Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/y3E3SjVwXRgheo21_eegDPUw4vA.roa
File: y3E3SjVwXRgheo21_eegDPUw4vA.roa (raw, json)
Hash identifier: ZNL1kNWA6O+QkEgAW/kmicI+A6obARCaxcoUskZw9Oo=
Subject key identifier: CB:71:37:4A:35:70:5D:18:21:7A:8D:B5:FD:E7:A0:0C:F5:30:E2:F0
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 01838EFE36F2EDD1C4548F44F0E2F8A393C6
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/y3E3SjVwXRgheo21_eegDPUw4vA.roa
Signing time: Fri 30 Sep 2022 15:22:48 +0000
ROA not before: Fri 30 Sep 2022 15:22:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202559
IP address blocks: 2a12:4946:4010::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8e:fe:36:f2:ed:d1:c4:54:8f:44:f0:e2:f8:a3:93:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Sep 30 15:22:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb71374a35705d18217a8db5fde7a00cf530e2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:08:f1:3c:5b:b8:6e:b6:4d:9c:1e:de:53:5f:
a2:ec:17:d1:0d:59:b3:d2:59:e7:b6:a8:a2:b7:50:
3a:2c:15:38:63:dc:02:f0:04:72:21:ed:2d:07:bf:
00:c0:12:6c:63:37:9d:cf:2f:0d:e7:74:7b:c3:72:
6c:ae:67:7c:0a:d6:99:81:10:7d:64:88:d6:ca:6a:
52:1b:f9:2f:c1:44:b6:ff:62:c4:3b:6b:a8:94:a7:
04:be:ac:35:d6:20:6a:70:cf:2f:bc:a6:99:6e:c8:
7c:03:12:4c:a7:5f:e6:32:4e:fc:8d:85:8b:7f:fc:
31:f7:60:7e:ef:cb:c4:13:63:88:ba:ca:68:5c:e2:
dc:f7:18:5d:1e:9a:98:f3:d2:3d:3e:c3:f8:b2:e4:
84:fd:94:d7:84:f5:86:0e:c9:86:70:22:4e:b3:6e:
d3:43:34:7e:51:0d:4f:11:b3:de:e4:cc:28:cb:2d:
50:b6:8f:84:0a:4f:da:ed:11:24:eb:51:db:77:d3:
2e:ff:03:d0:30:84:51:b6:c5:63:8d:c3:74:ef:1a:
5f:ed:b5:b0:12:a1:f2:6d:2f:e4:87:35:e2:7a:0f:
03:f4:57:6b:8f:57:7a:58:29:fa:ee:f5:a3:cc:4c:
37:5c:18:5c:e6:f5:a7:98:db:e3:f6:b5:ce:b6:9e:
f6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:71:37:4A:35:70:5D:18:21:7A:8D:B5:FD:E7:A0:0C:F5:30:E2:F0
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/y3E3SjVwXRgheo21_eegDPUw4vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4946:4010::/44
Signature Algorithm: sha256WithRSAEncryption
3f:1b:ef:7e:71:ec:d9:62:ff:15:94:d2:40:79:89:3f:dd:8d:
54:a5:81:0f:40:2a:aa:bc:e6:60:b7:33:eb:74:a2:33:18:3f:
48:c5:85:f6:8a:69:1b:58:ab:4c:3a:66:6b:25:28:7f:2d:52:
67:d0:10:f3:4d:76:90:4b:2a:c9:8c:52:a2:6f:3b:44:83:a3:
4b:db:8c:a2:0c:b5:e5:1d:21:b6:fa:a2:5e:d6:3a:e6:71:31:
1c:b2:f8:ed:29:59:e0:3b:53:55:db:6c:0e:d8:48:fb:a2:7a:
16:e5:9b:29:1a:c9:51:bb:2a:3b:8c:56:6f:a5:2c:a1:d0:a1:
2e:4a:25:75:49:68:ae:1e:9c:46:dc:d6:ff:1a:d4:f4:83:fd:
b8:fe:83:13:2b:59:b5:7d:85:8f:20:05:40:bc:46:ae:39:bd:
92:67:55:2c:04:70:21:43:f0:7d:83:5e:2d:1e:3d:bd:51:b3:
c2:2f:18:00:9f:d3:55:8b:86:50:e8:ac:a9:df:be:72:e8:90:
0c:f1:79:b5:51:55:35:ab:05:da:e7:56:8a:f5:94:1a:80:e4:
2f:63:fb:53:89:b4:13:8b:e5:71:4e:6d:70:15:74:f3:81:ac:
ed:e0:9b:9d:9b:2e:d0:9b:59:42:7f:f8:ca:38:6d:a8:25:2b:
70:b5:61:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:29 2024 by rpki-client on console-ams.rpki-client.org