Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/mwLPhX85WAZ6jZQRl4umAzbRAPw.roa
File: mwLPhX85WAZ6jZQRl4umAzbRAPw.roa (raw, json)
Hash identifier: G6OteokvspXcFob+e9GfjUvTs6v8LA0Tg/3nmATXTGI=
Subject key identifier: 9B:02:CF:85:7F:39:58:06:7A:8D:94:11:97:8B:A6:03:36:D1:00:FC
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 02F62DFF
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/mwLPhX85WAZ6jZQRl4umAzbRAPw.roa
Signing time: Sat 01 Jan 2022 16:03:36 +0000
ROA not before: Sat 01 Jan 2022 16:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137509
IP address blocks: 2a0e:46c4:2c20::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49688063 (0x2f62dff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 16:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b02cf857f3958067a8d9411978ba60336d100fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:71:be:04:df:52:e8:75:a3:a7:5c:17:c8:92:
4d:25:1a:72:a8:f6:bf:e4:3c:e5:0b:35:4f:b2:91:
7d:17:85:6e:d6:de:67:86:36:cb:c2:76:8c:ac:09:
4f:67:bf:81:37:40:fd:d1:1c:50:55:04:79:f6:22:
51:d4:25:61:44:5f:03:6d:d4:d1:03:6d:04:6d:c7:
18:9c:fe:36:20:69:aa:9c:78:11:a2:c7:83:8b:32:
4d:08:cb:03:05:e1:b5:8c:2f:e3:c1:7d:f7:6a:05:
cc:78:13:76:24:c2:f1:81:a2:d1:23:03:49:24:1e:
bb:ae:e9:36:a2:d8:1b:19:03:4d:6d:18:ee:2f:a0:
82:3c:ec:ce:c9:13:1e:27:95:7f:2f:51:12:a8:bf:
79:af:b9:fc:3f:62:4f:df:5d:68:c8:bb:f2:1f:92:
12:86:cc:95:8d:ea:ff:04:bb:00:a0:85:92:11:76:
6b:43:59:f5:7c:a8:a7:29:b9:95:d8:47:75:d8:84:
20:3a:53:a6:bf:d2:da:40:2f:de:93:9f:6c:cb:1b:
63:8e:82:a5:2f:54:94:04:de:26:08:ca:5f:5a:6f:
cc:6f:1a:c9:58:6b:a0:be:ca:a7:2c:69:6a:84:83:
f1:de:91:19:6b:2b:67:1e:ab:51:b6:b6:f7:07:56:
53:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:02:CF:85:7F:39:58:06:7A:8D:94:11:97:8B:A6:03:36:D1:00:FC
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/mwLPhX85WAZ6jZQRl4umAzbRAPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2c20::/44
Signature Algorithm: sha256WithRSAEncryption
26:f9:82:39:c3:e3:d7:d7:92:b8:b7:1b:e2:b4:90:7f:73:f3:
5d:0d:f0:36:e1:99:c5:3e:3e:6a:01:36:0b:34:87:55:8d:d6:
f8:8e:af:bd:85:51:4b:87:15:ed:25:78:c4:4b:e9:bc:e9:15:
64:95:fe:28:33:12:80:82:89:97:71:f3:75:d1:5f:2b:8a:b2:
50:99:aa:eb:d3:3c:a7:52:9c:4a:29:76:f3:d4:92:5a:6d:7c:
0c:f7:75:e7:e6:4a:ea:9d:e4:a9:c4:eb:d2:ed:0c:4a:ef:d4:
cc:e0:bd:8a:e3:b0:ad:45:2b:aa:a3:09:e4:2c:4e:79:c9:3b:
48:4b:eb:65:4f:4d:9e:84:98:c8:f1:04:b0:77:33:8b:68:e2:
2e:7e:3e:5a:15:6e:65:ba:41:75:51:17:9a:e0:07:fe:4b:10:
58:78:0c:35:df:f3:89:95:fc:60:c0:bc:3b:ce:a9:1e:0b:c0:
50:1a:a4:ec:e1:17:3f:d5:3d:ee:53:ae:ba:85:be:72:4d:ce:
43:d3:0c:0c:2c:c8:ca:98:4d:f8:d4:a7:7a:d7:fd:f4:51:54:
f4:67:3f:84:80:8e:8a:b2:ab:e1:a4:c2:42:18:60:4c:df:cd:
4a:d8:ed:6e:aa:e6:7a:65:24:f6:f9:e0:be:14:b1:6a:30:67:
6b:46:fa:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org