Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/SKtJsr-noqn5t2E3fcKqYUFBTB0.roa
File: SKtJsr-noqn5t2E3fcKqYUFBTB0.roa (raw, json)
Hash identifier: nhPi9EG0dV21JWLxibikn+GejzA11W5JyyegLPE7Zso=
Subject key identifier: 48:AB:49:B2:BF:A7:A2:A9:F9:B7:61:37:7D:C2:AA:61:41:41:4C:1D
Certificate issuer: /CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Certificate serial: 037493
Authority key identifier: 1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/SKtJsr-noqn5t2E3fcKqYUFBTB0.roa
Signing time: Thu 19 May 2022 02:27:16 +0000
ROA not before: Thu 19 May 2022 02:27:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13347
IP address blocks: 2a12:f3c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226451 (0x37493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Validity
Not Before: May 19 02:27:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48ab49b2bfa7a2a9f9b761377dc2aa6141414c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:94:b8:f9:01:e4:7f:39:e2:e0:49:90:19:6d:
b9:b0:a0:15:12:a4:fa:6d:4f:08:ee:78:ae:b3:b4:
eb:6d:3d:8e:0e:dd:f5:af:d9:52:a0:f3:1d:3d:2f:
0e:dd:06:19:41:b8:ab:93:1d:cd:cb:71:f0:26:41:
20:92:8e:96:38:63:82:f4:1a:c9:a5:2c:25:1c:19:
25:c6:16:1f:5f:e6:53:4d:aa:c6:7b:41:31:67:e0:
7f:54:39:4c:8f:2c:47:15:2f:1e:92:91:be:c3:17:
f7:0f:11:70:70:f1:e5:f7:24:db:0b:70:33:27:7b:
8c:ad:82:0b:8d:19:26:7f:c4:8f:47:30:f4:e7:1c:
01:37:84:3f:49:58:bf:ec:56:b1:8a:f7:d5:3a:4b:
81:10:12:c6:86:d9:49:db:10:de:c5:45:ed:81:29:
cd:a4:8d:8b:8e:0f:9c:1d:50:8b:ea:c3:9f:83:ae:
e0:aa:88:e8:f3:f1:11:bc:a9:82:1d:36:df:e1:91:
e4:3a:bb:00:7f:16:d7:3b:3e:2b:a1:67:97:2f:1e:
e7:a1:b7:27:df:58:e8:22:4c:05:0a:7e:bb:25:f6:
5c:52:f8:e2:0e:cd:07:21:36:ea:54:ae:54:60:2f:
cb:76:9a:c3:24:de:98:3d:22:d1:3a:d2:ba:d7:e2:
40:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AB:49:B2:BF:A7:A2:A9:F9:B7:61:37:7D:C2:AA:61:41:41:4C:1D
X509v3 Authority Key Identifier:
keyid:1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/SKtJsr-noqn5t2E3fcKqYUFBTB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/GpFU4cVXiw_virt3n4EX5k6ITRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f3c0::/29
Signature Algorithm: sha256WithRSAEncryption
96:94:78:fd:7c:f1:3c:8b:e2:9c:69:41:ac:f5:fd:e3:e7:30:
25:6f:d9:ac:89:e9:67:4a:0f:53:84:a6:d0:32:3e:a3:f3:a5:
77:95:17:60:14:9c:a4:a5:be:eb:16:45:a5:3c:fc:95:d5:af:
d2:d9:c2:0f:b5:01:d7:1e:81:b6:c8:e3:e6:c0:fc:d2:7c:0c:
c9:c9:dd:86:0b:35:e1:6b:92:f6:d7:af:16:84:c7:fe:1b:d7:
7a:e9:1c:80:30:57:d2:37:4b:4d:44:98:01:14:5d:44:d4:a5:
2d:2e:2c:a3:48:ca:2d:cb:88:42:6a:ed:02:3c:d2:9d:80:b5:
74:56:c6:d4:21:10:22:4f:0e:40:a4:f9:50:27:51:56:a0:6c:
b9:e8:55:dc:2e:01:63:dd:c5:f7:4c:69:55:05:df:ee:50:59:
63:3b:5e:2c:f4:19:82:81:91:f4:d7:84:ff:74:f0:c9:38:72:
54:20:c6:17:e8:8d:e7:6b:5c:48:57:bf:31:f0:72:54:58:7f:
1d:7b:6c:57:3b:7e:0f:93:1b:ff:63:1d:e3:0e:3a:c7:59:fa:
bf:8d:70:6f:0e:35:7d:c5:54:8f:04:03:6a:b8:84:f9:9a:48:
2d:74:da:5b:58:ef:34:ac:0f:7e:4f:42:3a:2b:3b:90:08:07:
e4:06:21:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:19 2024 by rpki-client on console-fra.rpki-client.org