Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/0I26AtgDk1TyLj44zG0TIYfSGXE.roa
File: 0I26AtgDk1TyLj44zG0TIYfSGXE.roa (raw, json)
Hash identifier: +GUWQYxhSwRL49Do2MF7tFtBabKryfHIe7ZvMNFM8FM=
Subject key identifier: D0:8D:BA:02:D8:03:93:54:F2:2E:3E:38:CC:6D:13:21:87:D2:19:71
Certificate issuer: /CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Certificate serial: 01852B47D53EC93360A97311EAC78CFE8AD8
Authority key identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/0I26AtgDk1TyLj44zG0TIYfSGXE.roa
Signing time: Mon 19 Dec 2022 16:46:45 +0000
ROA not before: Mon 19 Dec 2022 16:46:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211833
IP address blocks: 2a12:f340::/48 maxlen: 48
2a12:f340:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:47:d5:3e:c9:33:60:a9:73:11:ea:c7:8c:fe:8a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Validity
Not Before: Dec 19 16:46:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d08dba02d8039354f22e3e38cc6d132187d21971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7d:d1:54:fe:ad:f9:b1:34:8b:61:f7:a8:4c:
5e:ee:dd:0c:04:59:40:5f:e2:64:aa:64:c5:3d:68:
fa:e3:0c:01:c5:0b:87:3e:50:3d:6f:96:5d:ac:55:
14:e9:65:7c:d4:4b:6b:cc:5c:85:47:d9:22:4c:5a:
af:bb:66:74:a1:fe:bd:1e:51:a8:b1:83:51:f5:69:
7c:60:fa:5b:3d:f0:0a:83:dd:6d:a3:da:2e:6c:7a:
bb:0d:78:f4:cc:b3:e7:eb:1a:de:c8:7a:9c:1d:a9:
09:a8:a8:39:f0:b6:99:f1:ba:9b:be:68:9e:92:08:
6b:5e:3d:db:9e:ff:bc:51:0d:3e:4c:b2:e9:09:d0:
e9:5e:93:3b:94:72:55:85:8b:31:16:d6:41:62:38:
2d:c7:a0:78:17:64:4a:af:2f:59:ab:59:46:a4:cb:
48:8f:5f:f6:17:2d:e7:53:ef:c8:6c:6b:1c:ec:5e:
1e:29:7f:f1:b1:10:71:98:b0:4c:36:9d:35:77:6b:
27:5c:7c:11:27:ab:15:38:71:d1:b0:7c:f3:7b:5c:
a4:5c:13:45:95:d1:62:5b:c2:51:70:b5:a7:29:bb:
19:61:c4:d3:02:54:73:e0:ef:0e:76:bf:fb:67:de:
74:cd:d4:c3:a9:ec:b9:d2:0a:d1:0b:b8:6c:ad:a2:
7f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8D:BA:02:D8:03:93:54:F2:2E:3E:38:CC:6D:13:21:87:D2:19:71
X509v3 Authority Key Identifier:
keyid:A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/0I26AtgDk1TyLj44zG0TIYfSGXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f340::/47
Signature Algorithm: sha256WithRSAEncryption
b9:57:cc:6b:41:4b:7b:9d:14:3a:88:fe:92:47:5f:12:71:b3:
de:1c:f8:57:b6:38:72:35:a9:70:f1:3b:96:bc:7e:86:27:4b:
82:d2:3e:55:86:95:80:cd:fb:3b:0e:8f:63:a4:ec:c9:5f:af:
a5:49:b3:e0:1f:45:30:56:9b:2d:41:20:88:a0:9b:67:68:75:
db:b7:f3:7b:f4:fc:0a:be:fc:2a:d0:7a:87:66:56:04:3e:19:
4b:1a:4b:47:9a:c1:5c:3d:d2:a8:01:29:ad:de:65:7a:19:5e:
9b:2b:4b:c6:0c:71:89:10:91:47:52:be:8b:5e:1b:6e:9e:59:
24:c2:04:6e:5e:e5:02:15:54:eb:a2:00:2b:42:31:a1:27:23:
fd:4f:15:b1:55:e0:92:b2:c3:8f:28:e8:48:3d:e2:55:d4:bc:
49:3e:56:97:5d:2f:cf:d1:af:7c:2c:86:7e:88:9f:e4:5e:a3:
64:ff:d7:26:ca:29:a8:b0:45:ae:97:51:75:51:df:66:5b:ce:
ef:af:f2:aa:4b:68:c2:e6:ac:3c:52:66:bc:8f:26:42:ae:8a:
e2:24:d9:0b:5e:7f:64:9e:44:b4:3e:34:9a:41:80:43:93:1c:
f9:74:69:7b:fc:94:d5:ab:10:3c:f5:d4:d7:30:06:8f:86:e7:
98:dd:54:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:54 2024 by rpki-client on console-fra.rpki-client.org