Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_mx-9MF7oW9Ml5bsgjvgQ3_luuM.roa
File: _mx-9MF7oW9Ml5bsgjvgQ3_luuM.roa (raw, json)
Hash identifier: kvwMPaeweaaS9/hAaHgbiuok+D/E+wRZUnnjdQ1mBCw=
Subject key identifier: FE:6C:7E:F4:C1:7B:A1:6F:4C:97:96:EC:82:3B:E0:43:7F:E5:BA:E3
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0186114C833BA8CD8867956893AF40114BFB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_mx-9MF7oW9Ml5bsgjvgQ3_luuM.roa
Signing time: Thu 02 Feb 2023 08:44:32 +0000
ROA not before: Thu 02 Feb 2023 08:44:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41108
IP address blocks: 2a0f:ea40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:4c:83:3b:a8:cd:88:67:95:68:93:af:40:11:4b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 2 08:44:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe6c7ef4c17ba16f4c9796ec823be0437fe5bae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2c:64:0a:ad:e2:6c:a4:85:a5:dd:09:70:e2:
8c:27:74:75:46:5a:de:7d:ed:59:cb:8c:a4:02:8d:
2c:ed:02:5f:56:9a:72:a0:88:f5:24:a4:b5:b6:af:
52:98:cc:36:e5:00:d6:2a:32:96:83:01:50:c8:17:
c5:e4:ae:2a:94:9f:20:ac:c2:0c:a8:3b:c5:87:19:
b2:de:9c:49:3a:a8:4c:55:06:a9:0c:67:a8:0e:f2:
4b:b1:73:d0:50:68:b5:f9:fe:d6:99:5b:d8:82:46:
e9:22:91:1d:e9:d8:b8:a8:bf:fe:d4:0e:1e:1a:fa:
04:93:23:62:0e:2c:66:ab:41:2f:f4:9a:5e:58:d5:
0f:0a:21:4f:1a:d1:5c:ee:e1:35:ca:1d:3d:bd:b0:
7c:fd:05:8d:85:1c:8b:e3:19:95:eb:86:38:69:7e:
24:d0:5e:69:c2:eb:09:51:63:90:e9:4c:e0:ba:82:
be:d6:ec:bd:32:4e:35:0f:8e:25:16:b7:d7:8a:0c:
4e:16:06:22:ea:2b:73:59:dd:72:4e:62:5d:be:73:
81:22:1a:31:93:7f:af:28:b5:5c:53:5c:b2:4a:cd:
b2:e0:4d:13:d6:54:49:d9:7d:fc:6c:7a:c9:26:42:
f6:cd:1a:5a:71:f7:b5:a6:f0:85:0d:a5:34:4c:23:
6e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6C:7E:F4:C1:7B:A1:6F:4C:97:96:EC:82:3B:E0:43:7F:E5:BA:E3
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_mx-9MF7oW9Ml5bsgjvgQ3_luuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ea40::/32
Signature Algorithm: sha256WithRSAEncryption
6f:bf:c2:16:9c:c8:16:5c:f7:91:ac:0a:1a:cf:01:97:76:c1:
0f:df:13:47:a9:4c:02:61:58:14:53:e3:21:a4:00:5e:f7:db:
b2:5a:89:39:39:6c:42:04:43:7a:21:9c:d6:4a:19:d2:c9:7f:
a8:d4:41:e1:47:77:c0:37:e0:b7:c4:3d:2e:67:3b:b3:6e:d2:
1e:69:35:1a:a9:76:ea:4b:e2:72:c5:5a:24:2b:3b:51:14:e8:
08:e5:8c:1d:55:fb:e8:2b:44:2c:aa:d1:82:cc:1d:04:0a:4c:
5e:1f:78:d2:32:97:f3:f6:38:dd:ee:53:5f:4c:11:24:e5:13:
e7:c3:dc:14:86:0d:db:c6:89:b9:cb:8a:a9:b3:2a:5a:10:4b:
b0:c0:a8:52:c5:d2:d5:c9:e3:45:81:39:e5:4d:28:f6:a3:78:
b5:12:1f:6a:04:f0:08:bf:1e:d9:56:50:70:16:97:0b:88:ea:
0a:e4:08:59:ce:c5:3b:74:57:e0:48:6e:57:1f:2b:db:23:ae:
ae:32:3b:2a:57:bd:42:00:08:d3:ff:8d:fe:07:15:9c:94:44:
ba:c4:67:63:e2:55:14:62:fb:19:b4:34:cf:2e:25:d7:ed:3e:
66:53:5c:6b:de:da:5c:a7:ab:2f:ad:0c:50:a6:ad:18:ce:0e:
c8:df:8c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:25 2025 by rpki-client