Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/c72abe-32dc-4f18-905f-c1ff056fc76f/1/H956e2ycKd-aiPo-_BofQjCrkVc.roa
File: H956e2ycKd-aiPo-_BofQjCrkVc.roa (raw, json)
Hash identifier: KuaSR3AZIh8Qe09PxgMs6jGC/INiC0vNUai+9APUzro=
Subject key identifier: 1F:DE:7A:7B:6C:9C:29:DF:9A:88:FA:3E:FC:1A:1F:42:30:AB:91:57
Certificate issuer: /CN=4c33c0e14d57eabc3b65e38a7736bebe49092e9e
Certificate serial: 10EA03
Authority key identifier: 4C:33:C0:E1:4D:57:EA:BC:3B:65:E3:8A:77:36:BE:BE:49:09:2E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDPA4U1X6rw7ZeOKdza-vkkJLp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/c72abe-32dc-4f18-905f-c1ff056fc76f/1/H956e2ycKd-aiPo-_BofQjCrkVc.roa
Signing time: Fri 01 Apr 2022 09:49:00 +0000
ROA not before: Fri 01 Apr 2022 09:49:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 2a12:89c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1108483 (0x10ea03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c33c0e14d57eabc3b65e38a7736bebe49092e9e
Validity
Not Before: Apr 1 09:49:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fde7a7b6c9c29df9a88fa3efc1a1f4230ab9157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ff:4d:fe:3a:26:0a:f5:ed:fd:2c:91:c3:99:
e7:0e:06:42:35:b8:d1:c2:00:a8:26:fe:a0:4a:1a:
3a:ac:cd:28:0d:9d:57:91:cf:d6:19:72:e6:fe:38:
6b:19:47:be:3f:54:25:9a:b8:71:9b:cd:25:ff:91:
47:8b:dc:1d:a6:34:33:a1:7e:c1:c5:c8:46:59:4d:
04:4a:22:e1:9c:e7:72:0f:c5:18:75:59:d4:63:e2:
a7:fd:37:91:02:cf:17:8e:92:53:7d:72:97:22:34:
ba:bc:a9:ba:58:05:a7:5f:90:85:1e:27:16:d5:4e:
06:41:56:3e:73:34:85:9f:b3:d1:d9:0c:bf:df:91:
54:8c:ec:a5:13:da:ff:5f:87:f2:de:57:a2:2e:40:
e4:b0:74:a9:01:5a:ae:85:5d:d2:b2:18:78:aa:c6:
2e:dd:f0:f8:14:9f:ef:9f:7d:88:96:ff:bd:7f:21:
b0:2e:c5:56:be:db:12:f7:12:2b:ab:39:02:e8:46:
36:ca:4c:5c:18:21:b9:d6:53:bb:74:fa:b7:15:ed:
0f:ec:8c:4b:c9:72:a4:23:1e:aa:08:2b:64:38:23:
fb:06:1b:1b:cb:3b:f1:df:55:0d:ad:4a:71:26:8b:
85:85:6c:0c:45:86:7c:6d:42:2b:19:b1:db:24:88:
b1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DE:7A:7B:6C:9C:29:DF:9A:88:FA:3E:FC:1A:1F:42:30:AB:91:57
X509v3 Authority Key Identifier:
keyid:4C:33:C0:E1:4D:57:EA:BC:3B:65:E3:8A:77:36:BE:BE:49:09:2E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDPA4U1X6rw7ZeOKdza-vkkJLp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/c72abe-32dc-4f18-905f-c1ff056fc76f/1/H956e2ycKd-aiPo-_BofQjCrkVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/c72abe-32dc-4f18-905f-c1ff056fc76f/1/TDPA4U1X6rw7ZeOKdza-vkkJLp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:89c0::/29
Signature Algorithm: sha256WithRSAEncryption
43:9f:13:3d:4d:97:18:18:bb:bc:5d:18:19:c6:27:bf:97:cd:
48:6d:dd:d5:00:00:dc:46:c8:14:71:44:04:53:36:af:90:39:
44:6b:e3:f7:cd:4a:89:24:22:ba:a2:26:34:f7:68:f6:4d:64:
e9:c2:d3:3d:0b:25:01:17:a6:9f:18:33:3b:0a:98:54:9d:b0:
2e:12:85:5e:be:0f:29:79:4a:85:ce:a4:e9:50:8f:e4:ae:b7:
2d:f8:a4:f5:a0:64:c1:45:07:b2:34:73:98:b6:ff:ee:96:f2:
3e:fe:05:f0:df:47:6e:3c:0a:1c:e1:ec:75:17:fd:c4:03:cc:
7d:01:17:a5:e1:20:5b:a2:9b:bd:94:c0:c9:07:54:e1:ff:66:
cb:ec:2c:50:d7:4b:8f:22:b7:5e:64:ee:2c:d9:e3:32:e1:12:
d9:fe:29:c3:0c:0d:a6:69:b0:b3:d7:67:7e:b0:16:b4:02:1b:
c0:35:9a:f9:24:8c:1c:22:92:a4:e1:62:ab:11:8c:5b:65:52:
f9:8c:27:35:fa:7c:ea:82:c0:c5:2d:a2:7c:0c:86:bd:09:a3:
67:80:a8:53:ac:7c:f7:de:b6:23:07:af:cc:7e:8d:e0:74:8f:
c4:a7:67:19:ae:cf:8a:ab:fa:f0:c5:ef:33:d9:d8:98:73:87:
8f:bd:bd:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:04 2024 by rpki-client on console-fra.rpki-client.org