Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/82k6kIFCU_tqRd1j8mLEOwIM1d4.roa
File: 82k6kIFCU_tqRd1j8mLEOwIM1d4.roa (raw, json)
Hash identifier: R+1r5//auB0Pme9cd/YZezfv3/sxcjg+B92Rm/UqRVY=
Subject key identifier: F3:69:3A:90:81:42:53:FB:6A:45:DD:63:F2:62:C4:3B:02:0C:D5:DE
Certificate issuer: /CN=b0e25bcc5530b6f46f3d11cb8113f219a46dfdab
Certificate serial: 01D6D7
Authority key identifier: B0:E2:5B:CC:55:30:B6:F4:6F:3D:11:CB:81:13:F2:19:A4:6D:FD:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sOJbzFUwtvRvPRHLgRPyGaRt_as.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/82k6kIFCU_tqRd1j8mLEOwIM1d4.roa
Signing time: Tue 08 Feb 2022 12:57:12 +0000
ROA not before: Tue 08 Feb 2022 12:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208869
IP address blocks: 2a12:6bc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120535 (0x1d6d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0e25bcc5530b6f46f3d11cb8113f219a46dfdab
Validity
Not Before: Feb 8 12:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3693a90814253fb6a45dd63f262c43b020cd5de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7a:c7:3f:96:56:e1:10:58:ce:df:be:58:5c:
6c:b5:8a:93:30:1b:67:de:80:fe:3a:f4:a3:fc:c3:
93:ee:6c:b7:fe:a3:98:cb:b0:f9:1e:bc:82:f7:2b:
f8:fb:50:ca:b5:e5:91:0f:0a:fa:7f:be:58:d5:40:
9b:a1:18:92:01:61:3a:c7:a7:8e:d9:6c:2e:05:ac:
25:0b:3a:2a:36:ca:43:d1:43:6e:77:64:0a:09:af:
dc:fc:27:bc:d9:81:a5:06:b7:38:a6:47:2f:8d:df:
c3:5e:19:87:e1:f7:3e:ae:b3:07:f5:1c:6d:a7:43:
f9:12:71:aa:64:81:e6:4b:3d:53:22:9e:f1:5f:02:
a6:72:1d:d0:7a:32:81:c7:b4:4b:a2:7f:31:7c:41:
99:ba:fa:08:34:78:f7:ba:97:f8:a3:97:fe:29:75:
0e:9f:f1:69:48:27:35:1c:ee:cc:6e:d6:e6:5a:4f:
b9:91:e2:5a:c5:5e:a9:39:2d:32:67:37:cb:2b:5a:
34:e7:30:9c:5a:3f:58:6a:12:7f:04:e4:15:47:d9:
51:fe:59:04:4e:a0:d9:6a:f3:b6:b2:4f:24:57:a2:
2c:1a:74:2f:1c:1f:ee:fa:96:ba:c1:61:19:97:9c:
3b:c9:fb:63:bc:22:4c:11:9f:ed:ad:fe:6f:35:4f:
58:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:69:3A:90:81:42:53:FB:6A:45:DD:63:F2:62:C4:3B:02:0C:D5:DE
X509v3 Authority Key Identifier:
keyid:B0:E2:5B:CC:55:30:B6:F4:6F:3D:11:CB:81:13:F2:19:A4:6D:FD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sOJbzFUwtvRvPRHLgRPyGaRt_as.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/82k6kIFCU_tqRd1j8mLEOwIM1d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/sOJbzFUwtvRvPRHLgRPyGaRt_as.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6bc0::/29
Signature Algorithm: sha256WithRSAEncryption
70:4e:fc:57:fe:ad:4a:87:83:04:c4:90:fe:5e:0d:2d:33:9f:
c0:2d:91:bc:fb:48:db:ea:71:99:b3:dd:c9:5b:7e:b7:3d:aa:
ee:b1:f3:f5:64:e7:d4:59:34:0f:f7:4e:a8:d0:d8:82:30:3f:
c4:d7:92:71:b0:a6:14:50:8f:d7:45:9a:18:54:41:fd:9a:c1:
b4:a9:eb:31:dc:1d:5d:fe:9d:ae:43:8f:5e:f0:a2:44:88:ab:
59:86:2a:f8:00:8e:f8:e4:5f:3c:c6:f6:88:82:f1:58:8b:bb:
41:e4:c0:70:50:48:5d:83:6f:a1:75:80:87:eb:85:e2:7d:7e:
a7:93:5b:c5:59:5a:96:5d:38:b2:c4:fa:a2:4e:81:c6:de:11:
6e:59:86:67:36:ff:86:87:74:6d:0d:97:10:cf:9a:67:ef:31:
12:00:b8:15:65:b3:3f:04:cf:f8:25:f0:0e:5c:60:1f:c0:f9:
68:ca:fc:76:85:9e:a2:12:de:11:b1:93:bf:30:0a:1a:74:34:
5d:a6:5e:27:44:45:06:64:ed:75:7b:da:15:52:fd:fa:e2:ec:
31:0a:7c:af:9b:24:45:b0:0b:c8:f6:94:62:34:f9:d2:fe:69:
b7:1d:03:c9:5f:fc:64:40:c9:22:d4:4e:5d:b6:b2:c8:32:3b:
9b:48:a7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:18 2024 by rpki-client on console-ams.rpki-client.org