Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/2vG4PfYgZA-IwaZCwZrV16m1Ka8.roa
File: 2vG4PfYgZA-IwaZCwZrV16m1Ka8.roa (raw, json)
Hash identifier: x8GmwKo9QZdr3NSj0NYrh0AfTHlx9O/AF6y4c+uXGjc=
Subject key identifier: DA:F1:B8:3D:F6:20:64:0F:88:C1:A6:42:C1:9A:D5:D7:A9:B5:29:AF
Certificate issuer: /CN=f655558b616794a4f77a648fc33609d977f5a780
Certificate serial: 018486AB4EEED3BB7121BAD1873E8A746C89
Authority key identifier: F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/2vG4PfYgZA-IwaZCwZrV16m1Ka8.roa
Signing time: Thu 17 Nov 2022 17:38:04 +0000
ROA not before: Thu 17 Nov 2022 17:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:aa80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:ab:4e:ee:d3:bb:71:21:ba:d1:87:3e:8a:74:6c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f655558b616794a4f77a648fc33609d977f5a780
Validity
Not Before: Nov 17 17:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=daf1b83df620640f88c1a642c19ad5d7a9b529af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:8c:95:86:e4:31:f4:22:02:af:ea:e3:94:
c0:55:2a:06:06:ed:57:cd:8f:7f:ef:f3:ac:ad:84:
13:17:27:9b:ef:1b:ce:cd:09:93:18:bc:d6:65:89:
03:aa:e1:57:6d:3a:fb:59:fd:8c:94:83:54:c1:e7:
2d:5f:c4:6a:a8:ba:de:12:00:c3:d6:77:90:fd:5f:
97:91:69:b3:61:d8:4d:f0:d6:d8:66:17:1f:c3:2d:
12:81:be:d7:13:c5:13:25:80:e4:43:2c:31:5c:c2:
d1:e5:23:8f:4b:f5:ed:22:0a:29:5d:02:e2:da:60:
64:a0:33:5a:fe:2f:70:62:fb:f5:97:f6:3c:d8:12:
e4:b0:d2:ff:c6:fc:3b:c4:a8:4a:8d:75:80:69:e0:
ed:72:b0:a8:89:0c:8b:3a:d5:cd:95:79:1e:41:e6:
16:85:57:68:4f:b2:f7:27:94:55:96:bd:28:a2:ff:
3b:9e:02:31:0f:c3:97:9c:83:63:42:67:76:13:c1:
c3:4a:83:a7:b8:d7:72:43:75:75:e5:25:6b:ae:08:
2b:f0:d6:40:5c:80:bb:53:dc:bf:dd:94:08:f7:90:
58:7b:24:3e:e5:5f:00:8d:11:35:dc:3e:31:26:1d:
60:1a:dd:3e:33:79:e5:b8:74:a5:e6:10:e8:6e:ba:
66:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F1:B8:3D:F6:20:64:0F:88:C1:A6:42:C1:9A:D5:D7:A9:B5:29:AF
X509v3 Authority Key Identifier:
keyid:F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/2vG4PfYgZA-IwaZCwZrV16m1Ka8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:aa80::/29
Signature Algorithm: sha256WithRSAEncryption
6d:ea:72:88:65:40:96:2e:84:00:3f:29:75:30:49:bf:a5:c3:
9e:51:f8:fc:54:c3:2f:66:ec:0b:d1:2e:9e:e9:e1:92:73:45:
d6:a2:f2:91:87:f0:1c:9e:ea:99:bd:5e:d9:0b:2a:85:b0:8f:
ac:10:c5:71:c6:54:48:19:d7:4e:39:a1:f5:26:04:27:14:fd:
b8:4a:f5:f7:bd:01:49:ad:80:8c:e5:43:28:6e:12:a9:ad:dc:
91:f4:9f:6f:6b:0d:8e:8e:3d:e7:5d:da:45:6f:7a:0c:44:1c:
49:07:c6:a9:b2:e7:b1:7a:21:ba:07:15:7f:57:43:2c:6d:8c:
17:d5:17:cb:76:c4:28:28:76:f0:f0:2b:a5:42:a2:b7:b0:0e:
54:6a:c7:70:2d:68:41:9b:a2:29:d4:6a:00:5d:81:74:ae:af:
70:a8:db:2d:72:70:3e:a1:93:3b:61:c0:58:b8:40:c5:0a:4f:
45:55:14:43:74:5f:61:35:23:09:2a:24:04:f2:35:db:ff:a5:
3c:75:b7:17:24:55:9d:80:ec:1c:2f:62:c8:2d:d3:7c:76:71:
51:85:41:00:1e:38:06:e9:4c:32:2a:77:10:ff:93:cc:d1:76:
49:38:7b:8c:45:6e:cf:a6:00:b3:73:54:c4:4c:d5:bc:2c:ea:
d8:89:b1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:40 2023 by rpki-client on console-fra.rpki-client.org