Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/xmMTU-q84zDY3kk4qDe5T6zli9M.roa
File: xmMTU-q84zDY3kk4qDe5T6zli9M.roa (raw, json)
Hash identifier: 7SGAstyJ0+rCglK2jtlaOl+bjI4r3eCI54i1eNteiM0=
Subject key identifier: C6:63:13:53:EA:BC:E3:30:D8:DE:49:38:A8:37:B9:4F:AC:E5:8B:D3
Certificate issuer: /CN=7d4d1c8790a913e832c733dff778dee79129700a
Certificate serial: 2466E49A
Authority key identifier: 7D:4D:1C:87:90:A9:13:E8:32:C7:33:DF:F7:78:DE:E7:91:29:70:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fU0ch5CpE-gyxzPf93je55EpcAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/xmMTU-q84zDY3kk4qDe5T6zli9M.roa
Signing time: Sat 01 Jan 2022 07:01:00 +0000
ROA not before: Sat 01 Jan 2022 07:01:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44880
IP address blocks: 192.101.75.0/24 maxlen: 24
2001:781::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 610722970 (0x2466e49a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d4d1c8790a913e832c733dff778dee79129700a
Validity
Not Before: Jan 1 07:01:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6631353eabce330d8de4938a837b94face58bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:af:a1:7e:f2:41:a3:5e:5f:10:2b:a6:a9:d3:
25:84:93:8c:0e:9f:34:d9:96:57:40:c3:0b:68:2c:
6d:3c:b9:05:a7:1d:d9:fc:0b:58:b7:6b:5c:63:ba:
74:a0:e4:ef:36:64:48:5b:47:dc:02:e7:14:ed:7f:
ff:0c:51:40:68:8f:1a:39:ce:10:aa:95:80:6e:64:
21:1a:90:a5:1b:fb:71:3b:f3:da:ea:ca:04:ce:dd:
eb:bb:0a:5a:bd:19:5d:e6:10:b0:9d:cf:85:61:56:
23:16:b2:12:90:82:3d:1e:1f:69:63:b5:84:11:13:
bb:1e:95:6a:a7:45:1c:31:f4:85:5a:86:e7:20:04:
b3:0e:52:51:83:cb:2b:ba:e4:f6:dc:db:a1:9a:48:
20:a9:2a:cb:f5:64:83:7a:98:ca:b8:59:e2:9e:3f:
48:c6:fd:a3:f9:f2:fd:f8:62:23:1c:21:06:f6:9b:
51:92:11:67:e1:49:25:76:94:30:40:6e:d2:2b:b3:
d0:7c:53:4d:75:51:e8:cd:f5:25:14:50:ae:ab:86:
89:02:f5:b3:f7:2b:0f:8a:63:ec:3d:9c:b4:d8:34:
ea:e0:a2:00:00:1d:85:39:9a:0e:c5:ad:54:7b:0f:
df:fd:cc:aa:01:f0:aa:a6:86:bf:37:14:a7:0a:c2:
28:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:63:13:53:EA:BC:E3:30:D8:DE:49:38:A8:37:B9:4F:AC:E5:8B:D3
X509v3 Authority Key Identifier:
keyid:7D:4D:1C:87:90:A9:13:E8:32:C7:33:DF:F7:78:DE:E7:91:29:70:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fU0ch5CpE-gyxzPf93je55EpcAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/xmMTU-q84zDY3kk4qDe5T6zli9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/fU0ch5CpE-gyxzPf93je55EpcAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.101.75.0/24
IPv6:
2001:781::/32
Signature Algorithm: sha256WithRSAEncryption
2a:fa:a3:ff:2d:dc:ef:28:e9:37:94:19:a6:42:b7:33:66:68:
2d:54:69:e2:fe:72:8d:99:4e:8b:61:5d:9b:ca:bf:69:d0:72:
d6:cd:01:12:b5:f0:eb:fd:d7:32:83:e7:17:56:05:16:b7:dd:
27:64:aa:ca:94:d5:9e:3d:ae:0b:7f:5d:01:9b:bc:9a:ce:47:
e5:19:18:bb:32:bf:46:b9:30:83:ea:fa:2b:90:b0:fa:88:77:
3f:41:ca:c9:e7:d5:20:d9:2a:bf:d6:a7:49:45:92:98:a6:0c:
14:7e:2d:40:df:d1:99:c1:2e:1b:67:80:e5:bb:39:83:6e:31:
9c:b3:d8:e3:da:e5:c5:7d:99:51:37:ab:4c:dc:de:81:ee:68:
df:d0:e5:1c:b9:15:9a:75:5d:33:24:6c:b8:e2:1f:11:de:3f:
61:7b:e9:48:81:5b:69:87:f7:5f:67:86:29:02:94:70:7a:ba:
67:05:fe:65:a2:c6:1d:51:bd:2b:39:b0:f0:2d:1f:c0:0a:5c:
22:76:e4:3d:b6:7f:0a:cb:22:be:a4:b1:c0:69:92:2d:ab:50:
4a:79:fa:f4:51:a7:7d:0e:19:4a:cb:90:7d:e4:1b:9b:52:aa:
4d:9d:c2:53:59:3f:e8:f5:9d:6e:fb:85:25:ad:ea:a2:cd:96:
bc:ab:21:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:28 2024 by rpki-client on console-fra.rpki-client.org