Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d46e2b-de4d-4b6f-8dd7-69629c501943/1/O1Gi-iibn-uSwAdDcBRLQZkmAp4.roa
File: O1Gi-iibn-uSwAdDcBRLQZkmAp4.roa (raw, json)
Hash identifier: m/tj4pkGbbGai69JsCULxLQ8p9qF+WBMoa1SYb7i54U=
Subject key identifier: 3B:51:A2:FA:28:9B:9F:EB:92:C0:07:43:70:14:4B:41:99:26:02:9E
Certificate issuer: /CN=d0e31a149c2e6ae9acc729cf7ac1706de3de739b
Certificate serial: 05C316
Authority key identifier: D0:E3:1A:14:9C:2E:6A:E9:AC:C7:29:CF:7A:C1:70:6D:E3:DE:73:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OMaFJwuaumsxynPesFwbePec5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d46e2b-de4d-4b6f-8dd7-69629c501943/1/O1Gi-iibn-uSwAdDcBRLQZkmAp4.roa
Signing time: Tue 15 Mar 2022 09:51:26 +0000
ROA not before: Tue 15 Mar 2022 09:51:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207330
IP address blocks: 2a12:a3c6::/31 maxlen: 31
2a12:a3c2::/31 maxlen: 31
2a12:a3c0::/31 maxlen: 31
2a12:a3c4::/31 maxlen: 31
2a12:a3c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377622 (0x5c316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e31a149c2e6ae9acc729cf7ac1706de3de739b
Validity
Not Before: Mar 15 09:51:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b51a2fa289b9feb92c0074370144b419926029e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c1:10:5a:6f:1c:aa:45:5c:96:4b:f7:65:43:
7f:68:cf:ef:41:5d:82:d4:a8:f0:52:a4:4f:a5:b8:
d5:c8:d9:7f:bf:a0:a6:c7:e1:0f:14:0f:af:ca:ad:
32:ec:ab:81:da:77:66:a6:38:9b:26:c6:e2:0e:f0:
03:3e:8f:46:16:f0:1b:3b:e7:20:d2:b7:a4:f2:82:
50:cc:48:eb:fe:de:66:59:12:7a:6e:c3:a4:b2:7a:
a7:c3:77:a7:ce:4f:25:b6:73:26:e4:4d:36:54:f5:
19:93:09:2e:3c:b4:ac:13:8c:fb:8e:cf:67:c6:08:
80:aa:66:96:74:b0:1b:b9:95:aa:ab:f0:75:c7:c5:
23:36:a5:d6:34:6a:1a:4b:47:2a:cb:8f:c5:ca:05:
e9:9f:57:cf:20:26:6b:2a:92:f2:46:6c:29:f2:15:
86:c8:5f:02:49:99:cf:ff:64:a8:bb:9c:e3:4e:af:
7b:9d:94:93:bd:b4:c0:2c:48:02:2b:6d:f1:55:c6:
8c:50:79:85:f3:e9:c3:af:64:c1:90:54:1d:af:90:
56:fc:7d:f3:a4:71:c3:00:08:be:46:bb:53:d8:b7:
fe:94:95:98:31:72:af:bd:e5:d8:f7:cf:22:4e:b9:
dc:ae:12:22:be:3b:aa:f6:bb:02:a8:9f:84:0b:2f:
8e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:51:A2:FA:28:9B:9F:EB:92:C0:07:43:70:14:4B:41:99:26:02:9E
X509v3 Authority Key Identifier:
keyid:D0:E3:1A:14:9C:2E:6A:E9:AC:C7:29:CF:7A:C1:70:6D:E3:DE:73:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OMaFJwuaumsxynPesFwbePec5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d46e2b-de4d-4b6f-8dd7-69629c501943/1/O1Gi-iibn-uSwAdDcBRLQZkmAp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d46e2b-de4d-4b6f-8dd7-69629c501943/1/0OMaFJwuaumsxynPesFwbePec5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a3c0::/29
Signature Algorithm: sha256WithRSAEncryption
d5:a9:06:c4:01:6c:9b:80:14:96:a3:a4:d6:c0:b3:85:42:78:
c5:1d:60:a8:6e:fd:b8:17:a9:f4:bd:b2:fa:14:77:e8:34:7d:
70:56:de:aa:65:32:91:0b:0f:c6:01:9d:9c:fe:77:37:a0:15:
89:c2:0c:0d:7b:2d:04:f9:5e:c1:5c:de:cc:d6:67:8a:31:3c:
eb:f3:7a:36:22:87:ef:c1:78:63:1d:c9:dd:16:5b:9f:0b:b7:
09:3c:a8:9b:e0:65:0b:b8:8f:30:43:ba:d4:94:fc:a3:e6:c1:
4e:6e:ec:39:d1:2a:6b:9d:dc:80:f4:05:1e:d1:ae:9b:08:7f:
0b:9c:d5:c1:b2:54:af:e6:f5:ff:c3:64:d8:ad:2f:e7:f9:af:
cc:17:f4:12:9a:99:30:f4:02:2c:9b:29:03:e1:a9:7c:d4:15:
89:3c:0e:f0:2b:17:a8:21:52:0d:77:94:80:df:11:4e:cb:3e:
36:f6:8d:48:ff:7f:23:fa:47:7b:be:03:11:74:b4:d2:71:ec:
45:c6:35:1a:c0:ce:d5:a6:5d:b1:6e:ba:a4:e9:a6:9c:f3:d4:
20:90:89:30:56:24:68:4c:05:01:ac:e3:91:78:48:8a:bd:ff:
07:b4:ab:78:e9:30:5b:40:ed:18:97:0f:45:ce:9d:c3:da:cd:
1d:a6:50:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:46 2024 by rpki-client on console-ams.rpki-client.org