Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/pMwJ7EOfYA8I4q0twUQqhUYa61E.roa
File: pMwJ7EOfYA8I4q0twUQqhUYa61E.roa (raw, json)
Hash identifier: ANDA3g5COXvHm6fKrhzDKUUTsfdOCAmQnpI7uV2wjhA=
Subject key identifier: A4:CC:09:EC:43:9F:60:0F:08:E2:AD:2D:C1:44:2A:85:46:1A:EB:51
Certificate issuer: /CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Certificate serial: 05C2E42B
Authority key identifier: D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/pMwJ7EOfYA8I4q0twUQqhUYa61E.roa
Signing time: Sat 01 Jan 2022 13:02:05 +0000
ROA not before: Sat 01 Jan 2022 13:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200924
IP address blocks: 2001:678:c9c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96658475 (0x5c2e42b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Validity
Not Before: Jan 1 13:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4cc09ec439f600f08e2ad2dc1442a85461aeb51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ce:fd:75:36:c2:07:e3:ec:22:bf:0b:8b:b3:
0c:45:08:09:41:dd:ff:69:11:88:27:7d:a6:00:be:
13:68:c9:66:29:41:17:d6:ec:4f:18:f5:36:7e:e8:
d9:c9:bb:87:4d:9d:8e:98:cf:96:ef:fa:71:04:cc:
ee:49:9e:a9:f2:61:64:83:5b:82:35:fd:54:d3:65:
c8:ae:eb:89:08:fa:7d:3b:3c:12:96:de:53:47:30:
29:53:d5:28:24:7c:f6:43:97:9a:bb:b6:24:85:c6:
7d:01:d9:69:6e:e3:91:e3:7f:44:94:06:ed:e6:dd:
23:66:16:35:f6:40:9e:00:3d:ed:98:13:eb:4d:0e:
43:57:59:47:94:0c:2a:62:fd:bf:39:25:67:ee:30:
48:79:29:f7:22:01:0c:74:6f:2c:b7:17:98:50:23:
44:1e:ae:6e:54:8c:da:c6:0c:33:70:b1:af:a7:8c:
9a:7e:ee:61:05:49:27:34:01:92:03:50:f7:0c:ad:
80:ba:c8:99:76:f7:e5:35:4c:6f:21:55:d8:55:3d:
f5:ea:9c:40:2a:22:6f:e4:d4:1a:44:77:a1:8c:9a:
23:87:04:04:20:ea:c0:1d:32:c0:aa:a8:0e:12:ac:
ed:37:39:43:60:7b:1c:90:22:16:22:c2:09:27:5c:
38:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CC:09:EC:43:9F:60:0F:08:E2:AD:2D:C1:44:2A:85:46:1A:EB:51
X509v3 Authority Key Identifier:
keyid:D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/pMwJ7EOfYA8I4q0twUQqhUYa61E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c9c::/48
Signature Algorithm: sha256WithRSAEncryption
47:a3:21:52:fb:76:75:52:3f:ae:82:83:bd:90:43:64:c2:36:
99:42:af:84:d8:b2:0a:80:e4:57:55:61:ab:0a:c6:50:fe:57:
86:de:28:50:53:be:20:bf:5f:56:e3:ed:9f:f8:28:3d:44:d8:
96:9e:4a:8c:04:91:9f:3a:f8:e6:7a:2e:cc:97:b3:35:6a:47:
65:33:d6:09:d8:50:5a:46:87:c4:9b:b2:7b:8a:c9:52:66:f6:
83:cb:11:04:6b:9a:49:6d:a7:7f:3c:63:6c:90:a5:58:05:e4:
ab:af:1f:70:00:81:eb:60:2a:26:ed:91:06:70:17:83:29:9e:
b4:ea:42:35:d8:15:25:86:a5:a8:44:cd:bc:b9:7c:8f:60:d5:
0c:9a:5c:ab:02:da:87:d9:2a:57:9b:fb:dd:07:56:25:68:4f:
b9:5f:26:18:56:38:75:5c:bf:f5:0d:91:0c:e3:13:77:ec:bf:
eb:5e:fb:d1:3a:72:11:b1:72:73:f4:fc:f6:d8:2c:17:ef:52:
1a:6e:0c:f4:fc:69:20:3c:26:30:df:87:e2:30:19:51:a4:20:
e9:dd:1a:da:3c:55:7d:e0:8a:4a:69:ce:97:94:81:8f:25:e5:
4c:19:92:8b:b2:40:77:3d:10:d8:f8:1b:f3:ad:1f:71:c6:bb:
f6:44:71:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:38 2023 by rpki-client on console-ams.rpki-client.org