Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/1jsLHjyIZvXqwQQvITw4F8qWjz0.roa
File: 1jsLHjyIZvXqwQQvITw4F8qWjz0.roa (raw, json)
Hash identifier: szpA3yeCj9NSdsHho43V2+45K3negK06rrkI0ntFVxQ=
Subject key identifier: D6:3B:0B:1E:3C:88:66:F5:EA:C1:04:2F:21:3C:38:17:CA:96:8F:3D
Certificate issuer: /CN=cf10ad912ef942aacb4d10add39903c6e9fbb03a
Certificate serial: 0184D2D953EA78FE58BBA4560E9F07B95685
Authority key identifier: CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/1jsLHjyIZvXqwQQvITw4F8qWjz0.roa
Signing time: Fri 02 Dec 2022 12:39:28 +0000
ROA not before: Fri 02 Dec 2022 12:39:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211557
IP address blocks: 2a12:1dc7:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:d9:53:ea:78:fe:58:bb:a4:56:0e:9f:07:b9:56:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf10ad912ef942aacb4d10add39903c6e9fbb03a
Validity
Not Before: Dec 2 12:39:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d63b0b1e3c8866f5eac1042f213c3817ca968f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2b:af:c8:90:9f:f3:d3:2a:35:67:07:a8:f7:
92:3d:b7:78:32:3d:70:4e:a7:31:c7:15:e9:e4:0d:
71:76:a0:f0:10:92:c5:c4:ca:50:60:c6:c7:6e:70:
05:99:97:a0:02:3d:be:7d:56:77:75:0c:9c:34:00:
ff:c5:97:a1:12:5d:98:c8:43:de:26:ca:7d:2a:0c:
b0:a0:a6:b8:7b:14:b3:fe:dd:1c:84:aa:24:82:56:
0e:b5:9e:78:3d:b0:7b:b6:0d:30:29:5f:ae:ca:cb:
75:2e:be:68:92:08:50:90:9f:d2:a0:79:b5:1d:11:
93:05:1f:29:4c:c8:52:09:21:f3:3e:46:51:40:36:
96:02:0f:ad:ca:30:b2:1d:7e:fc:70:c6:56:2e:ec:
46:8b:aa:13:74:96:b6:29:37:cf:42:fe:b4:ee:23:
57:0d:cb:61:a1:08:54:1e:46:de:68:68:73:72:09:
17:36:55:c7:f6:79:de:f0:fb:17:df:ac:ff:0d:3b:
52:13:18:7e:07:ad:86:28:bd:ac:db:72:12:9e:a2:
f7:ec:76:e7:d1:6c:0c:c2:01:e2:7e:e8:19:2b:1f:
36:1c:98:de:29:21:d9:99:65:a3:3e:aa:0c:71:af:
e1:bf:28:3b:3f:66:e0:06:a9:8d:d7:79:ae:25:63:
55:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3B:0B:1E:3C:88:66:F5:EA:C1:04:2F:21:3C:38:17:CA:96:8F:3D
X509v3 Authority Key Identifier:
keyid:CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/1jsLHjyIZvXqwQQvITw4F8qWjz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/zxCtkS75QqrLTRCt05kDxun7sDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:1dc7:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
30:ea:1d:94:c9:28:8a:a9:a1:dc:22:40:18:e1:d7:1e:d6:e0:
d9:36:20:30:fe:35:8b:d5:2c:b0:f4:4a:94:54:4e:61:29:00:
e0:be:e5:fc:ae:47:f3:c9:7f:54:99:73:80:a6:8d:00:89:f1:
73:14:77:70:c7:b2:f0:12:41:f9:1d:ec:c9:e7:d1:7e:c5:0d:
ab:50:60:7c:d8:72:0b:80:e7:5d:ca:7b:6f:5f:6d:52:77:45:
75:8d:f0:c1:54:12:bc:4c:e7:22:e4:f0:36:a6:35:a5:04:0b:
c9:84:de:5f:ba:70:64:45:7c:44:16:13:ad:b9:4b:dd:b4:98:
e9:d0:e6:72:ab:96:61:fb:e2:a9:7d:9f:3b:84:d8:98:6c:16:
46:2d:77:09:85:54:87:ce:45:77:0e:a9:ad:97:3b:b3:eb:d6:
bf:42:69:25:13:66:76:e6:59:44:24:6b:23:cd:44:8a:8d:74:
0b:65:e6:a1:93:d2:f5:34:f5:9f:12:48:02:c6:7f:d7:17:fb:
a1:e5:dd:49:b6:5c:3c:81:a3:43:8c:09:2c:b7:c7:c2:04:b9:
ef:99:3c:02:f4:df:56:3b:bf:d7:45:23:4b:d1:5f:75:10:91:
28:65:37:28:9d:29:fe:c1:c4:9f:cd:18:f5:b9:74:b6:cb:3c:
48:4c:43:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:17 2024 by rpki-client on console-fra.rpki-client.org