Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c5e557-8be5-4f39-9565-d99e086846b7/1/nM9UPTESqh7jIOpmQt-N-3Z5Gro.roa
File: nM9UPTESqh7jIOpmQt-N-3Z5Gro.roa (raw, json)
Hash identifier: wA6yDc9zfphHDe5hReG6iyVlMFyB/DVj+WMJSaf5EcA=
Subject key identifier: 9C:CF:54:3D:31:12:AA:1E:E3:20:EA:66:42:DF:8D:FB:76:79:1A:BA
Certificate issuer: /CN=1b6de3c1b0c79ffb27822e0947fdc38e51fcc5ca
Certificate serial: 01CD86F1
Authority key identifier: 1B:6D:E3:C1:B0:C7:9F:FB:27:82:2E:09:47:FD:C3:8E:51:FC:C5:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G23jwbDHn_sngi4JR_3DjlH8xco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c5e557-8be5-4f39-9565-d99e086846b7/1/nM9UPTESqh7jIOpmQt-N-3Z5Gro.roa
Signing time: Sat 01 Jan 2022 07:55:28 +0000
ROA not before: Sat 01 Jan 2022 07:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50169
IP address blocks: 2001:678:280::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30246641 (0x1cd86f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6de3c1b0c79ffb27822e0947fdc38e51fcc5ca
Validity
Not Before: Jan 1 07:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ccf543d3112aa1ee320ea6642df8dfb76791aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b6:3d:5d:6d:3c:32:a6:b4:d1:e6:00:75:a2:
94:e0:1b:19:08:1e:97:e1:76:e5:3c:ab:34:fc:bf:
84:46:03:aa:d6:be:35:b5:72:af:ee:a7:30:de:bb:
ff:36:49:32:37:e4:c5:2e:a2:bf:11:a5:3b:df:b7:
36:2f:d0:74:cb:87:b7:21:2b:52:33:77:d3:3c:d4:
44:6c:35:29:ab:e4:41:6d:d7:35:62:d0:03:b1:78:
06:eb:56:2c:75:10:dd:79:28:a2:6f:00:54:05:8d:
40:cd:89:54:94:78:4d:30:f5:66:19:53:ab:8a:1d:
83:c2:c5:60:75:8e:a8:a0:c7:74:12:15:12:e8:ad:
ee:4e:ec:8f:2a:64:37:5f:38:d7:54:71:38:2d:6f:
55:c2:38:61:03:71:80:4c:f1:58:85:70:bc:93:23:
b4:bd:64:09:76:27:1e:1a:8b:22:2a:a9:01:a2:da:
d6:cf:a8:58:4f:89:a3:ae:6b:63:01:45:6d:6c:c8:
51:f2:c1:fe:60:76:7c:da:c6:dd:56:31:ca:51:e4:
39:a3:2d:28:dc:88:73:a0:1f:7f:fd:35:d3:61:f9:
0b:30:3e:8e:f2:66:8d:91:17:0f:34:e4:64:7c:5b:
fa:e1:7c:8c:a0:4b:09:0c:16:9e:25:46:a9:07:93:
57:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CF:54:3D:31:12:AA:1E:E3:20:EA:66:42:DF:8D:FB:76:79:1A:BA
X509v3 Authority Key Identifier:
keyid:1B:6D:E3:C1:B0:C7:9F:FB:27:82:2E:09:47:FD:C3:8E:51:FC:C5:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G23jwbDHn_sngi4JR_3DjlH8xco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c5e557-8be5-4f39-9565-d99e086846b7/1/nM9UPTESqh7jIOpmQt-N-3Z5Gro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c5e557-8be5-4f39-9565-d99e086846b7/1/G23jwbDHn_sngi4JR_3DjlH8xco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:280::/48
Signature Algorithm: sha256WithRSAEncryption
65:77:d3:f0:38:ef:4b:33:ad:1c:26:46:48:72:2c:be:f0:05:
87:74:6d:66:14:d3:18:f9:0f:c2:7d:0c:88:ad:c7:55:f7:41:
98:4a:2e:ec:e4:38:25:6d:03:c6:04:73:30:4a:dd:8c:c0:72:
55:7b:72:47:ca:15:82:73:cb:66:02:d5:ea:ba:94:46:b7:0a:
28:47:1e:2a:62:07:65:3f:59:48:22:13:fc:d1:32:4b:95:bc:
95:63:f9:47:a7:de:fc:75:ac:24:33:1e:f3:bf:e4:d0:80:c4:
2e:a3:be:88:1c:7b:22:dc:c3:84:e9:c6:0f:04:5c:c6:80:29:
9c:ee:59:e6:15:2e:31:ca:24:da:c2:18:a9:52:d6:2d:cc:82:
6f:02:0b:02:36:60:95:9b:0e:dd:8b:06:35:18:52:6d:e7:37:
85:69:96:c8:17:f4:81:78:cd:28:a2:96:81:9f:bc:f1:c9:12:
ff:59:22:6f:60:f0:ae:20:ac:80:cc:5c:0d:b6:0c:49:b9:af:
5c:fa:ed:e6:44:c3:1b:80:0e:ad:13:c5:fb:36:f0:8e:37:d2:
99:67:b0:64:ff:81:a3:a4:a2:43:88:7d:55:dd:35:ad:62:87:
28:9b:4c:ca:9d:e8:79:12:fb:54:2f:5e:a2:4b:f7:ed:06:94:
a9:fa:1d:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:27 2023 by rpki-client on console-fra.rpki-client.org