Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/1-ygwe6YWx4CCB0KYO2wjfqgp-eQ.roa
File: 1-ygwe6YWx4CCB0KYO2wjfqgp-eQ.roa (raw, json)
Hash identifier: 5+h4su0xPwp2NKdeTYtiK5plJCqGwPB1MoT4hneFSsY=
Subject key identifier: FB:28:30:7B:A6:16:C7:80:82:07:42:98:3B:6C:23:7E:A8:29:F9:E4
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 0183381A98CA2348DB221CC04FB12C433EEF
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/1-ygwe6YWx4CCB0KYO2wjfqgp-eQ.roa
Signing time: Tue 13 Sep 2022 18:26:50 +0000
ROA not before: Tue 13 Sep 2022 18:26:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51741
IP address blocks: 2a12:62c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:38:1a:98:ca:23:48:db:22:1c:c0:4f:b1:2c:43:3e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Sep 13 18:26:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb28307ba616c780820742983b6c237ea829f9e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ff:99:e9:63:af:6f:fa:8b:f9:86:3c:7f:30:
8f:aa:ed:6d:47:10:04:ac:22:29:b4:e3:b7:44:86:
50:04:d8:80:98:b7:23:ea:36:ea:48:11:45:a9:cb:
14:50:36:dc:8a:38:bc:28:e1:29:74:c1:cc:95:f8:
5b:bf:88:46:e0:eb:0c:5f:17:f4:c7:5f:70:24:04:
4b:6c:7f:b5:ce:ef:9e:d5:3e:98:86:58:2b:6c:9e:
1e:39:86:1d:87:7c:a7:8b:5a:8e:22:7c:65:65:66:
54:5f:33:ac:3d:6e:97:91:50:51:8b:dd:36:a2:df:
8a:a4:07:83:6f:19:d2:da:29:ea:02:af:d7:9d:df:
a4:16:57:8c:0e:88:6f:f8:b7:58:eb:84:84:f9:38:
6e:72:5a:05:8a:8d:d0:a8:23:b8:9d:90:b5:c3:a7:
22:b6:42:19:8e:12:a0:da:e7:22:35:71:6d:11:f3:
f7:1f:f5:3f:25:1d:cd:ba:cf:34:f5:53:fd:90:8d:
ec:c8:df:bc:ef:13:13:49:f1:77:60:1e:31:77:2d:
6c:1b:8f:df:52:ce:3d:e7:47:98:35:18:cc:e4:04:
e8:49:61:a4:91:a8:4d:cd:66:3f:4b:58:de:45:75:
66:ca:15:05:6b:73:ec:ea:b2:54:ee:37:0e:60:b4:
df:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:28:30:7B:A6:16:C7:80:82:07:42:98:3B:6C:23:7E:A8:29:F9:E4
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/1-ygwe6YWx4CCB0KYO2wjfqgp-eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/32
Signature Algorithm: sha256WithRSAEncryption
91:06:de:f5:46:ad:15:77:f0:3f:a4:08:bf:28:0b:f1:26:74:
a7:b5:66:0d:4f:63:08:a5:ed:fc:4f:dd:57:c5:3f:90:10:f6:
6c:05:d8:d1:fe:a5:1a:42:d1:db:5a:ac:6a:e9:c7:d1:68:c6:
32:e7:3e:f0:66:b9:18:b6:58:8b:10:00:b9:8a:86:93:ec:75:
f5:03:4d:df:72:dc:2d:f6:e7:a0:8d:7f:d9:52:e6:90:25:93:
63:4f:b8:04:20:7f:b6:5e:96:bd:a5:ed:a8:b1:83:b9:3b:27:
5b:12:4e:69:78:57:eb:8a:d7:47:c3:27:e5:1a:63:98:03:c5:
c5:42:3c:22:cb:52:bd:dc:af:dc:9d:d7:b1:f9:75:a3:ca:cc:
e5:0d:1e:6b:96:e4:b7:43:20:37:4f:1a:cd:89:df:44:72:4a:
1a:71:4b:3b:75:41:41:91:54:d4:70:40:71:c9:42:b6:0a:80:
50:05:5f:04:88:6b:71:83:50:e4:f8:22:b1:2e:dc:e1:a1:53:
26:2e:74:86:72:62:b1:26:6f:24:d0:65:31:8b:f0:70:84:31:
86:42:5d:1a:a6:8e:96:97:16:c7:f5:1a:82:5d:95:39:25:ac:
85:29:a3:fb:cc:7f:cd:aa:47:93:f5:1e:2c:79:90:52:f6:7a:
4e:6b:c2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:13 2023 by rpki-client on console-ams.rpki-client.org