Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/2Pbb1QYo6-H1n29jYlBuY09fXAc.roa
File: 2Pbb1QYo6-H1n29jYlBuY09fXAc.roa (raw, json)
Hash identifier: YD50741r06A15/pn3kCuMPDDbMK/BAC+5ogr9nhED7w=
Subject key identifier: D8:F6:DB:D5:06:28:EB:E1:F5:9F:6F:63:62:50:6E:63:4F:5F:5C:07
Certificate issuer: /CN=269b8a3748440c9d5c2c508bd03b46d7273eee56
Certificate serial: 01346D
Authority key identifier: 26:9B:8A:37:48:44:0C:9D:5C:2C:50:8B:D0:3B:46:D7:27:3E:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/2Pbb1QYo6-H1n29jYlBuY09fXAc.roa
Signing time: Fri 07 Jan 2022 00:21:59 +0000
ROA not before: Fri 07 Jan 2022 00:21:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200995
IP address blocks: 2a12:42c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78957 (0x1346d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=269b8a3748440c9d5c2c508bd03b46d7273eee56
Validity
Not Before: Jan 7 00:21:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8f6dbd50628ebe1f59f6f6362506e634f5f5c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:32:37:0c:2e:b3:48:53:eb:ba:e6:97:6e:7b:
e2:f6:ac:1d:d7:ac:6a:82:7e:92:a6:c7:d8:b3:c9:
49:d9:c2:71:d0:c2:ae:61:b7:39:04:32:7c:f9:14:
45:61:cc:db:ca:4b:07:f4:47:11:4b:9e:15:e0:ad:
f3:86:e6:97:7d:8b:aa:bf:61:41:1b:fb:7c:c9:e9:
e4:e1:04:d5:08:26:3a:9d:1d:fd:6c:bc:02:cb:f7:
26:f7:2a:27:83:f9:0b:d3:70:7a:7a:c2:8b:68:fd:
01:45:28:38:0e:23:5f:ca:e8:ca:24:2d:a2:40:e8:
df:eb:94:0e:b6:23:f5:8f:2e:79:cc:c1:a1:bc:d1:
72:1d:f2:e3:3e:e5:cb:cb:e7:ed:c5:23:f6:a9:c2:
39:e9:a1:95:cc:bd:67:77:a9:d4:39:d8:e8:bf:ad:
97:85:e5:52:2a:3c:47:c1:5c:29:6d:f3:3b:8f:e7:
75:7b:e6:9d:ac:f9:c0:d0:6a:24:93:be:6d:78:b3:
8b:09:76:49:57:36:2c:63:79:8d:8a:af:0b:82:39:
e9:ca:8a:ac:22:a1:43:89:4c:75:55:35:e6:b1:c5:
a5:06:fa:42:10:c9:5d:9c:b5:33:7a:02:90:57:12:
f9:3c:48:ff:fb:21:06:ae:ee:d4:58:b0:82:b3:9d:
25:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F6:DB:D5:06:28:EB:E1:F5:9F:6F:63:62:50:6E:63:4F:5F:5C:07
X509v3 Authority Key Identifier:
keyid:26:9B:8A:37:48:44:0C:9D:5C:2C:50:8B:D0:3B:46:D7:27:3E:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/2Pbb1QYo6-H1n29jYlBuY09fXAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:42c0::/29
Signature Algorithm: sha256WithRSAEncryption
77:60:75:45:9c:41:ce:5a:80:43:dc:38:bf:fa:04:92:c0:36:
d3:42:7d:0e:fe:bc:ee:0d:97:8d:32:cd:17:ef:3a:92:d1:c7:
4a:dd:f7:65:90:a9:c9:e2:46:cc:0a:fe:59:1e:e6:46:7e:f3:
e7:c4:f4:75:1d:ac:53:67:78:01:1a:fc:9a:73:b9:00:9e:8e:
16:a9:72:a9:97:4e:d4:5b:d8:1d:ed:78:4e:c3:22:67:33:65:
ca:f6:b9:72:d1:df:d9:8a:22:a1:49:31:dc:40:71:38:d2:11:
d5:32:98:d9:9f:61:bd:35:64:89:aa:92:d8:e4:18:fe:19:24:
c6:b5:86:85:b8:b2:24:14:7b:cd:0d:cc:6c:24:10:6b:05:38:
f7:a0:b5:76:92:a9:d0:5a:0f:74:bc:a9:ca:7d:23:85:bd:80:
d7:56:e4:42:4e:0e:ce:d1:a0:64:d7:00:96:22:f2:80:9b:7f:
83:0a:fe:ec:52:fa:90:0c:b6:6c:67:f1:2e:98:98:29:f5:36:
79:6f:50:a7:6a:9a:69:76:3b:84:f5:f3:3b:15:36:eb:88:f6:
82:02:56:d1:b2:5d:a4:dd:6f:67:e5:70:ae:22:e5:b9:d7:77:
15:1b:27:13:ce:70:2a:5e:9a:62:41:37:b7:fb:5b:57:ea:99:
24:44:8e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:57 2024 by rpki-client on console-ams.rpki-client.org