Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fb8ca2-9fc9-4898-b048-52a368cac403/1/jkGX6rwpCTtlF-0sg-iIwjpUuSM.roa
File: jkGX6rwpCTtlF-0sg-iIwjpUuSM.roa (raw, json)
Hash identifier: meM79sOTmixGmKYjt3lrAHJDovsau+JjSFRU5l6KNig=
Subject key identifier: 8E:41:97:EA:BC:29:09:3B:65:17:ED:2C:83:E8:88:C2:3A:54:B9:23
Certificate issuer: /CN=12f1bb611f2b7a37800f49c6c125c5ee98b719c5
Certificate serial: 07CCB83C
Authority key identifier: 12:F1:BB:61:1F:2B:7A:37:80:0F:49:C6:C1:25:C5:EE:98:B7:19:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EvG7YR8rejeAD0nGwSXF7pi3GcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fb8ca2-9fc9-4898-b048-52a368cac403/1/jkGX6rwpCTtlF-0sg-iIwjpUuSM.roa
Signing time: Wed 08 Jun 2022 18:14:07 +0000
ROA not before: Wed 08 Jun 2022 18:14:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59880
IP address blocks: 2a0f:fdc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130857020 (0x7ccb83c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12f1bb611f2b7a37800f49c6c125c5ee98b719c5
Validity
Not Before: Jun 8 18:14:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e4197eabc29093b6517ed2c83e888c23a54b923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9d:18:7a:00:de:73:72:fc:6e:49:a7:2c:63:
5c:bd:fa:e8:0f:c5:be:fb:74:d7:11:7b:d1:fb:48:
f9:c0:1d:bc:e4:f7:b3:fc:e9:d6:af:7d:8e:4e:17:
20:53:29:81:ff:3a:8e:3a:68:4f:13:5e:3f:b9:d9:
82:71:8a:50:1d:f6:ff:d4:13:bd:b8:f8:d8:a1:ec:
4e:8e:d4:27:44:00:3a:a5:43:b6:bf:d3:73:a9:44:
58:af:23:8b:44:af:9f:2e:14:a1:28:64:e7:5c:9e:
10:f1:e2:eb:b2:81:bf:7d:f6:65:08:5f:7c:5a:b4:
40:eb:a6:20:f2:b0:6b:93:3e:fb:48:a6:ce:5c:d3:
17:05:7d:94:8c:03:ba:61:3c:98:a8:37:8e:10:5c:
e1:6b:2c:94:70:6d:dc:29:97:9a:1e:76:43:28:39:
3a:72:5f:85:be:72:04:d7:7c:c8:24:bb:86:1c:97:
2c:c1:c8:9c:39:4b:2b:f2:d3:69:45:a0:b0:7f:a7:
7b:85:cd:40:4d:46:77:e3:a0:5d:19:3d:30:e1:cb:
54:21:a2:91:3f:b9:a7:4a:3b:a1:67:69:ee:15:b6:
6b:82:10:0f:8a:61:eb:19:6f:5f:d7:ef:a0:38:41:
39:72:be:4e:14:18:9e:6a:3a:60:25:a3:83:ee:19:
d3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:41:97:EA:BC:29:09:3B:65:17:ED:2C:83:E8:88:C2:3A:54:B9:23
X509v3 Authority Key Identifier:
keyid:12:F1:BB:61:1F:2B:7A:37:80:0F:49:C6:C1:25:C5:EE:98:B7:19:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EvG7YR8rejeAD0nGwSXF7pi3GcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fb8ca2-9fc9-4898-b048-52a368cac403/1/jkGX6rwpCTtlF-0sg-iIwjpUuSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fb8ca2-9fc9-4898-b048-52a368cac403/1/EvG7YR8rejeAD0nGwSXF7pi3GcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
86:f1:d3:10:ad:53:ac:cf:49:15:cb:6f:d9:16:c1:1c:6b:3d:
c8:60:69:b8:0e:ec:9b:fc:69:45:46:0c:30:e7:79:b2:86:ea:
54:8d:65:f6:41:78:1e:b3:4b:93:d0:40:f8:8c:dc:a4:11:04:
ca:23:b7:94:28:92:84:9d:70:dd:9d:0d:02:3f:69:a0:36:be:
0e:d2:c9:95:b2:cc:22:fb:1e:5e:20:fe:a0:a0:20:8a:b5:93:
84:3f:86:32:86:ea:95:d0:51:05:32:ae:d7:b2:d0:c5:59:f0:
8d:8b:67:cd:26:12:60:cc:86:b5:44:97:70:9b:17:10:ee:ce:
94:a8:b7:42:d3:69:ad:99:0f:2c:06:14:d8:9b:19:df:3a:2d:
30:e3:3e:8a:eb:80:9d:6a:59:b3:79:67:1e:35:11:aa:bf:a6:
9e:b3:1a:39:d9:0c:ac:83:67:22:02:31:fe:6e:8b:93:da:5f:
ea:cf:2a:04:70:0d:0a:09:a8:6b:d0:ae:3c:4c:6a:7d:ac:69:
cf:ef:bb:af:70:16:00:ef:f0:6f:5e:67:79:61:2a:dc:83:b8:
d4:dd:a2:3f:ff:03:78:a3:88:d3:c8:1d:35:7e:3a:15:34:b2:
ee:b7:b4:a9:d8:15:ca:a4:6f:69:66:02:e1:0e:97:38:7c:45:
5f:e0:05:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:01 2023 by rpki-client on console-ams.rpki-client.org