:aa:df:
c5:73:22:69:be:3f:f6:be:a6:33:5e:ec:9d:8a:e1:68:e1:d8:
7d:8e:70:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:50 2023 by rpki-client on console-ams.rpki-client.org