Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rCIXIRlRZmhrn2GdBsiBEpdtZdg.roa
File: rCIXIRlRZmhrn2GdBsiBEpdtZdg.roa (raw, json)
Hash identifier: rpEZeOHT6CIWZAR3x8ISzOj9SI8buQ7FrB3/nk/ULq8=
Subject key identifier: AC:22:17:21:19:51:66:68:6B:9F:61:9D:06:C8:81:12:97:6D:65:D8
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 14E27F06
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rCIXIRlRZmhrn2GdBsiBEpdtZdg.roa
Signing time: Mon 09 May 2022 06:37:12 +0000
ROA not before: Mon 09 May 2022 06:37:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 82.115.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350387974 (0x14e27f06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 9 06:37:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac221721195166686b9f619d06c88112976d65d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fa:b9:ef:fc:8a:18:39:fe:e3:d2:f8:2d:73:
fb:d6:d1:35:48:bc:84:15:b2:d9:d3:b1:4a:cc:87:
fa:cb:08:48:f3:6c:e1:69:70:22:c3:97:3b:17:e1:
bf:ae:08:11:0c:10:3f:f2:46:b9:5c:ae:29:ea:90:
20:b3:7d:29:2b:7c:c3:b3:fa:f2:ab:73:8b:91:1c:
3e:63:bf:eb:94:7c:a4:54:08:a5:83:bb:31:6e:6d:
21:31:2e:79:ab:32:88:11:fa:c8:b6:bb:00:ae:a9:
ea:7c:96:b9:a7:c4:86:b4:d2:88:23:44:7a:47:eb:
22:6f:18:08:f6:f4:60:a1:25:97:f8:4b:f1:8b:a2:
98:ac:dd:95:38:20:2f:c5:76:55:ae:aa:52:2f:67:
61:d9:4f:2c:c6:98:cb:70:cc:2e:c0:8a:4c:34:05:
15:96:03:e4:37:bd:80:c5:44:8d:7f:b5:c2:2e:7e:
31:8f:65:3d:1f:ed:c8:e7:0f:b7:57:d0:d5:61:b9:
65:69:9c:37:44:47:e9:14:f8:a5:e5:bb:ea:28:ce:
d0:a4:ae:4a:d7:64:c7:49:41:53:fe:a4:43:63:bd:
ca:b0:b0:79:ec:b2:6c:bf:35:b7:ff:2c:4b:9b:23:
26:a2:cc:66:b1:6c:46:37:c4:2e:9a:c6:22:d9:98:
94:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:22:17:21:19:51:66:68:6B:9F:61:9D:06:C8:81:12:97:6D:65:D8
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rCIXIRlRZmhrn2GdBsiBEpdtZdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.12.0/23
Signature Algorithm: sha256WithRSAEncryption
74:ad:3b:fe:7f:99:d5:79:c9:68:be:0e:42:ab:19:59:63:fc:
12:01:cb:77:af:10:fb:67:df:79:7c:7c:4d:06:70:a9:8b:f9:
ab:d4:79:3b:e3:b0:3a:e3:08:97:20:88:90:13:07:da:44:e3:
ca:fb:c4:a9:67:42:ba:eb:f6:b3:73:49:6e:f4:43:c2:44:58:
ec:15:17:d2:a0:ea:87:0a:a1:d3:ef:2f:a9:63:38:44:b4:3b:
c5:78:51:9c:fc:ca:94:dd:c3:de:b9:ad:66:31:c0:ce:f9:c1:
bf:1e:a9:73:e3:05:a3:3b:bd:09:03:9a:45:5f:c8:dd:cd:80:
5b:b9:51:84:da:3c:15:c8:fb:38:9d:15:a2:9f:d7:a9:55:40:
4c:b8:85:7b:62:36:f7:ed:45:dd:0d:03:b3:48:94:68:09:4c:
ec:50:d9:48:0c:96:ea:2f:8e:f1:c6:dd:26:0c:46:44:1d:fb:
04:09:21:bf:08:16:c0:64:04:73:c5:58:0d:f8:a5:3d:53:e1:
a0:ea:3e:5d:e9:f5:6f:55:c2:97:92:d6:48:6c:37:92:69:1f:
79:9a:bf:4c:70:7f:7c:6a:6d:84:0a:5f:13:26:de:95:dd:8d:
c7:44:5e:18:81:76:a2:ca:b2:f0:66:e0:2c:4a:ed:b7:4b:24:
67:6f:90:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org