Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/jMvqW79qnIPpoxD3NeghUCoPk2M.roa
File: jMvqW79qnIPpoxD3NeghUCoPk2M.roa (raw, json)
Hash identifier: 9+xINF610/GxEGe5x9ZKvCpIp6MLkBxk50Y0OF/pg/A=
Subject key identifier: 8C:CB:EA:5B:BF:6A:9C:83:E9:A3:10:F7:35:E8:21:50:2A:0F:93:63
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 08FA4B33
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/jMvqW79qnIPpoxD3NeghUCoPk2M.roa
Signing time: Wed 30 Mar 2022 22:32:04 +0000
ROA not before: Wed 30 Mar 2022 22:32:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207846
IP address blocks: 2a0e:1cc0:9::/48 maxlen: 48
2a0e:1cc1:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150620979 (0x8fa4b33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Mar 30 22:32:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ccbea5bbf6a9c83e9a310f735e821502a0f9363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:1a:d7:49:ab:1b:c3:f2:e5:59:93:17:a2:ce:
41:71:19:78:6d:5c:e2:ea:4d:1e:d2:d9:ed:95:59:
1d:3a:aa:45:27:4d:41:23:a8:6f:6e:8d:02:83:10:
f4:a3:8f:b1:fc:46:f3:87:6d:c5:e5:c6:57:d4:d8:
d3:04:18:d9:4d:e6:91:f5:57:dc:49:92:f9:f8:40:
b7:84:5c:31:13:27:a9:93:d5:61:5d:e2:a7:13:75:
89:e1:1a:3b:27:68:f0:a0:24:c4:33:5a:5c:e4:ec:
d9:27:d7:47:a4:62:a0:d9:ab:27:d8:68:e1:82:fb:
b2:9b:87:a1:bb:44:79:6e:78:3b:dd:35:72:d7:03:
92:74:f5:eb:0a:fc:19:0b:a7:22:5a:9f:a6:63:85:
30:7a:82:21:20:ec:d8:ea:24:f4:6c:77:a8:35:4a:
66:96:62:e6:ec:38:36:2a:3f:d5:39:de:49:ef:e8:
ca:5a:74:df:03:54:00:5e:6a:20:f4:14:58:e4:97:
15:3b:ca:6a:35:4f:8a:6e:37:27:5a:06:d8:3c:4a:
f0:da:db:b3:22:6a:5b:22:e5:3d:15:e4:77:f5:1a:
ce:9d:db:4a:41:3c:6e:38:3d:4a:1b:56:a8:3c:48:
2f:49:48:06:c8:86:6e:d4:35:2b:7f:f5:65:d7:17:
b3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CB:EA:5B:BF:6A:9C:83:E9:A3:10:F7:35:E8:21:50:2A:0F:93:63
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/jMvqW79qnIPpoxD3NeghUCoPk2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1cc0:9::/48
2a0e:1cc1:100::/40
Signature Algorithm: sha256WithRSAEncryption
1c:37:79:44:1f:b5:a6:26:03:61:02:6d:63:e3:9d:79:44:dc:
d5:64:51:d9:6f:b3:a2:fb:5a:4b:03:e9:89:bb:82:2f:34:48:
e5:87:cd:63:8a:bc:aa:07:47:b2:ae:e6:64:d7:c1:5d:7e:02:
9a:05:2f:0f:56:19:39:ab:6e:b8:27:f2:63:ea:28:d1:38:5c:
e8:48:df:e5:28:f1:be:e7:2f:09:2a:84:dd:86:59:24:09:05:
a7:be:a9:2c:94:45:4a:d2:b6:59:98:57:de:ad:3e:f1:77:cb:
e6:c2:7e:84:bd:86:56:db:2f:48:99:21:33:a1:0a:e4:28:1e:
3d:08:02:70:0f:92:a5:75:49:ff:26:a6:d7:56:10:c7:c9:99:
88:6b:e0:4d:a4:fa:c1:fd:c7:3a:cd:3f:a6:54:f0:94:2d:39:
0e:7b:de:e5:f4:e0:68:5d:a2:ab:b1:e1:4a:ed:87:f8:ca:c9:
cc:08:5e:3a:32:1b:e9:81:69:d9:58:c9:dd:76:78:93:ed:ee:
8a:69:2f:e1:28:59:a9:f4:8f:ce:41:2a:51:0a:c3:8d:26:b4:
5d:5b:f3:02:bc:67:c6:5f:87:14:0c:63:41:7d:59:6b:05:bd:
96:b0:e0:c4:94:83:21:ec:7a:61:27:98:09:10:5c:eb:f3:a6:
db:f4:9a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org