Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/LcJkQ6_DrTF3fSkQsZ5UcvrBZhk.roa
File: LcJkQ6_DrTF3fSkQsZ5UcvrBZhk.roa (raw, json)
Hash identifier: xchx0zPmJ9PK9VwaodShWW9cuQRodljbuK00+UP5SL4=
Subject key identifier: 2D:C2:64:43:AF:C3:AD:31:77:7D:29:10:B1:9E:54:72:FA:C1:66:19
Certificate issuer: /CN=351c7b5607c536657fd5748f6f65b24ac12eb17d
Certificate serial: 011DA862
Authority key identifier: 35:1C:7B:56:07:C5:36:65:7F:D5:74:8F:6F:65:B2:4A:C1:2E:B1:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRx7VgfFNmV_1XSPb2WySsEusX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/LcJkQ6_DrTF3fSkQsZ5UcvrBZhk.roa
Signing time: Sat 26 Mar 2022 01:17:57 +0000
ROA not before: Sat 26 Mar 2022 01:17:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 2a12:eb00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18720866 (0x11da862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351c7b5607c536657fd5748f6f65b24ac12eb17d
Validity
Not Before: Mar 26 01:17:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2dc26443afc3ad31777d2910b19e5472fac16619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:14:1b:2a:65:20:b4:ba:31:4b:9c:3e:ae:a7:
6d:1c:13:c6:a8:ad:4e:20:6b:b0:2a:6f:6e:f8:6a:
ef:d2:6c:e0:c2:6a:07:ed:b5:08:c8:00:17:52:d0:
bd:12:b0:6e:db:a7:85:e4:7c:65:80:65:ce:dd:28:
b3:07:3c:79:95:fb:bf:40:8e:f8:43:c0:c8:d2:cb:
9f:ad:64:00:75:b5:07:ba:7e:b9:8f:7e:0e:7e:d7:
2a:2d:97:89:4f:62:ea:c1:ec:60:be:bd:66:e9:48:
c0:46:a5:b8:e9:dc:5f:01:71:7e:bc:8a:ab:8b:ab:
be:cf:1b:60:78:03:4d:65:2b:5e:db:86:a5:d7:21:
11:45:57:3d:5a:8c:a1:57:c8:1a:e1:01:0f:c0:47:
55:3a:75:4e:ec:ec:a6:ad:09:70:7c:e9:63:ee:4b:
a5:74:9d:8e:d5:66:72:11:b3:03:66:4b:16:5f:a6:
80:fb:d0:3e:ac:6a:55:4b:61:91:50:94:53:87:58:
61:80:9b:3c:c6:91:96:ac:eb:88:d9:91:3c:00:89:
7d:fc:83:72:d8:ad:8b:21:51:f9:0f:7d:c2:ba:7f:
2b:da:7b:d7:29:f3:2c:f2:e9:31:cf:1d:0f:27:5d:
d9:c9:a1:a9:a0:f3:ed:c4:bb:2c:fa:69:6d:6e:23:
9d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:C2:64:43:AF:C3:AD:31:77:7D:29:10:B1:9E:54:72:FA:C1:66:19
X509v3 Authority Key Identifier:
keyid:35:1C:7B:56:07:C5:36:65:7F:D5:74:8F:6F:65:B2:4A:C1:2E:B1:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRx7VgfFNmV_1XSPb2WySsEusX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/LcJkQ6_DrTF3fSkQsZ5UcvrBZhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/NRx7VgfFNmV_1XSPb2WySsEusX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:eb00::/29
Signature Algorithm: sha256WithRSAEncryption
23:f0:d0:5a:26:fb:7a:1c:f8:d3:23:e7:89:54:ec:72:d1:8e:
a9:3f:7f:1c:ed:5f:85:71:19:9d:bd:e0:a9:b7:2e:e7:a1:53:
f5:2c:63:e0:54:cc:25:c0:bb:5b:fb:1c:da:25:c3:70:97:49:
63:54:53:b4:58:e8:31:c1:e4:ff:dd:67:5d:32:d0:c1:ac:ae:
14:88:a7:a8:a5:6b:42:c8:64:5a:f7:76:c7:7f:7a:27:ab:29:
04:0c:7f:f5:02:1f:64:2f:78:01:8f:53:41:40:05:7a:ab:06:
7a:31:8f:ad:80:a1:ea:6c:65:cf:86:e4:33:2c:f4:04:ad:b3:
43:8c:dc:53:fc:d6:4c:1a:8e:74:7e:9e:f2:10:ac:aa:c8:15:
b9:0c:9d:0d:73:38:74:45:7b:e5:e2:a2:71:67:c7:b2:16:2b:
3c:b3:57:16:53:3d:b1:2a:e8:ba:33:2f:30:5d:7d:eb:a6:83:
5f:bd:d0:33:d5:a7:9f:7d:0c:8f:6a:2d:d2:54:0e:93:ba:ca:
d5:c0:0b:f1:5c:6e:16:18:50:55:4d:c5:81:66:04:8d:d9:05:
d8:96:ab:78:d0:91:0a:c7:00:40:dd:1a:a6:e3:98:3f:c7:49:
2f:e7:52:dc:ad:38:86:ef:65:1d:bc:7c:69:a0:f2:65:fe:88:
96:ee:47:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:30 2025 by rpki-client