Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/a5LWiAVDcwoqUVWxFaGx5igAqSQ.roa
File: a5LWiAVDcwoqUVWxFaGx5igAqSQ.roa (raw, json)
Hash identifier: jjFnOPDmmxqBVUWky+Pvr2QkEw9ezdbFOcqDxsanMno=
Subject key identifier: 6B:92:D6:88:05:43:73:0A:2A:51:55:B1:15:A1:B1:E6:28:00:A9:24
Certificate issuer: /CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Certificate serial: 01851CE0D624EFEA8EC84DF117F8AA7AF900
Authority key identifier: 3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/a5LWiAVDcwoqUVWxFaGx5igAqSQ.roa
Signing time: Fri 16 Dec 2022 21:39:35 +0000
ROA not before: Fri 16 Dec 2022 21:39:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201273
IP address blocks: 2a12:8340::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:e0:d6:24:ef:ea:8e:c8:4d:f1:17:f8:aa:7a:f9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Validity
Not Before: Dec 16 21:39:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b92d6880543730a2a5155b115a1b1e62800a924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:83:e4:09:87:d1:3a:31:f2:93:2c:84:3b:
9d:ef:e9:31:88:76:c4:c8:0e:48:29:04:4e:83:7b:
32:a7:9f:88:13:f1:ae:a2:82:1d:27:f4:1c:46:1d:
ac:71:b4:e3:ac:28:58:e9:96:2f:a9:bd:98:84:fa:
6b:b4:70:f7:0a:45:b2:3b:7c:4c:be:09:73:5b:51:
ba:9c:06:3d:c7:ad:c3:c0:c3:89:68:39:76:f8:74:
46:ec:9e:22:28:6d:65:0a:59:c7:dc:68:64:ba:8b:
96:b3:3d:7f:1f:27:44:85:2b:88:b8:31:75:80:29:
48:7f:5f:de:77:95:6a:54:fa:5c:b4:47:3f:36:29:
84:e0:5c:c7:d9:07:d2:83:17:72:15:b9:1e:39:9b:
a3:25:1f:ab:48:38:70:bb:ea:24:ed:da:c4:c8:f6:
96:00:f1:bd:53:ba:c9:97:97:30:2f:ea:16:ee:57:
99:05:e6:ee:72:64:97:b3:28:ad:1c:7f:8d:d7:29:
32:75:bf:b4:03:d4:36:49:04:70:be:00:a5:63:fc:
ac:c3:6f:0d:61:b5:e9:e2:94:f8:e0:cd:68:7d:37:
f9:ca:13:e4:41:50:2b:81:50:ae:74:f4:ff:03:cf:
05:89:32:d7:08:68:8c:6c:6a:f6:00:d8:48:72:3f:
f0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:92:D6:88:05:43:73:0A:2A:51:55:B1:15:A1:B1:E6:28:00:A9:24
X509v3 Authority Key Identifier:
keyid:3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/a5LWiAVDcwoqUVWxFaGx5igAqSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8340::/48
Signature Algorithm: sha256WithRSAEncryption
48:77:b7:1a:dc:29:b4:f4:74:54:48:f0:74:b0:f0:cc:c6:bb:
e4:51:a9:4d:27:d0:46:72:54:a2:13:40:37:df:76:6f:48:52:
55:35:6c:ba:af:e1:07:56:5c:67:05:c8:d2:16:69:d1:82:35:
b1:c0:a2:1a:04:ac:bf:e4:fc:5b:ed:11:f6:9e:e8:23:0c:76:
f9:3b:2e:b0:81:71:9c:9c:08:2c:79:3d:65:65:4c:dd:76:93:
fd:78:42:23:2a:9f:40:07:cf:09:18:b9:44:79:4f:bb:49:ba:
55:b6:2d:c6:67:76:99:cf:82:35:f9:78:b1:02:01:63:eb:90:
02:de:33:08:79:5b:b2:87:91:d8:3e:6a:6a:ba:e6:ba:10:21:
b1:e6:2e:45:73:a6:af:a7:22:e7:e9:18:88:60:57:97:71:fc:
1c:ac:b9:b7:d0:62:ed:d7:ac:37:f7:78:c0:26:ab:b7:4f:61:
bd:13:7d:0b:b2:67:49:67:55:61:d3:fb:f4:b1:20:42:da:a3:
1b:de:86:03:af:59:c6:e6:44:01:a5:24:d1:d0:52:fe:2b:a2:
dd:4a:65:5a:f1:33:48:5f:21:0b:6d:48:59:3e:1e:39:e3:59:
4b:48:b3:1c:b7:8e:f9:58:d1:ad:f6:4b:de:0f:bf:18:20:20:
43:c0:03:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:56 2024 by rpki-client on console-fra.rpki-client.org