Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e58949-0302-41c3-ab49-305c7372579e/1/ms_y1pF_LQHVomemV12FqHdi-SA.roa
File: ms_y1pF_LQHVomemV12FqHdi-SA.roa (raw, json)
Hash identifier: HX8wVt2UEtQdrjitkd+MZiepGPO3I/PHmmLNtmiSIYg=
Subject key identifier: 9A:CF:F2:D6:91:7F:2D:01:D5:A2:67:A6:57:5D:85:A8:77:62:F9:20
Certificate issuer: /CN=566fb9b37c55df1aa8f0034a57d622f4d3732355
Certificate serial: 08765458
Authority key identifier: 56:6F:B9:B3:7C:55:DF:1A:A8:F0:03:4A:57:D6:22:F4:D3:73:23:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vm-5s3xV3xqo8ANKV9Yi9NNzI1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e58949-0302-41c3-ab49-305c7372579e/1/ms_y1pF_LQHVomemV12FqHdi-SA.roa
Signing time: Sat 01 Jan 2022 02:58:50 +0000
ROA not before: Sat 01 Jan 2022 02:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208904
IP address blocks: 2001:67c:2754::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141972568 (0x8765458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=566fb9b37c55df1aa8f0034a57d622f4d3732355
Validity
Not Before: Jan 1 02:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9acff2d6917f2d01d5a267a6575d85a87762f920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5d:40:2a:0e:b5:cd:10:1f:6b:cb:ba:72:1e:
fa:09:df:17:05:08:6b:d0:81:92:0d:78:24:57:d4:
06:59:a4:22:8e:2f:9c:4a:cd:2b:58:d9:84:c3:23:
46:15:34:75:80:0a:df:70:32:1c:c6:3f:f3:d6:62:
9b:02:6c:f3:29:e7:bf:91:f0:10:cb:b3:49:5f:ce:
d0:9a:bc:cd:dc:1a:50:fa:6f:3f:d3:59:5c:51:b3:
2c:c0:38:df:59:00:55:44:b5:33:cf:74:2c:ce:ba:
32:81:f6:82:ef:b8:f6:dd:a6:57:b9:69:28:66:55:
87:ba:3e:49:69:cd:dd:f5:f1:df:8c:ef:bc:fe:46:
d7:ec:a2:13:50:ef:f8:d9:0e:1f:f4:09:a3:22:12:
84:a1:65:35:77:cb:a1:6e:d2:31:51:5f:e4:5c:18:
b3:bc:12:9d:c4:36:f4:5e:70:6b:2b:fa:e5:6d:7a:
98:87:18:d6:b5:72:37:b4:f8:01:61:f9:4b:b1:3d:
89:78:57:4b:16:54:1e:cc:ad:13:20:10:15:2d:f8:
ef:21:87:d5:1d:b3:b6:83:03:fe:d5:61:2a:b3:22:
ec:0c:54:78:a5:23:60:22:03:10:12:f0:f2:d6:7e:
ec:b4:0a:39:75:41:48:7e:ec:f0:ac:f2:34:55:08:
85:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CF:F2:D6:91:7F:2D:01:D5:A2:67:A6:57:5D:85:A8:77:62:F9:20
X509v3 Authority Key Identifier:
keyid:56:6F:B9:B3:7C:55:DF:1A:A8:F0:03:4A:57:D6:22:F4:D3:73:23:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vm-5s3xV3xqo8ANKV9Yi9NNzI1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e58949-0302-41c3-ab49-305c7372579e/1/ms_y1pF_LQHVomemV12FqHdi-SA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e58949-0302-41c3-ab49-305c7372579e/1/Vm-5s3xV3xqo8ANKV9Yi9NNzI1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2754::/48
Signature Algorithm: sha256WithRSAEncryption
a6:54:a7:04:bf:5e:2f:27:d9:dc:2a:88:59:d7:8a:bd:79:9c:
a2:11:d3:8b:4e:2e:51:f9:33:6e:88:74:dd:9a:ca:51:78:33:
0b:e0:d4:6d:c0:19:36:35:e4:ec:41:dc:dd:23:11:7f:d7:b6:
fa:5d:a9:8d:7a:bb:4d:dc:78:0b:55:1a:d7:88:b1:cb:d1:d4:
b3:68:4c:f0:1a:69:b7:a5:5f:5d:eb:0b:3a:ca:4f:b3:d5:68:
c4:fb:d4:bd:72:7f:ee:61:a7:4b:a1:7c:28:c8:b4:9d:86:fd:
b9:23:3d:43:14:ed:cf:92:5d:cd:da:19:b3:24:44:27:ce:88:
61:be:67:0b:fd:82:c6:41:72:51:f2:eb:a5:d1:95:54:24:48:
a9:77:a5:20:4b:c3:12:4a:29:54:fd:9d:c8:19:42:32:0c:f1:
df:39:0e:a8:25:07:ff:82:01:3d:f4:48:71:1c:bc:eb:ac:98:
21:62:07:f7:59:55:41:0e:b1:2e:5b:a4:88:2f:6a:47:7b:2f:
62:8d:d0:3a:e7:70:c9:d3:b2:bb:f3:9d:53:24:2b:53:c9:d2:
04:4f:ac:15:c6:4e:9a:47:19:a2:d4:88:e3:f0:68:9f:8d:53:
a1:d3:66:57:f1:0b:9b:7f:75:b4:af:ba:ac:a0:8c:47:28:ce:
90:04:f1:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:18 2024 by rpki-client on console-fra.rpki-client.org