Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/37rmM_q1M86FevyMdj-mc7b-AJQ.roa
File: 37rmM_q1M86FevyMdj-mc7b-AJQ.roa (raw, json)
Hash identifier: fyPMeGOiy76yEf5F4EgvLYq+2ZwMyEi7OAoBXr+c8EE=
Subject key identifier: DF:BA:E6:33:FA:B5:33:CE:85:7A:FC:8C:76:3F:A6:73:B6:FE:00:94
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 07D636D1
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/37rmM_q1M86FevyMdj-mc7b-AJQ.roa
Signing time: Sat 01 Jan 2022 10:56:58 +0000
ROA not before: Sat 01 Jan 2022 10:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51699
IP address blocks: 2a05:4741:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131479249 (0x7d636d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 1 10:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfbae633fab533ce857afc8c763fa673b6fe0094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8f:23:e5:8d:f1:04:8c:73:85:ea:df:df:1f:
cb:6e:09:08:84:57:79:68:c6:31:7a:0d:2f:b9:b8:
4f:81:fb:9d:71:1c:5d:93:95:b4:0e:6c:30:62:26:
ff:b0:60:56:a6:7e:68:b2:2a:07:21:96:0d:0a:2b:
7c:ab:6e:f4:b2:d6:70:63:12:de:e2:27:93:77:44:
33:92:74:22:50:a9:82:b4:d7:b7:6a:94:a4:d9:5e:
ff:53:cd:3e:86:33:6a:52:bc:60:73:b6:eb:2f:00:
a1:69:0e:93:06:f3:17:2c:a9:df:2a:9d:45:f5:7c:
c1:46:b7:f8:63:64:eb:e6:2c:a9:9b:30:5d:a5:ab:
06:d0:45:2e:f6:f3:45:cc:a4:c7:d7:71:cf:5b:4e:
cc:88:3e:ab:90:8e:c5:0b:97:38:2a:f4:4e:9e:6a:
06:d3:df:b7:02:89:6f:53:18:4f:e5:3a:3f:a5:95:
35:bf:5e:bb:b4:d6:3b:a4:b0:b8:7e:f3:a2:48:ba:
fd:eb:37:68:c0:ae:21:ed:9e:5c:46:76:42:0d:e5:
43:92:75:2e:cf:60:5e:24:7c:10:6b:40:38:fd:a4:
18:06:b0:73:3c:c8:ab:03:88:08:c4:1e:c9:66:d3:
03:04:fb:96:46:13:8d:c8:59:8c:55:72:1e:71:d2:
14:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BA:E6:33:FA:B5:33:CE:85:7A:FC:8C:76:3F:A6:73:B6:FE:00:94
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/37rmM_q1M86FevyMdj-mc7b-AJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4741:6::/48
Signature Algorithm: sha256WithRSAEncryption
de:c6:ac:ca:66:c2:1a:b2:3b:c1:4c:2e:71:38:0c:4a:95:0a:
6d:63:98:40:e6:c2:58:33:0f:e5:8a:98:29:81:b2:f2:dd:41:
28:63:de:33:bb:fe:ec:41:be:2a:4b:38:47:a3:b6:d8:14:23:
46:08:22:d8:56:0d:af:0e:f5:cf:6e:22:6d:b7:73:5a:92:ac:
f0:df:30:77:3b:8d:8d:13:6d:e9:af:85:ad:31:71:88:0a:85:
cd:6a:b8:bd:86:07:59:ee:f7:c0:93:2c:64:69:f3:44:88:82:
61:63:a0:d3:88:e4:86:39:45:e0:ef:77:77:ab:6f:4d:25:5d:
44:4f:d1:01:14:71:c9:4f:ba:4e:4e:ba:dc:02:ac:2d:49:11:
72:21:15:42:db:43:f8:82:24:dd:fc:d2:68:11:73:da:52:cb:
95:fa:b8:d7:37:f2:c0:62:f9:8f:71:4c:94:d3:5f:7c:17:89:
16:f3:97:37:15:86:b8:f8:8a:6c:2f:e7:b5:3b:86:0f:ea:9b:
39:39:3c:54:63:64:a1:09:3e:ef:d9:07:7b:06:c1:53:4d:06:
74:28:f6:b5:02:c2:26:04:e1:90:9b:53:ea:a5:63:d7:6f:9b:
68:42:2b:37:53:ba:5b:d7:0c:7d:7d:25:44:f4:68:40:3e:8a:
02:cc:86:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:06 2023 by rpki-client on console-fra.rpki-client.org