Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/7Pa9wNPG_aYS3Qn5jIMHDPM5MRA.roa
File: 7Pa9wNPG_aYS3Qn5jIMHDPM5MRA.roa (raw, json)
Hash identifier: v1S2nKJANR6eGpCfBqzy8g+9aDueyG03NYrYDOuSkxs=
Subject key identifier: EC:F6:BD:C0:D3:C6:FD:A6:12:DD:09:F9:8C:83:07:0C:F3:39:31:10
Certificate issuer: /CN=f6af433974df373b70abd76b13e1c70c775f554b
Certificate serial: 01B77FCF
Authority key identifier: F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/7Pa9wNPG_aYS3Qn5jIMHDPM5MRA.roa
Signing time: Wed 15 Jun 2022 14:10:44 +0000
ROA not before: Wed 15 Jun 2022 14:10:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 2a12:3e80:200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28803023 (0x1b77fcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6af433974df373b70abd76b13e1c70c775f554b
Validity
Not Before: Jun 15 14:10:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecf6bdc0d3c6fda612dd09f98c83070cf3393110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c8:6e:59:17:7d:13:59:2e:e4:8c:5e:a5:51:
20:63:55:36:a7:73:4e:61:22:d3:cb:f5:ff:c2:22:
3f:6a:2f:e2:6e:2a:78:73:7b:16:0f:91:37:a9:07:
2b:7f:e2:b9:3d:7f:cc:d8:4f:6b:84:fa:ca:c6:7a:
00:d4:68:13:c6:8f:0a:1f:f2:a7:4a:53:14:8d:f0:
b0:f1:40:59:d1:4b:1b:0a:8c:17:8e:e3:af:56:2d:
18:52:87:7e:d7:b2:8c:ab:17:54:22:56:09:c4:34:
a7:41:7a:3f:66:b4:c4:50:7d:dd:19:b3:78:a5:41:
1d:65:6f:f3:e1:9d:a4:6d:d9:45:4f:63:51:1a:29:
b2:37:c9:7c:73:24:7b:0b:70:a9:30:1c:ed:85:28:
96:9f:6a:05:3a:59:47:fa:1e:b2:58:14:e4:e1:6f:
5b:cf:69:a4:b4:60:36:c5:0d:84:eb:f0:4b:91:5c:
b9:19:15:1c:0e:4d:df:53:01:d8:4c:24:4e:b5:96:
22:1d:54:b0:ba:99:11:8f:86:e9:46:ee:45:0b:b7:
37:aa:4f:2c:c0:26:f0:55:75:df:da:00:b8:03:66:
b6:c5:7c:8e:8e:87:6b:1b:88:e3:ff:42:d3:f0:96:
cd:48:23:65:0e:71:3e:a7:c3:9f:8a:e7:8e:b5:83:
2d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F6:BD:C0:D3:C6:FD:A6:12:DD:09:F9:8C:83:07:0C:F3:39:31:10
X509v3 Authority Key Identifier:
keyid:F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/7Pa9wNPG_aYS3Qn5jIMHDPM5MRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3e80:200::/40
Signature Algorithm: sha256WithRSAEncryption
7f:1a:74:af:66:9e:e4:6b:54:b8:80:0f:26:bf:94:13:f6:7c:
ff:f5:dc:3a:e4:0b:71:91:7e:23:2d:b2:9f:6a:c1:93:5e:d6:
35:be:36:89:81:9e:3c:bb:8d:10:ef:20:84:ca:77:93:0e:23:
19:96:13:44:da:f3:00:15:ff:4c:6c:34:cb:ec:72:84:58:17:
23:31:12:0a:eb:4c:70:40:c1:0a:26:c3:f3:10:e7:4d:f6:09:
1b:4c:17:b1:50:bc:c8:09:25:e8:78:0f:ac:ad:38:f1:77:c7:
f2:4d:b6:65:d6:92:d7:23:ae:38:ab:be:ae:0b:1a:7f:12:bb:
d7:e0:87:a8:92:c6:2e:73:c5:1c:75:3f:69:b6:0f:6e:93:cc:
e2:00:7a:53:27:a6:90:f4:a8:18:bf:4c:93:00:51:b6:85:45:
56:7b:aa:60:95:62:98:26:f6:59:83:29:d3:f8:45:6d:0f:0e:
ee:b0:a5:0f:f9:5d:af:77:09:48:0e:1d:73:8e:33:6e:8f:05:
23:6a:49:fa:27:6c:6f:c5:9f:95:2a:4d:b5:da:81:c6:37:0c:
78:71:87:cb:cc:02:eb:98:0d:03:fd:64:3d:db:71:85:c4:22:
aa:64:08:f0:58:52:7f:1a:3d:f5:83:2c:b2:cd:be:97:d4:e3:
e6:4a:ba:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:31 2024 by rpki-client on console-fra.rpki-client.org