Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/EEMGjm0ITevx39Qg2SvxEwt_v8E.roa
File: EEMGjm0ITevx39Qg2SvxEwt_v8E.roa (raw, json)
Hash identifier: 6nunPUQDTgdrRFH0bWX3py+h/IcoztUoFeZOBdTcLls=
Subject key identifier: 10:43:06:8E:6D:08:4D:EB:F1:DF:D4:20:D9:2B:F1:13:0B:7F:BF:C1
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 01195665
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/EEMGjm0ITevx39Qg2SvxEwt_v8E.roa
Signing time: Fri 13 May 2022 21:36:40 +0000
ROA not before: Fri 13 May 2022 21:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 2a12:49c4::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18437733 (0x1195665)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: May 13 21:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1043068e6d084debf1dfd420d92bf1130b7fbfc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f1:21:0a:d2:82:c4:93:9b:09:85:f9:af:04:
4f:2c:42:41:44:61:d4:a3:61:64:ed:7e:a3:e3:db:
d6:c2:e4:8f:da:4c:24:dc:23:0c:b4:4b:23:db:89:
bc:29:a4:33:1a:3b:15:0c:da:cf:84:9c:4d:bd:b3:
2b:4c:3b:7d:06:f9:30:93:3a:3d:da:e5:33:de:e2:
d6:56:a2:27:2a:f5:e2:ec:d2:bd:86:a7:0d:a0:3a:
8c:67:43:81:c1:7e:d7:7d:b3:9f:8c:6d:8e:2f:d2:
0e:f6:33:4e:92:80:17:8b:3c:16:48:be:50:19:15:
15:8c:48:90:e8:0e:22:38:e8:67:0b:e1:41:13:48:
e5:c0:ef:10:c8:96:a2:86:1d:9e:69:89:09:9a:00:
09:cf:a9:ed:98:d3:fc:03:cb:41:bd:2c:96:f5:f7:
b5:69:98:68:4f:42:19:47:93:ff:21:b5:01:7a:f1:
da:a2:8b:84:54:6c:a7:dd:b6:90:28:58:d2:23:75:
2a:ad:90:6c:d6:ee:24:37:ef:76:24:a3:95:f5:21:
a7:39:2e:d2:84:3c:d6:b1:b1:ca:13:95:1a:b7:ab:
5a:c6:a2:cf:8f:a9:99:be:33:69:eb:6b:de:aa:6c:
e6:0f:c4:63:d1:a5:d3:ce:73:65:34:c4:3c:e9:b3:
d3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:43:06:8E:6D:08:4D:EB:F1:DF:D4:20:D9:2B:F1:13:0B:7F:BF:C1
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/EEMGjm0ITevx39Qg2SvxEwt_v8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:49c4::/32
Signature Algorithm: sha256WithRSAEncryption
27:fe:04:b8:a4:47:24:30:af:03:07:27:7f:2f:3a:13:00:3a:
ca:6f:9f:c0:0b:10:76:0e:c0:ab:db:14:2c:c0:80:ad:8e:09:
c6:c0:dd:39:86:48:38:1e:18:3c:7d:39:3f:3c:a4:67:ac:3c:
20:43:cf:d7:41:73:ec:d6:45:6c:e2:23:bb:82:c0:a5:9b:50:
72:9d:7c:2d:ca:2f:c0:b8:61:be:e1:fe:bc:70:63:d1:01:c7:
c8:c9:ea:a1:26:ce:4f:cd:72:c4:5c:8c:18:98:d6:24:31:af:
d2:ff:5d:61:f4:23:0c:cc:67:2a:70:fc:79:52:b0:dc:99:d0:
69:e1:69:6e:b2:44:62:d1:d6:36:76:19:c6:21:7c:63:64:db:
03:8c:6e:1f:13:95:97:20:24:9c:4b:f0:c1:c1:a0:78:e2:0b:
df:6f:2a:e5:0c:d0:c2:07:5e:9e:46:35:27:7d:ef:bd:8f:50:
fe:ee:36:e7:82:92:f5:1d:e0:5f:17:09:a8:8c:8a:3f:f0:4e:
de:4e:3a:a6:cb:81:a8:95:bd:5c:97:04:76:64:a7:95:c4:09:
e1:8e:fd:86:22:0f:5b:f7:a9:78:bf:b5:d6:84:bb:de:ca:66:
68:49:25:d4:c7:74:da:64:3c:31:bf:6f:ae:bf:8e:22:b9:de:
62:76:94:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:34 2023 by rpki-client on console-ams.rpki-client.org