Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/NMijKlhaaXblkrVWke87YIpx49Y.roa
File: NMijKlhaaXblkrVWke87YIpx49Y.roa (raw, json)
Hash identifier: kOOYK9Us7nfNaj3CcfpSG1rTT1n/yXFrHsoKfef4PoM=
Subject key identifier: 34:C8:A3:2A:58:5A:69:76:E5:92:B5:56:91:EF:3B:60:8A:71:E3:D6
Certificate issuer: /CN=da1389de8483bd142d3fc7b3f7ca3e755d18c09c
Certificate serial: 09AEA056
Authority key identifier: DA:13:89:DE:84:83:BD:14:2D:3F:C7:B3:F7:CA:3E:75:5D:18:C0:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hOJ3oSDvRQtP8ez98o-dV0YwJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/NMijKlhaaXblkrVWke87YIpx49Y.roa
Signing time: Sat 01 Jan 2022 10:56:20 +0000
ROA not before: Sat 01 Jan 2022 10:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 2a09:2340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162439254 (0x9aea056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1389de8483bd142d3fc7b3f7ca3e755d18c09c
Validity
Not Before: Jan 1 10:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34c8a32a585a6976e592b55691ef3b608a71e3d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7a:33:9c:62:77:f3:09:b8:c3:0b:9d:ec:5c:
39:e1:ab:34:b7:0d:67:4b:5e:b0:03:cb:f9:32:34:
4b:88:7b:65:b1:7b:89:d2:9f:2e:44:eb:52:9f:0b:
8a:dd:11:31:98:b0:56:42:0d:0f:5d:62:ae:93:b8:
28:ff:2d:ac:30:a5:69:c4:fc:5d:80:a1:37:5b:b2:
bf:0b:3e:97:bc:58:ca:88:80:fd:18:6e:01:bd:71:
8d:01:0b:94:aa:e4:92:6e:7b:31:a0:cb:fa:83:02:
f7:88:03:63:4b:d2:72:6c:a9:b2:8b:75:6b:a3:45:
be:29:b9:d6:73:57:61:60:5f:14:0c:53:2f:92:43:
97:97:a0:97:02:a5:76:7a:b5:d4:ac:f3:a7:4a:b1:
79:68:68:c1:86:f5:d4:29:9b:02:19:6b:90:1f:e5:
32:35:05:66:3e:fd:2f:9e:7f:31:95:8a:78:df:f2:
4b:04:d9:fc:00:49:a3:15:66:5d:c9:bf:b6:8d:57:
f3:b6:e7:30:6b:b4:8b:43:87:a5:ee:77:9c:20:8a:
70:13:2b:7b:3a:4c:d9:a6:e0:c2:e3:50:87:f3:1d:
fb:fd:1e:42:b5:e1:5d:eb:17:d1:5e:03:b4:88:06:
2b:9b:62:e4:e1:0a:05:68:b6:fd:e6:6d:bf:41:cf:
a0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C8:A3:2A:58:5A:69:76:E5:92:B5:56:91:EF:3B:60:8A:71:E3:D6
X509v3 Authority Key Identifier:
keyid:DA:13:89:DE:84:83:BD:14:2D:3F:C7:B3:F7:CA:3E:75:5D:18:C0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hOJ3oSDvRQtP8ez98o-dV0YwJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/NMijKlhaaXblkrVWke87YIpx49Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/2hOJ3oSDvRQtP8ez98o-dV0YwJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2340::/29
Signature Algorithm: sha256WithRSAEncryption
04:18:95:ea:f4:c9:71:3d:5e:52:aa:a4:54:57:d2:03:b7:4b:
35:0d:91:b2:2f:d2:51:5b:b6:49:26:fa:75:3f:2b:a1:0b:bd:
be:4e:5c:77:4c:2a:cd:c2:62:63:ee:f8:60:98:94:79:32:a8:
72:df:7f:ee:3c:66:3d:96:b1:5d:14:21:37:54:48:ac:ab:12:
9f:8f:b9:da:33:aa:f1:e2:c9:bb:da:a4:85:a3:57:3f:0f:33:
d9:f0:6b:bd:02:71:69:4c:37:e2:3f:07:89:9b:2c:ea:a2:ed:
5f:a3:43:d1:0f:8d:8c:83:09:39:06:a8:c2:72:ec:4f:e6:ac:
a4:3c:c4:e0:0d:71:7d:8b:80:94:64:ff:1c:4f:15:f9:60:8b:
c8:70:41:ae:d7:e7:88:13:6d:ee:15:9b:39:0f:a1:35:94:56:
ce:11:d1:0f:f5:ae:3b:a3:af:26:db:68:38:4d:72:63:2e:62:
8a:3f:e3:92:1c:a2:67:33:c3:cc:fe:dc:dd:9a:1c:41:a0:be:
b4:54:17:70:b1:41:43:b4:ba:4d:df:d5:7a:2a:dd:92:87:0e:
bd:ea:fd:a5:5e:4a:82:eb:a0:a7:fb:84:86:8d:be:c2:1c:23:
1b:91:89:69:5d:73:19:ae:cc:12:15:9f:2d:ad:7e:95:c1:3d:
c0:80:8b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:54 2023 by rpki-client on console-fra.rpki-client.org