Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/774481-c64f-429c-9961-fd4b2a2aefa5/1/8z_MWrM8PZwPD31vdtMWWaQLvT4.roa
File: 8z_MWrM8PZwPD31vdtMWWaQLvT4.roa (raw, json)
Hash identifier: FPllpDI/aMnRL2PaQuGb6OkzeRuKnbMcv9EcECSZe0k=
Subject key identifier: F3:3F:CC:5A:B3:3C:3D:9C:0F:0F:7D:6F:76:D3:16:59:A4:0B:BD:3E
Certificate issuer: /CN=51e31b4aecc65b3125a7b47ac90908b0a5178483
Certificate serial: 01884465943AF0A85FA3112CAEE0E586C2CA
Authority key identifier: 51:E3:1B:4A:EC:C6:5B:31:25:A7:B4:7A:C9:09:08:B0:A5:17:84:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeMbSuzGWzElp7R6yQkIsKUXhIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/774481-c64f-429c-9961-fd4b2a2aefa5/1/8z_MWrM8PZwPD31vdtMWWaQLvT4.roa
Signing time: Mon 22 May 2023 16:58:07 +0000
ROA not before: Mon 22 May 2023 16:58:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208069
IP address blocks: 2001:67c:c38::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:44:65:94:3a:f0:a8:5f:a3:11:2c:ae:e0:e5:86:c2:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e31b4aecc65b3125a7b47ac90908b0a5178483
Validity
Not Before: May 22 16:58:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f33fcc5ab33c3d9c0f0f7d6f76d31659a40bbd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b9:96:75:b6:16:fb:9c:d4:db:88:be:9b:77:
03:ec:01:31:db:08:24:47:87:8a:f4:47:5a:78:19:
99:02:c0:df:c4:af:fb:d7:b2:7e:26:8e:bf:db:24:
79:54:f7:6c:8b:f1:7f:33:88:4b:3e:af:7e:06:3b:
64:84:ca:00:e5:6b:c0:4a:6d:68:82:9d:92:6f:f0:
0b:df:8d:18:26:bb:fb:06:18:a3:cf:bb:60:b7:3a:
2b:c1:cb:e6:36:a0:57:ef:4d:52:80:ae:b0:7e:09:
e1:81:c0:0e:af:65:93:bb:d2:9f:6b:70:13:91:fb:
41:20:04:3e:2b:4c:77:79:09:ff:e4:07:e5:75:c7:
19:6b:ce:a4:ce:3c:d2:b4:36:15:b0:ad:31:b2:d5:
cc:63:57:6b:bb:de:ad:b4:36:6c:9e:19:2b:09:26:
db:b7:1b:a3:a8:40:1e:85:64:27:2b:d3:98:08:4b:
31:b0:25:6a:f5:07:92:1c:ce:cf:dd:3f:21:83:1d:
b8:82:81:dd:3b:64:fc:73:10:0a:0b:8e:83:13:4b:
fc:b7:8b:e7:03:7a:6e:4e:1f:30:96:40:37:30:da:
cb:77:08:65:d0:ce:6f:5a:7e:43:a9:53:f4:47:fd:
02:36:7a:55:76:34:9a:e6:a9:6e:5c:90:f9:37:d4:
0f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3F:CC:5A:B3:3C:3D:9C:0F:0F:7D:6F:76:D3:16:59:A4:0B:BD:3E
X509v3 Authority Key Identifier:
keyid:51:E3:1B:4A:EC:C6:5B:31:25:A7:B4:7A:C9:09:08:B0:A5:17:84:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeMbSuzGWzElp7R6yQkIsKUXhIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/774481-c64f-429c-9961-fd4b2a2aefa5/1/8z_MWrM8PZwPD31vdtMWWaQLvT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/774481-c64f-429c-9961-fd4b2a2aefa5/1/UeMbSuzGWzElp7R6yQkIsKUXhIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c38::/48
Signature Algorithm: sha256WithRSAEncryption
01:64:9f:89:fd:89:64:bd:a5:93:24:2b:18:2c:df:25:36:70:
7b:81:27:54:8f:50:37:43:30:2c:ea:cd:5c:90:46:8b:44:ce:
1b:a0:52:96:c6:90:24:e2:03:8e:3c:d5:bc:44:af:0b:8a:6b:
01:f8:f8:5f:9d:b5:e0:d5:7a:f7:c4:ef:36:80:b6:94:49:cf:
0c:3c:5c:46:84:5a:68:2f:80:a8:24:2d:ea:ae:f2:5f:84:ff:
8b:25:e5:5d:7d:7e:e8:77:38:9c:86:f0:24:9b:81:be:bd:bb:
10:d4:61:d0:29:5b:57:eb:97:10:71:9d:69:2d:81:ae:e4:91:
b4:cc:04:36:ed:38:44:ad:1b:75:98:88:02:af:ee:a7:90:39:
06:b9:a3:99:23:da:d7:de:79:30:1f:f5:67:ed:a3:92:4d:20:
65:e8:d9:6d:51:cc:5e:12:fb:b5:42:12:6b:09:d5:8c:cc:34:
9f:4b:66:de:29:dd:45:01:40:94:b0:7e:cd:b9:96:a4:87:3b:
15:06:b6:f3:a5:58:80:fa:d1:a5:a0:9a:4a:73:87:cb:4e:ad:
e8:a6:3d:b2:f8:81:0d:3f:f8:13:b5:11:32:13:2e:69:e0:1f:
b3:28:fe:6a:ff:fc:82:0c:cd:ad:7a:96:01:77:0a:52:b9:ec:
22:3b:f1:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:18 2025 by rpki-client