Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/204cdf-f6e7-4874-9802-650dd138e6a2/1/mRYII_o27JWawKwqy_sgDrhcEB8.roa
File: mRYII_o27JWawKwqy_sgDrhcEB8.roa (raw, json)
Hash identifier: hyOaWq9RkLOoU6a61LgD0UG7UcYCafZTL1rOn+cz7NE=
Subject key identifier: 99:16:08:23:FA:36:EC:95:9A:C0:AC:2A:CB:FB:20:0E:B8:5C:10:1F
Certificate issuer: /CN=3bd9fb57f4b0f253f9af858303e6b46a529c194e
Certificate serial: 033B7464
Authority key identifier: 3B:D9:FB:57:F4:B0:F2:53:F9:AF:85:83:03:E6:B4:6A:52:9C:19:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9n7V_Sw8lP5r4WDA-a0alKcGU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/204cdf-f6e7-4874-9802-650dd138e6a2/1/mRYII_o27JWawKwqy_sgDrhcEB8.roa
Signing time: Sat 01 Jan 2022 10:58:02 +0000
ROA not before: Sat 01 Jan 2022 10:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212135
IP address blocks: 2001:678:efc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54228068 (0x33b7464)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd9fb57f4b0f253f9af858303e6b46a529c194e
Validity
Not Before: Jan 1 10:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99160823fa36ec959ac0ac2acbfb200eb85c101f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:97:58:8b:d7:cc:d1:9e:e3:c9:37:aa:fa:
3b:0c:7a:81:08:00:df:d2:f4:70:8b:5b:d2:8e:3a:
dc:96:9a:10:11:82:75:99:de:4b:2c:c0:e1:e0:cf:
98:29:91:b9:bc:49:c8:8e:54:b5:db:68:2f:40:66:
38:05:4a:65:4f:b0:68:f3:14:93:64:02:c3:cf:89:
dd:64:fd:a3:7a:2a:73:33:20:60:60:9a:ac:2a:02:
5d:96:b6:66:b8:af:98:9d:f3:7a:14:5d:5e:14:d3:
a9:e2:69:1c:de:16:87:e7:9a:d7:8b:94:66:5b:22:
a3:37:f1:30:8e:a4:60:ba:74:c1:4d:f1:28:c7:1b:
2f:ff:2c:7b:15:a5:eb:b4:5c:8b:09:79:bd:39:4a:
8e:e5:a0:e8:5b:76:cb:03:72:9c:e8:d1:85:85:36:
50:e6:18:fd:62:47:43:ac:68:04:da:6b:2c:6d:56:
b0:c5:61:04:d5:1d:b4:00:17:43:73:97:5d:c8:8d:
da:31:38:20:98:ec:fd:6b:68:64:09:89:3d:e7:e4:
c9:e5:57:4c:e9:7c:a0:a9:4c:b7:9d:46:fe:b0:ac:
54:a7:8a:6a:be:d0:30:a6:18:0e:18:f4:b8:84:a3:
d8:4a:4f:be:a5:6d:6d:fa:ab:99:22:4c:05:85:cd:
33:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:16:08:23:FA:36:EC:95:9A:C0:AC:2A:CB:FB:20:0E:B8:5C:10:1F
X509v3 Authority Key Identifier:
keyid:3B:D9:FB:57:F4:B0:F2:53:F9:AF:85:83:03:E6:B4:6A:52:9C:19:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9n7V_Sw8lP5r4WDA-a0alKcGU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/204cdf-f6e7-4874-9802-650dd138e6a2/1/mRYII_o27JWawKwqy_sgDrhcEB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/204cdf-f6e7-4874-9802-650dd138e6a2/1/O9n7V_Sw8lP5r4WDA-a0alKcGU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:efc::/48
Signature Algorithm: sha256WithRSAEncryption
30:cf:4b:37:2b:59:c2:50:81:85:4a:b5:9a:49:f0:b7:a1:33:
7b:06:13:0c:6e:a5:35:8a:6a:d3:21:5c:6d:31:09:9d:bd:18:
72:37:83:16:cf:34:a7:ad:81:db:c8:8b:46:d5:23:36:2c:7c:
c5:7f:f9:81:68:fc:63:25:ca:cc:c0:5e:85:60:4d:5d:c2:ae:
7f:8c:3f:79:84:0e:20:e5:49:c1:a9:1d:6b:4e:6f:fe:7a:75:
a5:f8:02:9d:3b:55:d3:d0:42:7f:e2:05:01:bb:42:a4:90:59:
87:5d:15:54:e1:ef:27:11:9f:f2:b6:89:f8:15:1d:ac:b3:ac:
13:92:9a:97:2c:a8:ab:d2:da:b5:33:41:c7:f8:53:21:70:fa:
46:9d:5b:69:0f:ba:0f:ab:5b:6a:36:4a:fe:4b:d0:5c:e4:d7:
ad:a9:37:97:ab:44:20:6a:d9:62:f4:b6:33:58:c6:b5:24:87:
c5:03:97:b4:ca:66:a3:4d:ad:6d:6b:cb:9b:1d:b1:90:88:51:
db:85:35:e3:70:67:8f:f2:79:ce:8b:09:2f:86:fd:4b:9d:91:
a8:be:e3:9e:cf:f6:f6:1b:b3:b7:b6:89:af:ab:c6:99:1b:f3:
95:5b:24:1d:d6:90:fd:6c:1e:85:b1:72:95:8a:0c:8d:6b:9f:
bc:45:ca:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:56 2025 by rpki-client