Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/cee9db-6401-4497-85d1-917c80b14862/1/3MSuIYWs6fGISYCAdfarSuq8-m4.roa
File: 3MSuIYWs6fGISYCAdfarSuq8-m4.roa (raw, json)
Hash identifier: PLxwhYutx5Fatp7+/wxv55ZnvJBfGO0muYv5jTcoGaY=
Subject key identifier: DC:C4:AE:21:85:AC:E9:F1:88:49:80:80:75:F6:AB:4A:EA:BC:FA:6E
Certificate issuer: /CN=fd15482a656009aa1bc805148368d1ebdf8f62c8
Certificate serial: 016B3376
Authority key identifier: FD:15:48:2A:65:60:09:AA:1B:C8:05:14:83:68:D1:EB:DF:8F:62:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RVIKmVgCaobyAUUg2jR69-PYsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/cee9db-6401-4497-85d1-917c80b14862/1/3MSuIYWs6fGISYCAdfarSuq8-m4.roa
Signing time: Sat 01 Jan 2022 13:01:55 +0000
ROA not before: Sat 01 Jan 2022 13:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206362
IP address blocks: 2001:678:fdc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23802742 (0x16b3376)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd15482a656009aa1bc805148368d1ebdf8f62c8
Validity
Not Before: Jan 1 13:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcc4ae2185ace9f18849808075f6ab4aeabcfa6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:98:33:81:d4:a0:6f:2f:52:7e:b9:f4:fb:44:
0f:2a:33:cd:ae:c3:46:ea:57:34:33:9f:a0:38:8c:
35:15:b5:1d:8e:29:b1:c1:d0:49:36:e2:a0:5c:74:
68:64:9d:71:f3:a7:6f:8b:68:e1:94:25:06:9c:74:
6c:ef:dd:dc:42:29:51:80:c5:77:45:4e:9d:aa:3c:
e8:1a:64:0d:6d:d1:18:5c:38:0d:69:6f:b4:34:46:
67:ea:9f:b9:bf:48:dc:75:4b:30:95:48:51:3d:05:
e2:7e:f9:b0:dc:23:6b:31:35:66:da:4f:35:2f:8a:
15:2a:a0:93:a4:83:da:b5:be:83:70:74:8d:07:b7:
48:76:f3:f1:95:9c:44:c7:99:0f:1a:37:71:75:31:
fd:de:22:d1:f2:70:97:95:d4:48:96:6a:5f:9f:bf:
9e:e9:4b:18:61:80:aa:9a:37:df:4b:e1:e6:ed:4f:
a8:dc:cb:fd:76:56:f7:17:db:74:52:e5:f9:82:50:
f9:b1:5f:23:de:4a:2e:82:fa:41:8d:96:e1:ef:ff:
a1:15:17:02:25:ca:28:8e:8b:57:36:e5:67:a1:d8:
55:bd:b8:e8:36:6b:17:16:44:0e:57:47:f3:46:f3:
8c:00:4d:39:0a:bf:37:94:a0:bc:75:9f:9d:44:33:
ad:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C4:AE:21:85:AC:E9:F1:88:49:80:80:75:F6:AB:4A:EA:BC:FA:6E
X509v3 Authority Key Identifier:
keyid:FD:15:48:2A:65:60:09:AA:1B:C8:05:14:83:68:D1:EB:DF:8F:62:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RVIKmVgCaobyAUUg2jR69-PYsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/cee9db-6401-4497-85d1-917c80b14862/1/3MSuIYWs6fGISYCAdfarSuq8-m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/cee9db-6401-4497-85d1-917c80b14862/1/_RVIKmVgCaobyAUUg2jR69-PYsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:fdc::/48
Signature Algorithm: sha256WithRSAEncryption
43:37:d8:03:b9:1c:15:4b:44:3d:b7:45:1d:e2:9a:5b:0c:b6:
dc:71:8b:4d:fd:c3:88:25:70:fd:e8:e6:e0:95:71:40:04:dd:
2c:8d:32:55:7a:03:a3:fc:17:51:29:84:dc:92:e9:bf:05:af:
b3:b8:cc:2a:3d:67:74:36:a4:34:9b:5d:25:a2:08:fe:a2:e5:
bc:d7:bd:37:70:6a:6e:cb:db:9c:a1:43:f9:1b:98:c9:73:c2:
59:cc:6c:5c:e1:10:99:7e:56:f0:46:aa:28:a6:bc:73:94:61:
80:6f:08:11:a0:91:72:0f:bd:d6:bf:e9:a6:a0:b9:d0:37:8b:
42:5b:47:1b:5b:38:3b:cb:4e:2b:31:b0:70:50:ec:2e:70:d8:
0f:87:0d:47:80:f6:71:51:e6:35:81:88:c1:c4:ba:84:bf:88:
bf:5a:14:7a:6f:c1:db:33:ac:f6:b1:37:8c:a9:9d:47:12:c5:
19:43:6e:c1:86:e6:0e:c0:ef:97:1e:6b:76:37:e1:4e:45:63:
d4:28:54:c5:bd:e1:95:66:cd:38:ed:41:f0:7b:ce:2d:07:0f:
21:f1:4b:c0:c9:e1:64:9d:16:76:3c:de:5d:ac:7e:9b:c7:a2:
57:bf:46:0b:24:50:2c:91:fe:b2:b3:4b:27:1c:a3:21:e2:20:
bb:dd:0c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:21 2024 by rpki-client on console-fra.rpki-client.org