Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/mMiftNaBFXzM1VpWAhoRsVD5O2U.roa
File: mMiftNaBFXzM1VpWAhoRsVD5O2U.roa (raw, json)
Hash identifier: hcLQI6I3E+CoY3P54blyWtRdpNzEHpfy7b/lTrAueoI=
Subject key identifier: 98:C8:9F:B4:D6:81:15:7C:CC:D5:5A:56:02:1A:11:B1:50:F9:3B:65
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 0184B7532BA0C8C44049E7912127B13577E4
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/mMiftNaBFXzM1VpWAhoRsVD5O2U.roa
Signing time: Sun 27 Nov 2022 04:23:11 +0000
ROA not before: Sun 27 Nov 2022 04:23:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150296
IP address blocks: 2a0f:7880:202::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b7:53:2b:a0:c8:c4:40:49:e7:91:21:27:b1:35:77:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Nov 27 04:23:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98c89fb4d681157cccd55a56021a11b150f93b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:36:2f:b3:44:eb:3d:e1:b5:4c:3b:ac:1e:7f:
51:39:48:ca:1d:14:ab:ff:9f:27:6b:0e:09:a9:18:
5b:62:1d:7f:b2:6d:9d:b9:1b:dd:55:bd:00:fa:fe:
54:30:c1:a4:50:90:b7:2c:d8:d5:c6:66:02:67:70:
3d:d8:cd:31:da:7c:98:48:d5:0c:e5:49:2a:53:aa:
f8:2d:73:99:24:85:90:99:15:fa:e0:99:51:5c:a7:
27:1d:3a:89:61:28:e9:9c:88:96:e0:d2:c7:8e:d9:
57:20:0d:02:f8:a4:39:b5:33:9b:0c:45:25:09:99:
7d:c8:67:03:d0:3b:87:a7:65:bd:73:08:25:c9:bc:
a0:b9:90:d4:a0:ec:bc:53:65:c9:89:b9:aa:e9:fb:
00:e7:b4:d9:47:3f:ff:c4:c6:69:6b:37:71:d1:43:
58:ec:d5:37:38:8d:5e:89:c5:f9:80:21:d2:6f:94:
2f:8a:09:3d:fc:4a:42:b6:cf:b3:4d:63:f4:f4:6d:
b9:26:0e:e0:49:5e:03:c1:84:22:ec:ae:b5:cb:fb:
ee:b9:9f:06:52:33:c0:1c:d9:79:d3:dc:c6:70:3a:
b4:68:1b:e7:ef:29:2e:c2:8d:2f:94:91:de:d0:1d:
fe:2f:63:39:a2:ed:f8:3c:48:5e:02:57:d9:f2:b4:
18:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C8:9F:B4:D6:81:15:7C:CC:D5:5A:56:02:1A:11:B1:50:F9:3B:65
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/mMiftNaBFXzM1VpWAhoRsVD5O2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7880:202::/48
Signature Algorithm: sha256WithRSAEncryption
ce:8b:77:31:04:5e:ba:2c:66:e0:6b:69:46:46:06:c0:25:f8:
63:25:d6:c3:9e:3f:08:3a:b1:c9:f4:96:a2:3a:c1:f3:92:32:
e9:a3:5d:56:8a:95:82:32:f6:f5:3b:b7:a7:25:74:c6:7e:43:
5a:80:ce:86:0e:b7:7b:7b:2b:ea:95:68:a6:ca:6a:da:cb:c9:
50:98:95:7e:66:3a:55:44:9f:c0:4a:40:4e:7d:68:36:4f:7e:
ea:17:88:5b:6b:e5:82:eb:67:2a:04:84:4f:4a:63:a8:66:8d:
b1:3c:63:4b:cc:7d:7c:b0:67:09:51:3e:b7:a1:74:2b:83:75:
f3:7f:67:e0:54:8d:fb:d7:d8:20:07:e9:8a:e6:97:e8:6e:8e:
9a:82:ba:61:4e:e1:d5:f3:6f:79:4e:98:5b:6c:22:1a:82:6e:
03:56:cd:2d:77:d7:6e:2d:fd:19:25:88:29:2a:bb:de:bc:ef:
94:4e:5c:2e:1c:c0:ae:ef:be:b6:71:34:ff:d3:cf:23:c5:a9:
0a:34:04:1f:a6:01:4e:12:e2:eb:d7:b8:a6:bc:5d:ad:68:d4:
b6:15:84:a3:b9:60:81:0a:75:bd:80:33:cc:0c:4b:87:e4:cc:
ed:b6:1a:2d:bf:d5:68:b7:ae:41:52:37:9e:b6:ac:d2:f9:26:
35:40:e0:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:32 2024 by rpki-client on console-ams.rpki-client.org