Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/m_R-ES58udAIBk37w8N8-PVx6NM.roa
File: m_R-ES58udAIBk37w8N8-PVx6NM.roa (raw, json)
Hash identifier: l8xW8gXWxNmddbc5l5NkyWYcIdICIr09RLAh5Yoxi74=
Subject key identifier: 9B:F4:7E:11:2E:7C:B9:D0:08:06:4D:FB:C3:C3:7C:F8:F5:71:E8:D3
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09733BB3
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/m_R-ES58udAIBk37w8N8-PVx6NM.roa
Signing time: Sat 01 Jan 2022 09:04:01 +0000
ROA not before: Sat 01 Jan 2022 09:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209300
IP address blocks: 2a0e:aa06:490::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158546867 (0x9733bb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bf47e112e7cb9d008064dfbc3c37cf8f571e8d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:64:6b:52:46:e8:e4:6f:1e:4e:44:1e:8d:84:
af:18:e0:de:bc:d3:56:b6:e0:f3:3c:a8:c9:a8:fd:
ad:df:d1:a6:f7:8a:69:39:77:3f:a6:58:a1:ca:66:
9b:46:f6:3a:86:c9:bd:0c:1e:a5:68:db:3e:45:f0:
6c:1f:09:dc:fc:df:11:b5:9e:7b:89:12:bc:ef:47:
67:cd:ae:b0:f6:cb:b7:a0:cc:c6:e5:4a:76:92:df:
73:16:cd:5e:6d:51:85:a1:1a:2a:af:0f:85:e8:78:
89:44:1b:e8:89:2f:17:95:9d:3a:60:2d:56:8d:95:
70:6b:4e:c6:dd:eb:d8:d5:84:22:83:89:4f:02:87:
7a:11:9d:87:64:c3:da:51:2a:51:92:6a:63:52:13:
d7:08:04:70:8a:73:e0:be:ed:b3:4f:09:33:bf:a2:
f7:dc:e6:d9:f0:0c:bf:10:e2:30:7e:1c:8c:c7:86:
ac:8a:68:e9:45:30:9f:6a:2c:8d:73:93:d3:c1:01:
d6:0c:5a:35:18:79:d3:80:ce:71:90:aa:32:0a:03:
61:59:38:a5:84:bf:f1:c6:40:9b:93:b2:6d:40:33:
4b:ac:f8:3e:77:41:25:b6:a2:5b:76:1f:b6:92:a8:
e9:e0:b3:ab:4a:a9:49:07:83:f2:85:88:fb:39:ed:
ed:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F4:7E:11:2E:7C:B9:D0:08:06:4D:FB:C3:C3:7C:F8:F5:71:E8:D3
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/m_R-ES58udAIBk37w8N8-PVx6NM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa06:490::/44
Signature Algorithm: sha256WithRSAEncryption
b4:66:bb:08:b2:cb:23:7d:b2:ca:28:48:f3:39:70:84:79:5e:
8d:e0:10:9c:d5:8d:c2:9f:e6:5f:83:dc:f9:9f:14:8b:f8:4f:
31:14:31:77:ff:ef:ea:6c:03:48:81:42:07:f8:d6:8b:57:03:
7c:08:00:4e:af:40:5c:ae:f5:43:cd:98:99:f6:7c:80:fb:90:
53:60:47:24:ed:bb:3f:e0:1e:6a:f5:c8:19:9b:52:e0:d9:64:
d1:3f:1b:1c:63:35:f6:e8:f7:cb:01:b2:ef:9d:5d:fd:83:e1:
f7:4d:8f:6b:31:00:c1:7f:61:a8:27:3e:b1:72:c7:35:a0:52:
03:6c:6f:47:cf:0d:e1:32:ba:06:d7:46:4d:bd:38:28:cd:10:
3d:48:5a:1b:19:fc:c5:18:86:e5:31:ef:0d:21:3b:ed:58:16:
f3:fb:bd:43:e9:b5:74:60:e7:fc:fa:93:4e:b4:2a:40:c0:c8:
f7:c0:90:c5:43:3b:73:05:ce:24:c5:e3:3a:a0:10:c1:9d:a3:
3b:0e:eb:0d:82:f3:79:2c:ae:c3:6e:78:b6:be:08:d9:2b:77:
60:2e:14:72:ec:36:f1:ce:a1:3b:83:e8:ca:22:dd:a3:5e:df:
02:e9:66:5d:c8:ed:6b:96:8d:5f:03:cc:e5:a5:ef:ee:47:e6:
b8:d8:fc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org