Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/AKMtX639OAtOpIOtjyJTWd-jjis.roa
File: AKMtX639OAtOpIOtjyJTWd-jjis.roa (raw, json)
Hash identifier: Ze9Bd8kDxHY7duz0Z96PFMpzNtmxruuP6hjYbMAEtQM=
Subject key identifier: 00:A3:2D:5F:AD:FD:38:0B:4E:A4:83:AD:8F:22:53:59:DF:A3:8E:2B
Certificate issuer: /CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Certificate serial: 03BB0882
Authority key identifier: C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/AKMtX639OAtOpIOtjyJTWd-jjis.roa
Signing time: Sat 01 Jan 2022 06:02:22 +0000
ROA not before: Sat 01 Jan 2022 06:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209309
IP address blocks: 2a0e:e0c5::/32 maxlen: 32
2a0e:e0c2::/32 maxlen: 32
2a0e:e0c1::/32 maxlen: 32
2a0e:e0c6::/32 maxlen: 32
2a0e:e0c4::/32 maxlen: 32
2a0e:e0c3::/32 maxlen: 32
2a0e:e0c7::/32 maxlen: 32
2a0e:e0c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62589058 (0x3bb0882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Validity
Not Before: Jan 1 06:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00a32d5fadfd380b4ea483ad8f225359dfa38e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:91:37:9a:49:23:f8:6a:ec:d2:67:41:3a:4c:
10:47:a1:bb:2b:12:ba:cd:14:70:a4:4f:67:cf:85:
00:26:8f:a1:45:2b:10:4d:06:b8:e6:37:6b:69:4c:
17:40:2a:bf:53:6f:66:21:eb:4c:06:8e:2d:d1:8d:
e3:77:90:dc:80:2f:01:b7:f4:4a:9c:23:15:bd:8e:
39:9f:84:15:cc:c5:f6:90:8a:88:4f:f8:1f:53:29:
c6:9a:c7:6f:b7:aa:a1:e3:76:eb:06:87:d6:a6:0c:
e2:2f:fb:e1:4a:02:8a:91:90:9f:1c:29:f3:6c:6b:
0a:07:88:92:43:3d:d2:3a:b2:eb:b3:4c:dc:ff:cf:
26:b3:15:87:f4:ba:5e:ba:ff:7d:c7:2b:57:50:6c:
4f:6d:8e:5a:5a:8d:1d:c4:01:df:19:d2:9d:b5:7d:
12:71:e6:fe:db:a2:51:65:31:df:60:ed:44:3e:ee:
8e:31:35:40:28:7e:92:6d:8c:d1:61:fe:1a:41:c1:
b1:cb:75:7d:1f:6e:c4:61:0b:6a:54:ae:9e:5c:79:
39:9c:73:e1:2e:69:85:06:84:97:90:39:27:1f:fd:
e6:23:d9:a7:d8:d3:76:1c:8b:00:cf:31:59:ba:10:
fd:f8:70:a6:c2:c4:a6:eb:d2:d3:09:9f:26:62:ca:
74:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A3:2D:5F:AD:FD:38:0B:4E:A4:83:AD:8F:22:53:59:DF:A3:8E:2B
X509v3 Authority Key Identifier:
keyid:C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/AKMtX639OAtOpIOtjyJTWd-jjis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/wSrJsU_SYajSdjqtQXQyvrxJoNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e0c0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:c0:6f:f9:11:33:cf:94:65:7d:b4:09:59:c6:d2:5a:40:1c:
7b:57:c8:4a:54:d0:e8:59:e1:a7:36:78:3d:71:88:0a:99:e4:
10:b9:2a:2e:f8:fd:4c:34:d7:14:1c:90:00:da:84:a3:13:5c:
e8:9a:0a:3b:65:41:c6:13:3d:da:f5:ed:12:b2:ce:84:4d:39:
1d:0b:15:65:8d:7c:b5:b6:47:36:3a:a9:82:b9:06:df:ea:db:
de:ac:2e:ff:dc:1a:af:db:4c:84:99:fc:0a:8b:ba:9e:f8:73:
10:67:f5:f4:2b:89:47:42:75:98:40:b9:db:50:c9:bf:9c:9d:
49:0e:52:be:a0:15:72:0b:39:48:ad:3d:a1:bd:99:f9:5d:36:
8e:00:6b:7f:59:f0:76:d3:eb:0d:db:57:e6:d7:58:52:38:e0:
af:be:c4:a8:47:2f:b2:35:19:fa:c6:c0:9b:31:f5:a8:ee:b3:
2c:83:bb:5b:1a:3d:f0:64:fe:f3:7c:82:39:8a:a0:0d:67:08:
dc:96:4e:59:2e:3c:ec:3f:1c:be:43:67:3b:6b:f4:ae:5d:c0:
65:6b:de:b2:21:eb:ba:fd:1c:e2:44:03:c5:50:29:f9:98:28:
2c:12:be:e2:50:35:6b:17:ec:35:90:fc:1f:47:09:ff:50:14:
94:27:4f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:02 2024 by rpki-client on console-fra.rpki-client.org