Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/SclTmJYPiAhnzL9_aP2eyjnEdgQ.roa
File: SclTmJYPiAhnzL9_aP2eyjnEdgQ.roa (raw, json)
Hash identifier: NPHwMipBeY4Ot1IHpvJsaB3q+9uwkYCZWenV6jHXISo=
Subject key identifier: 49:C9:53:98:96:0F:88:08:67:CC:BF:7F:68:FD:9E:CA:39:C4:76:04
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 018219CAE383F41917CE730A0A12C08F5AEF
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/SclTmJYPiAhnzL9_aP2eyjnEdgQ.roa
Signing time: Wed 20 Jul 2022 04:08:23 +0000
ROA not before: Wed 20 Jul 2022 04:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 967
IP address blocks: 2a0f:7880:200::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:19:ca:e3:83:f4:19:17:ce:73:0a:0a:12:c0:8f:5a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Jul 20 04:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49c95398960f880867ccbf7f68fd9eca39c47604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c2:92:3d:b8:f9:56:62:60:fc:59:7b:c1:59:
70:37:6d:9b:2a:7f:e6:6e:4b:05:a3:9c:64:7f:ac:
0d:bf:ad:35:ea:6c:33:8d:fa:47:51:53:fd:2f:e4:
6b:1b:ca:ec:62:1e:68:d2:14:64:8f:6e:92:7d:57:
4e:c8:fd:47:58:77:4c:79:80:4a:1f:64:fd:11:a9:
4f:59:fa:6e:d0:20:c0:5a:62:e3:7a:88:73:db:6a:
3f:f9:74:cb:e9:4e:8b:30:2e:a6:d4:86:3c:81:f5:
c1:2a:67:96:65:ed:90:6c:9c:ce:72:1b:e0:07:98:
a3:b9:4b:1b:79:28:9f:cb:bb:17:32:97:4a:26:f6:
3d:08:8a:7d:81:71:e4:d7:c6:13:86:b0:56:52:a9:
ce:45:9b:ca:83:44:ad:3c:25:1a:40:fa:56:2c:39:
57:fa:dd:5d:12:be:c4:93:f6:d6:78:c7:9e:b5:74:
a8:3c:7e:97:4a:3a:69:94:a7:c3:af:54:80:84:2d:
d0:8f:2a:41:d9:9b:0f:f5:5f:ce:ca:de:70:34:0c:
a2:d2:52:f1:15:44:77:de:c9:ce:f3:ef:01:3b:59:
11:38:4b:9d:10:a6:9e:3a:6b:9c:6f:30:62:59:71:
50:5b:18:ac:b2:1c:46:18:57:f1:57:20:c5:3e:d2:
1c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C9:53:98:96:0F:88:08:67:CC:BF:7F:68:FD:9E:CA:39:C4:76:04
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/SclTmJYPiAhnzL9_aP2eyjnEdgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7880:200::/48
Signature Algorithm: sha256WithRSAEncryption
9a:61:7d:67:1b:4a:19:7a:c9:f4:a6:a1:30:e7:f3:1b:c5:80:
bf:c5:bb:bb:dc:fa:09:9c:01:7c:37:32:07:1d:87:0e:ae:13:
a7:13:73:5a:fb:95:e4:45:de:2e:3c:eb:2b:c7:e1:dd:ea:5f:
c2:11:1b:45:c3:c3:47:40:f2:59:bc:c0:2d:98:43:72:da:8c:
7f:98:e5:f1:d0:76:19:9c:51:3c:1a:13:d9:3c:09:4b:cc:46:
0f:b6:c0:6b:0a:a2:14:a7:fc:86:bd:a6:66:b1:96:52:f2:df:
df:e8:5b:84:25:b2:f6:4f:b9:7a:e1:c1:61:9c:cc:5e:a4:7c:
bf:f8:7e:81:e6:dc:74:96:c2:91:cc:bc:57:a3:f0:3b:f9:96:
6a:fe:4e:d9:07:97:21:44:1f:4b:7b:67:8e:9d:9a:a5:f8:47:
cd:10:cb:19:1e:73:29:1d:93:1a:b7:e8:a2:87:7a:9a:64:cc:
17:83:ae:27:30:5e:d2:c8:a2:26:32:ee:01:60:b1:51:2c:9c:
cc:77:6b:a2:42:db:0c:5e:27:8b:ce:2b:1b:33:3e:7c:8d:c2:
45:d2:63:8e:65:d7:ff:a2:f0:08:52:0f:14:4a:16:c8:4f:0a:
08:ff:5b:1a:80:d6:67:fb:35:e9:46:fc:41:95:43:de:d4:71:
4d:48:17:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:32 2024 by rpki-client on console-ams.rpki-client.org