Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/MJwnLKYjTsGv8DkxPUlnQapfEr4.roa
File: MJwnLKYjTsGv8DkxPUlnQapfEr4.roa (raw, json)
Hash identifier: 3FV96CAgE4CAXvmmQGjLaagvy/W3r5hXzEtZxrWw2As=
Subject key identifier: 30:9C:27:2C:A6:23:4E:C1:AF:F0:39:31:3D:49:67:41:AA:5F:12:BE
Certificate issuer: /CN=2ef957aba2ef00352850e202464c71d33ca81448
Certificate serial: 35C45153
Authority key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/MJwnLKYjTsGv8DkxPUlnQapfEr4.roa
Signing time: Sat 01 Jan 2022 12:06:32 +0000
ROA not before: Sat 01 Jan 2022 12:06:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2486
IP address blocks: 2001:660:3005::/48 maxlen: 48
2001:660:3006::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902058323 (0x35c45153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ef957aba2ef00352850e202464c71d33ca81448
Validity
Not Before: Jan 1 12:06:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=309c272ca6234ec1aff039313d496741aa5f12be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:be:5c:ea:62:2e:3d:40:5f:1e:a3:c6:da:8b:
2b:96:be:34:50:9f:4a:42:22:c5:f3:ee:b2:e3:77:
ad:01:c4:24:ce:ab:44:1d:1c:29:21:81:35:e1:16:
c3:91:d3:85:f6:9b:24:9b:d1:47:d2:35:2b:ba:e0:
ce:f1:ce:63:bf:6d:98:c2:cb:56:16:d7:9a:03:d7:
b0:a8:a1:b7:db:42:ee:04:59:db:7b:9f:e1:2a:fc:
ac:f9:e5:ef:89:59:5b:2f:24:12:01:3d:38:d9:6c:
39:32:59:64:9b:03:9e:04:45:b2:48:ec:ff:c2:a3:
54:fa:87:2c:d3:24:db:75:05:4a:8a:7a:4c:5c:4f:
80:b0:57:a2:32:c8:0d:df:24:9f:5f:8e:fd:3a:35:
09:d2:fa:45:44:99:7a:a3:2b:bc:77:23:f6:69:04:
9a:ad:a7:a8:42:46:9e:22:4c:8c:2e:2f:f1:3d:eb:
a1:42:69:5d:63:27:48:13:7e:1f:d6:4e:90:c4:cb:
02:40:78:ef:e7:6d:21:5a:0e:15:73:ab:c3:c6:5c:
f9:7e:9e:26:9c:9c:76:4b:39:33:14:53:5b:26:9c:
db:7b:44:bd:b0:ce:f6:79:12:fc:a2:d4:ae:20:b2:
5b:08:1b:2b:de:1d:1c:38:c2:45:4f:00:01:b9:c8:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9C:27:2C:A6:23:4E:C1:AF:F0:39:31:3D:49:67:41:AA:5F:12:BE
X509v3 Authority Key Identifier:
keyid:2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/MJwnLKYjTsGv8DkxPUlnQapfEr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:660:3005::-2001:660:3006:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
17:bd:f5:c2:ef:32:e4:f4:50:65:2a:74:10:6c:ec:0d:c8:0d:
3e:db:87:27:96:37:2c:eb:46:26:5e:b7:3b:d2:e0:4a:49:32:
21:5d:5f:e7:7a:10:e6:fe:e1:0c:b9:88:51:5b:41:e9:38:d9:
