Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/61f7c3-4134-4c02-b7dd-e4d024cdae0c/1/jfQsn3SKQywiFnU1DhfDL0red1E.roa
File: jfQsn3SKQywiFnU1DhfDL0red1E.roa (raw, json)
Hash identifier: XtrN8ApWpg9edls0URR0TaVUWBzVdI4Vb6ZbmbrhepY=
Subject key identifier: 8D:F4:2C:9F:74:8A:43:2C:22:16:75:35:0E:17:C3:2F:4A:DE:77:51
Certificate issuer: /CN=123ba3802f9c9bf6756daabd324e5326ede419aa
Certificate serial: 1FA06F
Authority key identifier: 12:3B:A3:80:2F:9C:9B:F6:75:6D:AA:BD:32:4E:53:26:ED:E4:19:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjujgC-cm_Z1baq9Mk5TJu3kGao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/61f7c3-4134-4c02-b7dd-e4d024cdae0c/1/jfQsn3SKQywiFnU1DhfDL0red1E.roa
Signing time: Sat 01 Jan 2022 00:51:49 +0000
ROA not before: Sat 01 Jan 2022 00:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49121
IP address blocks: 2a06:18c0:1::/48 maxlen: 48
2a06:18c0:2::/48 maxlen: 48
2a06:18c0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2072687 (0x1fa06f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=123ba3802f9c9bf6756daabd324e5326ede419aa
Validity
Not Before: Jan 1 00:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8df42c9f748a432c221675350e17c32f4ade7751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ae:fb:f9:30:55:48:13:4a:25:b3:18:f6:b7:
ca:f4:f9:c9:9b:28:35:71:65:ce:77:a5:e3:b7:d2:
70:55:dd:da:b0:12:7a:57:38:9f:09:36:ff:d8:c2:
a4:87:1b:c5:ff:1b:d5:59:c3:02:5d:5e:9c:e3:c5:
0f:f0:4c:60:66:de:c0:e1:73:68:94:fa:b3:d7:ab:
99:f0:3e:18:2d:01:07:38:37:f3:7e:5d:0e:0d:3f:
dd:ee:57:a9:7f:30:c5:64:cc:a5:3c:39:cd:25:70:
47:aa:84:44:df:df:1a:75:7d:ec:7e:ec:d6:c2:3a:
fb:4e:83:6a:62:d2:6b:ff:40:bd:cb:a2:3f:7d:cc:
e8:9e:3b:b1:0d:0d:e4:f7:52:7e:37:a8:4e:f1:21:
fa:f7:9a:c6:4d:01:bf:c4:99:25:ae:ba:95:6d:9d:
75:d3:89:28:70:23:07:11:60:f7:0f:8e:a6:94:ef:
43:32:18:a6:e2:5d:75:11:b9:e6:30:c2:a4:56:f9:
fd:ea:6a:9b:e8:f7:df:2d:0e:37:44:22:15:f6:f6:
e6:75:25:f3:b3:6d:49:10:b1:6c:cb:24:35:1b:94:
d3:cf:32:be:7f:2a:41:c3:3a:75:62:f3:23:3a:59:
c9:b7:2d:af:6c:31:f3:e1:1a:1b:a7:84:51:8e:42:
d3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F4:2C:9F:74:8A:43:2C:22:16:75:35:0E:17:C3:2F:4A:DE:77:51
X509v3 Authority Key Identifier:
keyid:12:3B:A3:80:2F:9C:9B:F6:75:6D:AA:BD:32:4E:53:26:ED:E4:19:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjujgC-cm_Z1baq9Mk5TJu3kGao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/61f7c3-4134-4c02-b7dd-e4d024cdae0c/1/jfQsn3SKQywiFnU1DhfDL0red1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/61f7c3-4134-4c02-b7dd-e4d024cdae0c/1/EjujgC-cm_Z1baq9Mk5TJu3kGao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:18c0:1::-2a06:18c0:3:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5a:5d:92:59:a3:73:d5:f3:03:3a:a7:07:f1:d0:76:3e:14:e6:
e1:21:8c:c2:1d:12:65:f7:e3:66:8f:d5:a1:5b:3b:17:64:23:
5f:17:05:b5:42:66:6f:f3:70:07:0f:bc:c1:2f:7f:21:49:98:
19:77:bd:db:cc:cd:ae:b5:70:06:6b:81:eb:e0:d9:49:9f:b2:
0d:56:8e:a5:51:10:65:fd:9a:4d:bf:c2:94:07:c1:a7:8c:21:
88:c1:b6:d2:75:4f:cc:98:2f:5d:da:9d:9a:d9:49:36:cc:d0:
c0:23:06:a0:88:55:c5:da:32:ad:ae:12:28:7d:30:8b:ed:c8:
af:4f:af:8c:0c:c1:c4:f5:04:38:81:ac:68:12:e1:1f:09:43:
9e:41:b2:28:67:b5:82:1d:f0:68:3a:2b:af:e1:b0:58:85:e9:
74:dc:4b:77:9f:34:13:60:72:25:5e:3d:80:65:7e:d8:10:37:
03:7d:d6:23:ba:31:ae:df:6a:6d:30:72:28:13:4d:1a:59:32:
a1:58:fc:55:89:03:b3:d9:e4:f8:64:37:50:1e:20:ba:5e:72:
eb:16:e1:b4:1e:c2:40:7b:30:05:9a:81:9f:f9:01:a0:a5:d5:
ca:89:31:33:3f:15:61:50:5e:b3:12:02:f3:bf:fa:2f:e7:e0:
d8:33:5c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:35 2023 by rpki-client on console-ams.rpki-client.org