Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/NmFwBh2_qAruX8Ixz9VLQUzQfyE.roa
File: NmFwBh2_qAruX8Ixz9VLQUzQfyE.roa (raw, json)
Hash identifier: L7ZACxaEs2cPS2AsIfGuYTnrL6wYuUZXbPSkitw3t8M=
Subject key identifier: 36:61:70:06:1D:BF:A8:0A:EE:5F:C2:31:CF:D5:4B:41:4C:D0:7F:21
Certificate issuer: /CN=049d4f66598668079353721c21935a00319f6759
Certificate serial: 055BA4FA
Authority key identifier: 04:9D:4F:66:59:86:68:07:93:53:72:1C:21:93:5A:00:31:9F:67:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/NmFwBh2_qAruX8Ixz9VLQUzQfyE.roa
Signing time: Sat 01 Jan 2022 13:58:38 +0000
ROA not before: Sat 01 Jan 2022 13:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 2a11:7400:d1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89892090 (0x55ba4fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=049d4f66598668079353721c21935a00319f6759
Validity
Not Before: Jan 1 13:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=366170061dbfa80aee5fc231cfd54b414cd07f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:de:3b:e3:69:c6:85:71:cc:a5:33:da:b6:60:
c3:ae:d7:25:81:39:62:12:e8:13:25:25:42:56:da:
3d:6b:b7:3c:03:24:4f:1d:b5:e9:39:9d:91:e2:db:
3a:ec:d2:32:09:bc:e5:2b:2a:79:9c:14:11:68:7b:
36:f4:94:f3:bc:6d:60:1b:c9:7d:e5:84:2f:56:3e:
79:3b:49:3e:43:99:06:94:d0:3a:ea:a7:67:96:5d:
8b:1a:41:7a:fe:2e:0b:52:35:b4:45:f6:1d:97:a7:
33:bf:fb:62:fa:95:fc:89:3e:91:5b:01:8d:4f:48:
95:3b:13:e9:6e:24:26:04:25:0b:f0:fc:3d:d0:8c:
f0:2a:2c:ae:3f:85:d6:9c:68:5b:d2:83:ca:5f:aa:
11:ae:89:f6:6f:bf:d4:39:c3:f8:84:4e:d8:47:21:
de:94:b9:64:75:17:56:d0:9c:e1:5d:d2:1b:4d:fb:
73:9a:9e:f0:70:15:be:69:6d:75:87:03:c2:f1:4d:
1c:2f:f8:4d:31:3b:59:d3:74:b7:40:d7:8a:1f:79:
5a:dd:6b:d4:8d:26:e0:1e:8f:c8:ee:54:bb:6d:2e:
7e:cd:fd:91:14:e7:19:18:b0:92:7a:4b:62:22:02:
27:27:2a:d1:57:01:9a:11:09:b1:2c:16:a0:ca:e7:
cf:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:61:70:06:1D:BF:A8:0A:EE:5F:C2:31:CF:D5:4B:41:4C:D0:7F:21
X509v3 Authority Key Identifier:
keyid:04:9D:4F:66:59:86:68:07:93:53:72:1C:21:93:5A:00:31:9F:67:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/NmFwBh2_qAruX8Ixz9VLQUzQfyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:7400:d1::/48
Signature Algorithm: sha256WithRSAEncryption
38:44:1c:ac:61:6b:0f:09:58:b2:eb:7e:8b:76:1c:70:22:6e:
8e:a8:82:f8:32:8a:65:6d:a4:b9:2a:3f:99:c9:28:e0:46:46:
16:1c:f6:c3:bb:8f:27:0f:50:32:e0:ba:fd:cd:02:65:d2:0f:
39:68:49:a3:a9:92:d7:02:bc:fc:2a:51:8c:65:9d:04:b0:fc:
01:71:90:c8:00:56:07:f6:d9:d8:60:c1:cd:23:93:fd:e1:36:
e8:a9:a9:b9:2c:58:cc:63:95:6c:90:f6:5f:d8:b4:1b:70:f9:
e8:58:c1:75:26:96:76:ca:bd:02:f9:d8:73:43:38:0b:a8:7d:
22:fc:10:a2:4c:29:ac:3a:91:29:68:76:61:76:62:07:6b:77:
7d:29:04:26:52:32:da:de:83:7f:1d:b7:80:c7:26:7d:ba:50:
d2:fb:d2:83:e9:8e:91:ec:4f:cb:6a:91:f3:9e:50:64:2d:44:
6b:9e:5f:29:cb:a4:54:1d:b9:f3:0b:5b:3a:27:8f:d2:1f:26:
dd:86:d6:0e:0c:0d:6e:d3:dc:aa:e3:3b:f1:6f:ec:a1:fb:a3:
d1:5c:24:e2:54:26:53:6a:73:a5:3c:6c:3c:61:28:01:b5:00:
51:86:62:7e:22:e5:e5:ca:b0:10:ea:48:d1:a0:d7:ec:0c:5f:
cb:be:aa:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:38 2024 by rpki-client on console-fra.rpki-client.org