Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/0mn0Oms8z5pDmXk_eifMLW5FbYI.roa
File: 0mn0Oms8z5pDmXk_eifMLW5FbYI.roa (raw, json)
Hash identifier: /cEcxjkl1diTq+a3bGWyNtvaxfIi1CNC/ZrYNaDWjWs=
Subject key identifier: D2:69:F4:3A:6B:3C:CF:9A:43:99:79:3F:7A:27:CC:2D:6E:45:6D:82
Certificate issuer: /CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Certificate serial: 012869
Authority key identifier: 34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/0mn0Oms8z5pDmXk_eifMLW5FbYI.roa
Signing time: Mon 21 Feb 2022 07:21:53 +0000
ROA not before: Mon 21 Feb 2022 07:21:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51235
IP address blocks: 2a12:5440::/45 maxlen: 45
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75881 (0x12869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Validity
Not Before: Feb 21 07:21:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d269f43a6b3ccf9a4399793f7a27cc2d6e456d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1d:3e:3f:ce:93:16:46:85:67:36:bb:3c:96:
e2:e7:44:60:fd:05:16:15:2d:4b:d0:5b:16:b0:a2:
8c:c1:9e:ed:31:54:99:ac:61:5b:c9:98:53:73:47:
d8:31:9e:72:b1:cf:6f:76:e8:ae:7e:67:dc:2d:5a:
c4:ed:b8:47:76:10:fe:c1:ad:b3:b3:fa:2b:18:44:
28:fc:fc:37:0c:f3:52:70:cc:a6:fd:78:41:d9:20:
fd:73:1d:22:2c:e0:dd:b5:ce:88:20:f5:af:5f:01:
e5:ce:9f:c7:8c:c2:58:8c:bc:7e:42:5f:e6:c2:4c:
89:5f:02:49:4c:7e:46:2e:1d:a7:a5:04:34:e8:5d:
ee:2d:e4:80:f9:3b:17:29:13:53:34:65:00:52:2f:
34:23:d3:71:ff:a4:60:06:f1:96:2f:84:0b:46:bd:
94:e1:03:61:35:d0:c5:9d:66:22:fa:74:fc:9b:35:
9b:2b:b1:fc:eb:48:0b:25:24:75:99:82:bb:e2:e1:
61:30:74:71:55:1a:7d:63:17:56:f3:ae:47:f0:b7:
b0:b4:e1:b4:23:b1:f9:b2:12:ad:a3:c6:48:1b:1a:
b0:7d:18:27:3c:1f:5a:3e:4e:8d:81:72:f7:5a:98:
de:90:1f:41:b7:df:c2:33:3d:bf:e4:6f:e9:3a:7c:
10:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:69:F4:3A:6B:3C:CF:9A:43:99:79:3F:7A:27:CC:2D:6E:45:6D:82
X509v3 Authority Key Identifier:
keyid:34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/0mn0Oms8z5pDmXk_eifMLW5FbYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/NFMcVLHnlWwsw3GyPgp1VnqidRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:5440::/45
Signature Algorithm: sha256WithRSAEncryption
c5:55:ff:e2:40:4f:2b:3e:11:98:37:95:f6:ef:32:1f:8f:dd:
57:d1:ae:1e:2c:ea:df:39:b0:95:96:d0:fe:b7:df:ed:99:c7:
f7:ff:15:c2:14:9b:1e:64:6a:bb:58:ee:f7:6d:9b:14:9b:33:
cf:9b:bb:b5:f4:1e:97:2d:64:f7:c6:7e:a8:78:33:80:7e:f3:
45:3f:87:35:15:e7:18:c0:ef:9b:b0:bc:07:cf:a9:4b:4a:fa:
ca:68:6c:c7:ff:a6:81:44:21:68:1d:01:ee:46:bc:8f:40:eb:
48:e2:4a:99:05:b0:55:18:e3:4d:3c:78:0b:8e:b9:6c:98:2c:
6a:50:28:92:9a:c1:56:69:24:73:71:cc:3c:79:32:95:ba:82:
2e:c3:77:33:33:99:96:84:5c:93:bc:ae:81:99:ee:aa:e7:06:
99:79:d9:71:3c:fb:e0:74:5b:3a:4d:1d:eb:1d:0d:15:8f:d5:
ba:16:bb:2d:ab:e8:fb:de:62:dd:5c:1e:b1:11:b1:20:76:78:
6a:06:56:e4:b8:06:1d:72:dd:b3:73:8f:4d:1c:7e:57:7d:a9:
33:ea:ef:55:2b:52:74:98:69:31:e4:86:d0:8e:51:5f:58:38:
60:26:8b:03:97:ca:21:c1:33:af:3c:0a:f2:46:94:7a:53:f6:
b9:0d:bb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:49 2024 by rpki-client on console-fra.rpki-client.org