Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/03b1e7-3113-48d6-9b78-b2884888ad3f/1/DMlPxNq4pGGvBdN0Gh0cMjltaIw.roa
File: DMlPxNq4pGGvBdN0Gh0cMjltaIw.roa (raw, json)
Hash identifier: TgnDgFKXpeZh6DUcIzYI6TOZQm+jkOCtnvgJD447Bfs=
Subject key identifier: 0C:C9:4F:C4:DA:B8:A4:61:AF:05:D3:74:1A:1D:1C:32:39:6D:68:8C
Certificate issuer: /CN=eb764111aeffa86bd1ec3ca885b63de7f5650f6e
Certificate serial: 01848788DA5EBA1BAF315F196267B78BCD3F
Authority key identifier: EB:76:41:11:AE:FF:A8:6B:D1:EC:3C:A8:85:B6:3D:E7:F5:65:0F:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/63ZBEa7_qGvR7DyohbY95_VlD24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/03b1e7-3113-48d6-9b78-b2884888ad3f/1/DMlPxNq4pGGvBdN0Gh0cMjltaIw.roa
Signing time: Thu 17 Nov 2022 21:40:03 +0000
ROA not before: Thu 17 Nov 2022 21:40:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2001:67c:b08::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:87:88:da:5e:ba:1b:af:31:5f:19:62:67:b7:8b:cd:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb764111aeffa86bd1ec3ca885b63de7f5650f6e
Validity
Not Before: Nov 17 21:40:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cc94fc4dab8a461af05d3741a1d1c32396d688c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e6:00:a0:28:d8:fb:8e:02:a2:9c:75:90:a9:
93:19:03:5c:8c:a3:17:a9:13:99:e5:ed:fa:74:a1:
f7:1c:d0:e7:44:98:5a:ee:a0:48:db:be:fd:11:2e:
5e:37:27:17:2a:1e:13:78:23:1e:f8:44:3d:d1:08:
53:16:37:25:d7:9c:4e:a1:54:8c:12:8a:f8:43:fb:
de:8a:91:8c:18:ab:95:09:fa:f1:bb:6a:66:e2:25:
cd:e8:52:86:4c:20:83:23:a5:29:83:a6:ca:fb:6c:
15:a6:ac:c7:cc:12:be:3e:5d:6d:93:05:55:e7:a2:
70:d1:a3:ce:12:b2:8c:01:98:e5:de:af:84:bb:00:
2b:a1:24:39:90:27:00:2d:17:86:61:d7:c5:e2:5d:
e0:5f:ca:72:38:10:2a:e2:ef:5a:df:c8:37:45:60:
2d:40:26:cc:27:39:d7:11:29:89:7d:de:8f:2b:02:
6a:63:34:fa:69:06:2f:9e:02:46:cf:66:fe:c8:fe:
0d:81:c0:2c:f7:1e:4f:0a:a2:8e:ea:16:c5:5d:1f:
74:34:e3:12:1d:e9:b5:f0:c4:4d:7a:2d:c2:cf:dc:
42:9b:51:ad:06:49:f3:c8:39:99:77:f6:1d:39:42:
66:a7:97:b4:3e:f4:97:ea:ce:da:e1:bb:b8:1f:93:
85:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C9:4F:C4:DA:B8:A4:61:AF:05:D3:74:1A:1D:1C:32:39:6D:68:8C
X509v3 Authority Key Identifier:
keyid:EB:76:41:11:AE:FF:A8:6B:D1:EC:3C:A8:85:B6:3D:E7:F5:65:0F:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/63ZBEa7_qGvR7DyohbY95_VlD24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/03b1e7-3113-48d6-9b78-b2884888ad3f/1/DMlPxNq4pGGvBdN0Gh0cMjltaIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/03b1e7-3113-48d6-9b78-b2884888ad3f/1/63ZBEa7_qGvR7DyohbY95_VlD24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b08::/48
Signature Algorithm: sha256WithRSAEncryption
9b:1e:08:ab:4c:26:16:4f:89:a3:5f:a8:87:63:28:a5:8a:55:
90:fe:d0:08:20:06:22:f0:da:7f:df:64:a0:e4:06:90:83:df:
8a:ca:5f:16:fe:e7:41:55:d7:8f:53:98:05:bd:78:3d:dd:a1:
96:58:0b:0d:cd:03:d4:13:8f:8e:da:ea:70:25:04:46:5e:03:
76:d0:af:96:e2:05:f1:ff:eb:29:cc:bb:19:22:98:70:26:b8:
79:15:56:a3:98:3e:bb:29:88:cb:db:eb:c8:c0:c8:5a:31:50:
95:71:2a:74:d9:21:26:a2:54:a8:da:8e:b3:10:45:33:f8:76:
5f:60:0e:92:4e:38:68:2e:e7:6c:e7:a8:62:49:41:6c:08:c9:
ff:50:d0:eb:25:5a:02:92:15:7a:39:e9:5f:fb:e7:10:47:f5:
18:51:00:fe:07:d8:3d:0f:2a:22:5d:9d:27:b1:ae:25:db:8d:
29:42:e2:66:3d:92:37:56:8a:93:7d:11:b8:1d:4d:97:48:8e:
06:32:12:95:a2:23:59:78:50:f6:52:33:61:3c:1a:d4:90:ba:
94:b6:4b:45:eb:73:f4:5d:a0:91:54:cf:f2:f3:90:33:22:d9:
6e:00:35:5b:96:67:b6:9a:20:5f:75:c2:07:6d:80:95:8d:e5:
b6:0c:cc:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:39 2023 by rpki-client on console-fra.rpki-client.org