Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mYHntsWD_lFGaemNssc9UzBeJsI.roa
File: mYHntsWD_lFGaemNssc9UzBeJsI.roa (raw, json)
Hash identifier: LSnUdFYYK6qnmFVgxwchygB2Jo98Y8OyEepSzy1lhcA=
Subject key identifier: 99:81:E7:B6:C5:83:FE:51:46:69:E9:8D:B2:C7:3D:53:30:5E:26:C2
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 097D7443
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mYHntsWD_lFGaemNssc9UzBeJsI.roa
Signing time: Sat 01 Jan 2022 09:04:07 +0000
ROA not before: Sat 01 Jan 2022 09:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210934
IP address blocks: 2a0e:aa07:e024::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159216707 (0x97d7443)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9981e7b6c583fe514669e98db2c73d53305e26c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:bb:15:41:6e:9b:f4:ae:6d:ac:9e:27:99:06:
c3:3d:a9:45:2c:f4:1e:f9:a4:14:1c:c6:2c:cd:4d:
0d:53:be:cf:24:be:6c:a8:e6:26:c8:47:a8:61:4d:
53:62:7c:61:a0:d4:67:09:b0:14:bc:a6:5b:03:d6:
90:c2:52:46:7d:bd:e9:28:9a:c7:28:56:52:48:ca:
e9:35:02:50:19:83:80:6e:f0:32:8c:3f:ac:c4:19:
03:52:96:3d:e2:0b:ed:53:27:f8:00:7c:af:3f:50:
d7:d5:51:26:5a:79:e6:5d:7e:8c:a6:f6:4e:22:7c:
8f:b7:a1:55:39:18:8d:1c:c2:0c:96:c6:16:30:f0:
dc:42:80:f2:97:a4:b1:96:5d:43:3e:71:ca:68:12:
23:3d:1c:37:d1:8c:04:c0:6a:e0:58:ad:a0:85:ba:
18:cf:83:27:db:34:dd:54:42:11:f8:40:c5:37:46:
4b:86:dd:ca:f6:ce:c7:3b:32:ba:28:32:ed:ea:59:
f8:4c:59:e0:2b:fc:52:cf:96:f2:92:fb:43:d3:6f:
0e:30:6d:96:ff:c6:75:21:81:c2:e1:19:fb:61:7f:
7d:6e:3c:07:3d:bc:4b:ac:25:c2:8e:8d:4b:4a:cf:
85:10:79:2d:87:6f:da:58:35:fc:e5:4b:27:19:c4:
25:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:81:E7:B6:C5:83:FE:51:46:69:E9:8D:B2:C7:3D:53:30:5E:26:C2
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mYHntsWD_lFGaemNssc9UzBeJsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e024::/48
Signature Algorithm: sha256WithRSAEncryption
ac:bb:66:e9:f4:ac:c1:03:ce:1a:7c:92:cb:a5:a6:19:05:6d:
98:48:76:8b:8d:ba:0c:ba:fa:9b:22:ee:72:ab:e9:97:98:52:
48:74:e8:66:a7:8b:d6:6c:82:56:db:33:a9:15:cd:1d:da:33:
86:f7:46:e7:99:d7:55:d0:5a:84:bb:73:88:b7:d5:09:fa:f0:
98:f4:84:5e:86:ed:bc:3e:7c:bd:c7:23:a2:95:c6:24:74:c1:
bd:18:78:50:2e:07:6b:00:ea:16:1d:be:e6:a2:17:e3:ab:0c:
4c:22:a8:b0:3b:81:08:71:ca:84:f6:e5:b7:84:da:91:4a:af:
42:68:33:a5:36:1f:b1:f8:e4:5a:7c:09:8d:2f:fc:46:b0:e8:
63:e1:9a:79:84:2d:12:3f:89:a5:91:ab:10:d4:6c:ba:30:e7:
c1:3a:5f:38:88:fd:f8:a5:28:09:5f:11:18:f1:b1:f2:a6:4b:
66:2a:a3:91:14:77:c0:ee:8a:e9:c5:0d:6b:f4:9f:48:a3:63:
d4:ab:f1:8b:a9:a6:db:3c:36:07:8a:39:f9:19:88:74:37:60:
de:0c:2c:f0:35:83:c3:f1:bc:b0:8c:a9:c1:3c:fb:a8:ae:70:
7e:fe:f1:1e:a9:81:de:44:e5:63:40:dd:dc:5b:bc:1b:8c:16:
b1:68:7e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org