Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/ldzem0oUgqRtJIbNZWJD6JUZyLA.roa
File: ldzem0oUgqRtJIbNZWJD6JUZyLA.roa (raw, json)
Hash identifier: 0zhaKGrkkehncrQM5tdD6QK35n0k7i99soV+8ktCDuE=
Subject key identifier: 95:DC:DE:9B:4A:14:82:A4:6D:24:86:CD:65:62:43:E8:95:19:C8:B0
Certificate issuer: /CN=9e1533c4702c2ccb5a9e0e87ab27ad56b15f2c76
Certificate serial: 23B397
Authority key identifier: 9E:15:33:C4:70:2C:2C:CB:5A:9E:0E:87:AB:27:AD:56:B1:5F:2C:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhUzxHAsLMtang6HqyetVrFfLHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/ldzem0oUgqRtJIbNZWJD6JUZyLA.roa
Signing time: Thu 19 May 2022 19:00:29 +0000
ROA not before: Thu 19 May 2022 19:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49772
IP address blocks: 2a12:e6c0:f001::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2339735 (0x23b397)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1533c4702c2ccb5a9e0e87ab27ad56b15f2c76
Validity
Not Before: May 19 19:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95dcde9b4a1482a46d2486cd656243e89519c8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cf:1a:a6:6a:22:96:37:4f:99:47:66:3b:1b:
14:b3:03:58:c5:31:3d:5a:e7:af:c1:8b:b2:22:cc:
c3:c3:cc:3f:08:55:6e:ab:4f:b8:f9:48:d9:ac:49:
b8:46:1e:17:0a:3c:ec:66:57:84:2a:d5:13:41:35:
7d:64:f2:d3:1c:3e:c8:e4:25:a1:e8:8a:71:77:86:
a6:9c:5d:e7:9f:9c:0d:f7:89:62:84:b5:f3:e8:6a:
02:fe:88:1a:a2:0b:03:f2:fd:03:fd:74:64:1c:97:
11:99:06:2c:0f:86:04:86:d9:32:05:c6:d7:ca:83:
19:2e:30:2a:f3:a8:79:a9:36:2b:86:3c:19:d4:87:
f2:e5:33:27:78:ed:2c:98:82:3b:bb:e5:a2:69:3a:
ce:d0:b5:01:f1:bf:a8:bb:2b:1c:e5:44:cf:a3:56:
83:d9:53:6a:2b:9f:74:de:57:7e:7e:a0:6b:d6:b6:
bf:b5:93:cb:f9:56:fd:61:d2:cc:68:43:49:55:4e:
85:dd:93:f8:e5:ff:94:2c:03:56:9b:38:af:f1:c6:
c5:b8:1e:e2:73:07:4f:ce:70:7a:86:23:29:a0:81:
ec:ab:48:53:4a:4d:e4:fa:b9:de:cd:51:e5:7f:37:
33:03:a9:58:82:9e:9e:8a:95:70:84:d8:07:29:07:
c1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DC:DE:9B:4A:14:82:A4:6D:24:86:CD:65:62:43:E8:95:19:C8:B0
X509v3 Authority Key Identifier:
keyid:9E:15:33:C4:70:2C:2C:CB:5A:9E:0E:87:AB:27:AD:56:B1:5F:2C:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhUzxHAsLMtang6HqyetVrFfLHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/ldzem0oUgqRtJIbNZWJD6JUZyLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/nhUzxHAsLMtang6HqyetVrFfLHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e6c0:f001::/48
Signature Algorithm: sha256WithRSAEncryption
21:7f:4f:27:be:27:a1:45:1c:9a:7c:a2:dd:ad:22:1e:c9:f9:
a6:d6:5a:b8:49:79:53:63:cf:6e:a3:64:3a:9e:1e:7d:ae:da:
c1:37:b6:32:87:3d:84:7d:32:b5:7b:90:98:3f:33:77:6a:c2:
88:ec:e6:e0:01:f2:d2:9f:60:71:f2:18:f1:c4:73:2b:66:4f:
3a:bd:aa:21:94:1c:fb:eb:8c:02:13:46:7c:be:dc:de:44:79:
b0:4f:dc:84:8e:6c:26:bc:92:72:4b:6a:e1:a9:14:25:76:6f:
34:dd:6f:b9:3c:65:61:48:c3:44:7b:c0:9b:21:a6:b9:46:bd:
2d:55:62:81:43:e2:2d:f3:4b:12:e4:5d:99:bb:82:1d:8e:cc:
f5:8c:8c:7a:e2:6e:f2:7e:92:48:6e:d9:94:63:48:24:0a:bc:
d9:4b:73:49:c0:dd:b6:28:a3:1d:c9:12:77:03:ab:e8:88:81:
19:07:1f:07:6a:2e:cc:75:48:1e:10:61:35:9f:89:24:1b:21:
83:e0:aa:f5:8c:0b:e7:0a:54:6b:57:f5:91:8d:e4:0a:d5:7d:
07:c1:06:a3:79:91:cc:71:87:fb:f3:ac:23:71:d7:e4:9c:22:
2d:aa:61:e8:1e:2d:27:45:d7:55:fd:23:0b:92:41:88:00:69:
0c:13:cb:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:04 2024 by rpki-client on console-fra.rpki-client.org