Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/49W_npRO_oyIRYJWp9ZZ9lU185g.roa
File: 49W_npRO_oyIRYJWp9ZZ9lU185g.roa (raw, json)
Hash identifier: JLPCjJKpEpO1bp/fdgQ2HSGTC0s477d7OfJUQd0Z+f4=
Subject key identifier: E3:D5:BF:9E:94:4E:FE:8C:88:45:82:56:A7:D6:59:F6:55:35:F3:98
Certificate issuer: /CN=3c3784403d86b2d85b3d1d1e02d3dc00a0413d41
Certificate serial: 0181DAD07CA6FD3D01A6DE5C014C8117A089
Authority key identifier: 3C:37:84:40:3D:86:B2:D8:5B:3D:1D:1E:02:D3:DC:00:A0:41:3D:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDeEQD2GsthbPR0eAtPcAKBBPUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/49W_npRO_oyIRYJWp9ZZ9lU185g.roa
Signing time: Thu 07 Jul 2022 22:38:25 +0000
ROA not before: Thu 07 Jul 2022 22:38:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 701
IP address blocks: 2a12:9800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:da:d0:7c:a6:fd:3d:01:a6:de:5c:01:4c:81:17:a0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c3784403d86b2d85b3d1d1e02d3dc00a0413d41
Validity
Not Before: Jul 7 22:38:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3d5bf9e944efe8c88458256a7d659f65535f398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4e:00:4c:05:5c:e6:3c:84:0a:ad:a1:f4:c1:
5a:bd:c1:54:34:19:b5:97:86:ef:f3:ad:ab:65:d1:
a7:ae:e1:e2:a0:14:8f:83:9b:44:51:a6:1b:b8:80:
23:56:53:c8:33:fc:80:4d:e4:10:88:1c:40:53:4c:
9a:4a:2d:99:e3:32:45:07:06:a3:20:38:69:b8:3d:
71:b7:2e:65:bd:e9:5b:cd:0b:a8:ea:52:d5:e8:ec:
ea:04:48:de:90:07:fc:c4:a9:98:f9:18:cc:0b:31:
e8:b5:13:7e:29:2f:d0:00:ef:36:fc:84:f7:04:18:
35:e8:4c:4f:38:82:1f:ba:be:5a:4f:45:fd:6f:25:
9d:a7:a9:b7:c5:04:75:d1:a0:57:cb:36:08:7e:f6:
82:80:94:09:d6:c3:4e:60:4b:f1:de:72:18:96:5d:
9b:88:48:f1:5a:e8:67:81:88:c7:54:20:4a:4f:dc:
a6:f0:5c:f9:3f:1e:25:71:4f:83:48:fc:8c:b9:d7:
af:c2:85:b2:02:39:51:34:62:7b:d6:7f:e2:f4:08:
ab:36:66:73:16:19:66:91:6c:0c:84:22:90:96:5b:
0f:f1:f9:06:1f:12:7e:85:8f:dd:64:31:ad:73:4b:
e4:91:6a:27:92:34:d7:ca:de:1e:90:a9:0f:a2:35:
c2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D5:BF:9E:94:4E:FE:8C:88:45:82:56:A7:D6:59:F6:55:35:F3:98
X509v3 Authority Key Identifier:
keyid:3C:37:84:40:3D:86:B2:D8:5B:3D:1D:1E:02:D3:DC:00:A0:41:3D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDeEQD2GsthbPR0eAtPcAKBBPUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/49W_npRO_oyIRYJWp9ZZ9lU185g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/PDeEQD2GsthbPR0eAtPcAKBBPUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:9800::/29
Signature Algorithm: sha256WithRSAEncryption
0b:53:81:e4:cf:d9:f6:62:18:01:fa:03:c5:56:1e:a8:bc:39:
e4:16:a8:13:9c:90:1b:c0:97:c9:9c:f1:fd:71:4a:61:1d:b1:
19:f8:c5:ca:db:40:79:0d:a4:46:a5:36:a5:26:ab:68:1d:be:
13:9e:f5:e7:26:cf:c5:ac:c9:92:f9:d7:5c:5f:65:ec:03:a2:
ae:a6:65:3d:1e:8a:ca:7c:60:35:a8:eb:ca:3d:30:1e:82:b7:
2d:3d:e9:52:0a:f7:dd:5e:c7:03:3c:45:95:fc:8f:c6:7a:54:
e8:b6:d2:6f:c8:15:1b:d1:8a:c2:7e:30:4e:1a:0e:bb:31:ed:
6d:f7:79:20:34:da:1f:60:6e:3a:91:28:18:98:5b:0b:9d:69:
14:fa:d3:67:18:7f:1c:22:8d:e5:1f:d0:d2:49:78:b2:26:29:
54:75:5d:26:4d:93:eb:16:e4:f8:ab:c1:14:6a:37:cd:bd:c1:
3c:d9:5a:7a:7c:d1:10:78:57:9b:a2:d3:2f:1b:d7:6f:21:83:
87:77:0b:2e:23:a9:15:c6:33:39:1c:3e:c4:4f:92:a2:1c:07:
07:a4:9c:b1:2b:f2:d0:ec:c9:e7:24:88:6f:66:b9:fe:34:32:
b6:22:a7:93:32:d3:e2:ed:0d:19:7b:7d:87:d7:89:35:a1:71:
85:52:4c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-ams.rpki-client.org