Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/MU2OD8fw1m8KThPNQ8Qx2OKxYrE.roa
File: MU2OD8fw1m8KThPNQ8Qx2OKxYrE.roa (raw, json)
Hash identifier: 1YFy/TeN7IId+o2h1/KrIww0UloIFXNOaMj620J7EIo=
Subject key identifier: 31:4D:8E:0F:C7:F0:D6:6F:0A:4E:13:CD:43:C4:31:D8:E2:B1:62:B1
Certificate issuer: /CN=90ae538e2a91346f0402598b0ff2fb9a95c07c39
Certificate serial: 14332F87
Authority key identifier: 90:AE:53:8E:2A:91:34:6F:04:02:59:8B:0F:F2:FB:9A:95:C0:7C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kK5TjiqRNG8EAlmLD_L7mpXAfDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/MU2OD8fw1m8KThPNQ8Qx2OKxYrE.roa
Signing time: Wed 30 Mar 2022 06:39:24 +0000
ROA not before: Wed 30 Mar 2022 06:39:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57129
IP address blocks: 2a06:cd00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338898823 (0x14332f87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ae538e2a91346f0402598b0ff2fb9a95c07c39
Validity
Not Before: Mar 30 06:39:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=314d8e0fc7f0d66f0a4e13cd43c431d8e2b162b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:21:b2:62:6c:b4:d1:4a:31:6f:25:cd:3b:
47:a6:a4:b3:71:5c:3f:7f:13:29:28:f8:27:99:c1:
a9:ce:60:00:27:0b:bc:36:60:94:cd:74:bc:20:d6:
c1:c5:43:77:e1:8b:1e:29:69:7f:c3:de:b3:c6:34:
1c:24:07:a7:c1:f2:a9:71:3a:1c:e9:12:2f:c7:63:
2e:e0:c2:c0:53:98:6e:fa:c9:5e:a6:80:d8:a7:c9:
f5:c7:65:78:be:f7:9e:86:22:4a:78:a1:04:f7:51:
3d:8e:90:e4:76:e7:5c:84:4c:9b:d9:e4:37:f3:26:
ee:6e:2f:7a:e1:62:98:bf:f0:f4:46:fb:a1:91:75:
f4:5a:bb:5b:61:b6:35:fb:5f:b7:b0:6d:63:59:b6:
31:c7:e4:43:ef:4d:5a:67:e5:f0:1c:e2:2a:da:f8:
83:ea:04:47:58:6f:32:3c:6a:ab:b4:07:0e:59:e6:
36:4f:c0:e4:4b:6d:1d:73:b4:4a:0f:f3:cc:71:0e:
ad:02:fd:2e:81:4e:09:9b:1d:ea:31:36:83:f6:64:
f5:ea:63:98:f5:da:29:90:7d:ec:85:2c:09:73:62:
26:f6:86:68:eb:18:db:0e:67:10:d4:01:af:19:f7:
4c:58:0a:1b:d2:68:21:b9:c0:da:b6:bd:dd:09:25:
7d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4D:8E:0F:C7:F0:D6:6F:0A:4E:13:CD:43:C4:31:D8:E2:B1:62:B1
X509v3 Authority Key Identifier:
keyid:90:AE:53:8E:2A:91:34:6F:04:02:59:8B:0F:F2:FB:9A:95:C0:7C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kK5TjiqRNG8EAlmLD_L7mpXAfDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/MU2OD8fw1m8KThPNQ8Qx2OKxYrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/kK5TjiqRNG8EAlmLD_L7mpXAfDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:cd00::/29
Signature Algorithm: sha256WithRSAEncryption
9e:d3:17:14:ba:f0:d6:14:ab:46:28:11:fb:de:3a:de:fa:ad:
ae:ed:05:d3:45:a2:00:63:01:2f:e0:7b:07:92:1e:99:63:20:
12:3a:15:e7:48:71:15:4a:63:5e:6b:4a:d7:34:58:b1:a9:d6:
50:28:5f:f5:1a:f3:19:8d:0f:1f:da:60:ee:0d:a0:b6:70:20:
94:8f:8e:43:98:de:75:61:44:86:0c:2d:c9:28:fc:4d:ce:c1:
e0:2a:82:58:f1:15:f8:0d:13:82:45:09:dd:db:16:7c:01:86:
2f:0b:bd:39:03:32:9e:37:2e:4b:3a:3a:40:b3:86:e1:e5:a3:
0d:6c:9a:69:7e:ce:cf:08:54:64:cc:c8:ad:96:11:a0:f9:f1:
94:10:8b:65:01:27:bb:26:5d:df:48:63:96:34:1f:0c:5d:cb:
e6:3e:39:54:53:26:e5:06:b3:e4:2c:1a:95:67:bf:79:09:3d:
05:6a:a9:d0:e1:3f:88:94:dd:0c:9d:2a:44:3d:07:10:56:32:
2d:2c:8d:5e:8a:e0:24:73:f6:95:31:05:94:3a:ed:20:5f:d9:
bc:ab:aa:b3:58:a4:ab:34:af:70:3a:2b:64:d2:4d:f6:76:1d:
c8:2d:8c:e2:3f:9e:73:b3:d3:ef:aa:d1:7a:15:64:de:54:b6:
6a:e9:e5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org