Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/wNrkCJp8z63vFaDcMgxjFIcEWhI.roa
File: wNrkCJp8z63vFaDcMgxjFIcEWhI.roa (raw, json)
Hash identifier: zNvQRPyYSrq1G4s+O0fKmTAaTD3a9EC5ri68owhtX8k=
Subject key identifier: C0:DA:E4:08:9A:7C:CF:AD:EF:15:A0:DC:32:0C:63:14:87:04:5A:12
Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Certificate serial: 0C50B5
Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/wNrkCJp8z63vFaDcMgxjFIcEWhI.roa
Signing time: Tue 25 Jan 2022 14:42:34 +0000
ROA not before: Tue 25 Jan 2022 14:42:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56488
IP address blocks: 2a12:2540::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 807093 (0xc50b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Validity
Not Before: Jan 25 14:42:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0dae4089a7ccfadef15a0dc320c631487045a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:42:50:e5:50:4f:bd:b5:1d:cc:bd:fa:91:
79:5c:71:91:0c:38:90:01:82:3a:c4:af:b4:16:e0:
85:0b:cf:df:58:c4:3a:db:17:58:3c:b0:9f:f9:a7:
80:37:0b:c4:12:59:0b:15:9c:40:8a:7a:ee:8c:0f:
40:41:27:ea:14:96:00:cb:d9:d5:54:35:1a:f9:e7:
c0:37:a1:97:58:3d:aa:6c:fa:c5:d4:8e:ab:5c:7a:
ce:27:86:54:fa:c0:ce:47:23:16:cc:0e:69:bc:75:
3f:c1:e5:d6:57:4f:b1:3d:3b:53:bc:d8:28:e0:63:
50:89:56:db:52:d7:99:e2:95:d0:df:7e:0a:9b:e1:
69:4c:67:93:dd:40:6a:ab:9c:95:40:c2:0e:80:d4:
c7:44:2b:31:b0:bd:13:4a:b4:e4:db:a1:72:97:17:
e1:da:a0:a2:f1:cd:11:25:29:5f:01:f9:36:87:32:
e9:91:ad:bb:2c:22:2b:02:9e:9a:a9:d4:7b:57:43:
be:4f:11:a0:e4:7c:58:03:1e:49:0d:05:d0:1f:af:
da:e6:f3:8a:b0:d8:8d:47:d2:af:42:0f:be:34:f5:
bc:51:ec:f5:e6:b4:f1:62:55:75:9e:f8:cd:d2:7e:
c7:c5:02:4f:f0:dc:4a:ce:19:e5:4c:3a:ea:a2:dd:
f7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:DA:E4:08:9A:7C:CF:AD:EF:15:A0:DC:32:0C:63:14:87:04:5A:12
X509v3 Authority Key Identifier:
keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/wNrkCJp8z63vFaDcMgxjFIcEWhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:2540::/32
Signature Algorithm: sha256WithRSAEncryption
4a:e2:6b:39:74:6b:a8:ed:58:eb:cf:c7:67:95:97:b1:cc:87:
dd:87:ac:55:32:9e:ff:aa:7b:b1:73:e2:64:fe:f3:24:3c:ce:
2d:c4:08:a9:44:76:11:e8:9d:c4:c1:58:fa:7b:74:e3:70:1a:
00:8a:30:dd:05:f9:b1:56:44:fe:93:70:3a:26:e1:6f:77:d4:
a3:9b:30:c7:55:ea:12:18:4a:69:45:84:c2:e4:fc:42:4d:0e:
80:70:04:ec:59:a6:ed:b1:48:27:cf:13:cf:92:a1:c2:9c:79:
a2:f2:0d:41:46:85:c3:fe:e1:08:68:1d:1a:a1:8d:2f:60:81:
4b:84:bf:f6:c3:bc:0c:78:d8:2b:6a:44:bc:54:0f:ca:95:56:
e8:b3:38:21:00:e5:e9:78:2f:a4:48:88:00:f3:49:d4:55:a1:
d8:fb:a2:e8:6d:59:2e:16:98:60:a8:32:1e:3a:f0:ac:b5:47:
56:22:d8:55:db:1a:7c:a3:4d:94:96:9c:3c:fa:55:c2:2c:88:
50:c7:7d:e6:c2:8b:41:5c:36:1e:13:76:fc:00:b8:63:30:99:
d7:4c:2d:fc:4a:41:cd:8e:52:18:53:d6:ff:b7:1e:0f:8f:92:
b0:fb:1d:e9:0a:76:aa:63:7c:6f:30:31:b2:2a:1e:d3:b3:29:
00:90:21:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:50 2024 by rpki-client on console-fra.rpki-client.org