70:85:b4:6a:2b:71:c0:e7:b0:84:40:66:0b:a0:e0:d6:6b:76:
3b:03:de:ca:6a:cb:d1:ff:bf:83:a1:ea:39:a0:35:07:c3:80:
c4:0b:c8:7b:5c:3d:dd:d6:3b:99:91:1c:20:36:c3:cc:c4:f2:
68:6b:bd:1b:68:2a:77:a4:2a:4a:ee:44:d7:86:41:37:0a:58:
8e:2b:02:0f:81:69:e9:24:61:c8:a8:98:31:f3:d4:4c:83:97:
d4:0d:1a:dd:0f:15:0c:4a:26:3f:a7:5b:20:90:d7:9d:0d:e4:
5c:b7:2c:aa:68:28:14:96:f2:24:e2:89:02:c0:6d:c6:fb:b1:
89:68:ec:b0:16:04:06:2e:cb:d3:d5:7f:15:c0:7e:c8:83:7f:
07:e2:e4:a4:ca:c3:0b:23:b4:f4:db:df:72:49:7f:f2:27:37:
60:ae:30:2a:f2:8a:3e:f0:92:37:71:e2:ac:e6:ea:cc:37:c7:
89:0e:0c:6f:ac:38:fb:92:cd:c1:12:16:ce:48:c8:d2:73:dc:
39:bd:eb:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIENcRRUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZWY5NTdhYmEyZWYwMDM1Mjg1MGUyMDI0NjRjNzFkMzNjYTgxNDQ4MB4XDTIyMDEw
MTEyMDYzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzA5YzI3MmNhNjIz
NGVjMWFmZjAzOTMxM2Q0OTY3NDFhYTVmMTJiZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKi+XOpiLj1AXx6jxtqLK5a+NFCfSkIixfPusuN3rQHEJM6r
RB0cKSGBNeEWw5HThfabJJvRR9I1K7rgzvHOY79tmMLLVhbXmgPXsKiht9tC7gRZ
23uf4Sr8rPnl74lZWy8kEgE9ONlsOTJZZJsDngRFskjs/8KjVPqHLNMk23UFSop6
TFxPgLBXojLIDd8kn1+O/To1CdL6RUSZeqMrvHcj9mkEmq2nqEJGniJMjC4v8T3r
oUJpXWMnSBN+H9ZOkMTLAkB47+dtIVoOFXOrw8Zc+X6eJpycdks5MxRTWyac23tE
vbDO9nkS/KLUriCyWwgbK94dHDjCRU8AAbnIYO0CAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBQwnCcspiNOwa/wOTE9SWdBql8SvjAfBgNVHSMEGDAWgBQu+Verou8ANShQ
4gJGTHHTPKgUSDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0x2bFhxNkx2QURVb1VPSUNSa3h4MHp5b0ZFZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvYTU4NGU0LWNjZDQtNGM0Zi05ZDE2LTA0YTI3YzRkNTQ1My8x
L01Kd25MS1lqVHNHdjhEa3hQVWxuUWFwZkVyNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
YTU4NGU0LWNjZDQtNGM0Zi05ZDE2LTA0YTI3YzRkNTQ1My8xL0x2bFhxNkx2QURV
b1VPSUNSa3h4MHp5b0ZFZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAIwFDASAwcAIAEGYDAFAwcAIAEGYDAGMA0G
CSqGSIb3DQEBCwUAA4IBAQAXvfXC7zLk9FBlKnQQbOwNyA0+24cnljcs60YmXrc7
0uBKSTIhXV/nehDm/uEMuYhRW0HpONlwhbRqK3HA57CEQGYLoODWa3Y7A97KasvR
/7+Doeo5oDUHw4DEC8h7XD3d1juZkRwgNsPMxPJoa70baCp3pCpK7kTXhkE3CliO
KwIPgWnpJGHIqJgx89RMg5fUDRrdDxUMSiY/p1sgkNedDeRctyyqaCgUlvIk4okC
wG3G+7GJaOywFgQGLsvT1X8VwH7Ig38H4uSkysMLI7T0299ySX/yJzdgrjAq8oo+
8JI3ceKs5urMN8eJDgxvrDj7ks3BEhbOSMjSc9w5veuh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:27 2024 by rpki-client on console-fra.rpki-client.org