Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/4a6j6DTok585iuQfdjhnO6xGvf8.roa
File: 4a6j6DTok585iuQfdjhnO6xGvf8.roa (raw, json)
Hash identifier: RnTzgHl2fXRR1WOZRmUy2w9hHAoqqc7LpyCLkiVaccc=
Subject key identifier: E1:AE:A3:E8:34:E8:93:9F:39:8A:E4:1F:76:38:67:3B:AC:46:BD:FF
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 0182F9F162FC372CCAB426E300279765DA16
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/4a6j6DTok585iuQfdjhnO6xGvf8.roa
Signing time: Thu 01 Sep 2022 16:45:22 +0000
ROA not before: Thu 01 Sep 2022 16:45:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203283
IP address blocks: 2a12:3fc2:1b00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:f1:62:fc:37:2c:ca:b4:26:e3:00:27:97:65:da:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Sep 1 16:45:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1aea3e834e8939f398ae41f7638673bac46bdff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:41:98:a7:3c:73:8a:6c:87:c7:05:c5:83:94:
39:21:3e:e4:3c:57:39:55:25:00:d7:05:2a:65:ab:
c7:61:a1:cf:b9:a5:f5:72:f2:97:4d:ff:71:c2:ee:
67:9a:6f:67:91:cf:f6:6a:f7:db:61:35:5a:62:eb:
c1:8b:df:97:bc:e7:08:53:14:30:61:dc:e4:cc:e1:
c0:fa:13:3f:17:b3:db:a8:05:51:3c:d3:71:4f:16:
f8:39:f5:1a:bc:ef:28:a6:74:1c:c7:ec:e7:0e:45:
0b:6f:84:92:d5:e0:60:04:86:dc:d8:ee:4d:f9:45:
26:79:12:ae:63:eb:69:59:cf:97:97:5a:8b:42:f7:
82:50:d6:e1:90:a2:78:c1:9a:6a:29:5b:56:ff:c8:
75:f1:f3:86:76:54:49:fe:64:f7:7f:11:97:55:45:
9e:b0:25:db:d7:b0:12:ff:82:98:63:44:21:4e:c9:
a7:03:6e:ff:4b:b8:a8:f0:dc:8a:4f:d5:36:69:8e:
9f:f8:40:2b:0a:da:d2:d5:f3:83:6a:35:61:08:c7:
9a:39:0d:50:28:5c:8f:14:47:b8:e8:6b:6b:70:32:
8e:f2:c4:1c:33:d0:c8:bf:fd:1b:42:c9:b9:78:aa:
e0:f8:42:a7:15:a1:03:9a:17:90:30:63:ea:39:f4:
bf:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:AE:A3:E8:34:E8:93:9F:39:8A:E4:1F:76:38:67:3B:AC:46:BD:FF
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/4a6j6DTok585iuQfdjhnO6xGvf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:1b00::/40
Signature Algorithm: sha256WithRSAEncryption
0b:a5:93:4f:82:79:be:c2:63:cb:0f:e4:7e:22:0b:3f:84:aa:
09:05:71:15:82:15:49:8d:5d:77:d6:8b:35:7f:24:a1:29:96:
1a:6b:41:e7:a1:92:54:f9:1a:d1:ec:2b:dd:3f:02:88:c1:41:
98:2b:ec:16:24:57:71:f1:67:3a:a2:8e:60:ed:59:1d:83:8a:
25:83:44:07:4a:43:e7:5b:86:32:d9:ea:ad:5d:ff:ba:f9:4e:
41:60:c3:59:a6:b2:fb:da:5a:cf:22:74:5f:b7:05:c5:fa:e4:
b5:24:1c:94:54:ca:c5:00:98:de:2f:63:89:40:5d:e7:19:e5:
22:ee:f1:67:9e:54:40:01:7c:d5:d0:f4:83:0c:1c:92:4f:e0:
31:bd:85:ca:fc:df:6d:c5:55:3a:a9:6e:88:77:ad:2e:1e:51:
52:eb:60:02:fb:e7:af:b0:82:4e:ec:7c:53:94:a6:81:2d:3c:
af:d6:5f:b5:a2:72:9b:34:82:9e:f0:88:b4:b7:1e:71:63:28:
89:f2:e2:4d:9a:1a:f4:e9:80:f5:4f:60:32:ae:cc:41:74:47:
d9:fb:0d:43:7d:c0:94:eb:2b:6f:31:6a:d5:17:25:94:06:1e:
8c:5c:81:5a:a1:3e:03:b1:fa:33:c0:b7:49:c0:57:73:f7:fa:
98:30:4d:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:27 2025 by rpki-client