Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/FfMIOEInTY8zor5oioeDgVwMkO0.roa
File: FfMIOEInTY8zor5oioeDgVwMkO0.roa (raw, json)
Hash identifier: H/31YgGYrs2iMZ2JlUY5eX00Zhv106+rhQYsmpx7pmY=
Subject key identifier: 15:F3:08:38:42:27:4D:8F:33:A2:BE:68:8A:87:83:81:5C:0C:90:ED
Certificate issuer: /CN=1e3ba4dbba523d5b0dc989203bfd69648d1d4e66
Certificate serial: 05FD3DA7
Authority key identifier: 1E:3B:A4:DB:BA:52:3D:5B:0D:C9:89:20:3B:FD:69:64:8D:1D:4E:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hjuk27pSPVsNyYkgO_1pZI0dTmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/FfMIOEInTY8zor5oioeDgVwMkO0.roa
Signing time: Sat 01 Jan 2022 06:06:33 +0000
ROA not before: Sat 01 Jan 2022 06:06:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13101
IP address blocks: 2001:678:a14::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100482471 (0x5fd3da7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e3ba4dbba523d5b0dc989203bfd69648d1d4e66
Validity
Not Before: Jan 1 06:06:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15f3083842274d8f33a2be688a8783815c0c90ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7a:cd:99:a9:19:dc:7c:30:90:24:ff:28:3a:
9d:df:b0:74:ae:5b:45:ba:34:4b:3d:4b:70:52:cf:
03:c9:89:78:89:05:ae:0a:5d:6d:14:39:03:1f:81:
4b:61:5e:9b:f1:35:b6:12:3b:b7:c0:8a:c6:7c:4d:
53:e3:55:17:d6:4d:05:b0:70:bf:9d:30:b2:bc:69:
2d:17:d7:48:60:51:05:d9:0f:65:6b:6a:89:0d:23:
24:cf:8a:92:4f:5c:42:62:37:cc:ec:87:ac:00:aa:
b4:c3:d5:d6:f7:6b:30:81:e5:81:9d:20:b6:22:08:
7f:aa:06:8b:fe:98:97:0b:2d:79:64:73:ff:45:7e:
71:2e:2c:f1:a2:45:e4:75:3f:9d:ae:bd:8e:33:a5:
62:b0:05:55:af:af:6c:84:ef:47:3e:87:3a:4f:1f:
7c:08:92:a7:db:76:f4:ea:76:81:a7:27:41:5e:5e:
b6:a9:1a:e0:60:d3:87:e4:99:44:b9:33:32:b8:46:
a1:21:bc:33:4a:0a:cc:f2:39:7a:01:56:1d:65:73:
af:b4:7e:88:ea:20:b1:85:44:a2:77:96:82:e2:fa:
48:0a:6a:58:49:84:30:f1:2c:81:76:92:49:34:78:
f0:f4:20:02:34:dc:80:b6:f0:85:9d:20:77:5b:63:
4b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F3:08:38:42:27:4D:8F:33:A2:BE:68:8A:87:83:81:5C:0C:90:ED
X509v3 Authority Key Identifier:
keyid:1E:3B:A4:DB:BA:52:3D:5B:0D:C9:89:20:3B:FD:69:64:8D:1D:4E:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hjuk27pSPVsNyYkgO_1pZI0dTmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/FfMIOEInTY8zor5oioeDgVwMkO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/Hjuk27pSPVsNyYkgO_1pZI0dTmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a14::/48
Signature Algorithm: sha256WithRSAEncryption
00:f8:bb:96:63:92:11:f0:02:11:f2:15:f3:5a:38:51:b3:44:
5a:34:f1:7e:02:f3:8b:da:58:aa:03:91:a0:a3:da:f4:fa:c0:
12:cf:36:d7:9b:0d:b8:a9:1c:de:ae:08:70:18:ed:51:31:2f:
40:d2:d9:ce:34:01:45:23:6b:c3:47:80:ee:84:41:21:9a:ef:
94:ac:8a:7a:d6:66:58:7d:21:7d:64:40:50:d8:7d:b2:6d:51:
b0:4c:35:e0:d7:53:3e:46:6a:57:51:d5:93:17:97:4c:82:17:
41:05:ab:47:eb:7a:e6:78:95:b7:2d:93:db:3b:35:72:6d:e7:
dd:f8:a9:f5:43:6d:af:d6:3b:27:c8:b6:68:e2:72:81:97:55:
0c:cb:bc:e7:b1:21:0c:a3:87:44:1f:b4:03:ae:d0:af:3f:e6:
09:98:15:ca:b5:ce:8f:f2:c4:38:63:34:95:42:78:a1:90:9a:
ca:87:81:be:8b:73:81:4c:b7:a1:59:50:8d:10:16:f4:04:29:
72:83:0b:e7:b7:cf:53:0f:e9:f6:04:2b:44:79:e9:8f:ca:8b:
72:27:e6:a9:9f:5f:78:5b:25:d5:bd:8f:0d:16:07:91:9b:8e:
7a:a3:de:19:14:7b:d1:fa:ce:39:68:34:7e:c5:60:b5:1e:b2:
67:dc:73:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org