Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/DloCzzQ70_TaVOmvpsmI-wizCRw.roa
File: DloCzzQ70_TaVOmvpsmI-wizCRw.roa (raw, json)
Hash identifier: 1HuHtc7gla+cS+CEsdvxKizj3L9JiqQBZti+GzNX3yA=
Subject key identifier: 0E:5A:02:CF:34:3B:D3:F4:DA:54:E9:AF:A6:C9:88:FB:08:B3:09:1C
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 018356CD7ACE890CC8A6758C9E0D936A99B6
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/DloCzzQ70_TaVOmvpsmI-wizCRw.roa
Signing time: Mon 19 Sep 2022 17:30:50 +0000
ROA not before: Mon 19 Sep 2022 17:30:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203631
IP address blocks: 2a12:3fc2:aa70::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:cd:7a:ce:89:0c:c8:a6:75:8c:9e:0d:93:6a:99:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Sep 19 17:30:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e5a02cf343bd3f4da54e9afa6c988fb08b3091c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:49:49:a3:9d:19:b1:19:0f:cb:68:f9:b3:59:
69:9c:5f:7a:d3:e3:cb:4c:31:c9:d9:48:c2:5a:e7:
5e:a6:21:23:39:6c:b7:98:fd:da:95:0b:aa:1a:42:
bc:5d:58:1c:09:88:3d:70:7a:9c:3c:74:89:75:39:
ee:4b:b2:5f:03:7b:d3:54:11:9e:b9:bd:d2:30:72:
79:8a:ed:97:65:39:a9:1a:df:68:de:ce:5a:60:e2:
8b:cb:0c:a6:a0:79:30:c2:cf:d3:93:03:fe:45:bb:
51:0a:8b:a1:b5:58:bc:02:5c:a7:c5:fa:74:c3:8e:
33:f4:dc:53:07:31:94:dc:d3:64:36:5b:06:e7:bc:
e4:53:c4:34:2e:c6:44:f2:db:be:c1:a8:de:b3:ce:
5c:2d:95:5e:98:dc:6f:cb:90:92:81:76:27:b4:d6:
a4:05:41:e7:7d:a6:8f:51:1e:4f:53:60:54:82:00:
2a:91:02:e6:40:59:10:33:54:8d:5f:05:2e:3f:8a:
7c:f1:91:1c:f0:dd:23:9b:c2:d4:d5:b9:f0:b5:86:
e1:09:f5:b1:c7:eb:4a:41:59:f4:10:fd:eb:ad:f2:
1a:36:38:b8:35:73:00:2d:c9:51:14:1f:e7:42:fa:
4d:05:68:14:81:f7:b9:26:a1:af:9f:6d:13:5a:ba:
da:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5A:02:CF:34:3B:D3:F4:DA:54:E9:AF:A6:C9:88:FB:08:B3:09:1C
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/DloCzzQ70_TaVOmvpsmI-wizCRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:aa70::/44
Signature Algorithm: sha256WithRSAEncryption
0c:26:71:3f:af:b0:2d:a8:e2:ff:19:3a:c9:47:9f:9b:1d:f3:
17:92:ae:bc:1c:0f:11:c1:71:99:41:2f:da:dd:e6:83:69:1d:
69:6a:23:ea:4c:50:43:65:c9:64:15:4b:74:d0:de:e2:bd:da:
6f:58:3a:34:c3:2b:38:e9:81:b7:97:dd:17:8f:fe:fe:63:d5:
fb:63:ee:d2:6c:07:b3:40:0f:a1:3a:35:45:a1:ea:9a:e2:0a:
e2:e2:04:a4:dc:19:d1:c0:79:5b:a0:1c:60:79:a5:43:a1:6e:
7c:63:49:28:d7:58:e2:12:f8:74:f5:ee:52:96:30:54:6d:9e:
a8:5f:09:8f:cc:0c:f4:d3:a4:40:bb:55:7e:a2:42:9d:3e:ce:
5d:e5:3b:72:18:0b:90:d3:13:b5:6b:bb:42:69:87:f6:09:98:
e4:3b:df:36:0e:2d:15:6e:b2:aa:34:5e:88:07:b6:1c:e3:3d:
48:0a:fd:6c:b5:38:ce:d3:4b:46:2c:9b:cd:18:97:54:e3:d7:
c7:c1:ad:88:3f:ed:c2:ba:6c:c7:36:f9:20:6b:c1:39:68:4f:
27:50:c0:0a:5f:d1:b5:85:c2:41:98:fc:b4:05:dd:ec:66:6e:
e8:55:0e:9d:45:76:9b:9c:7f:40:76:ea:a6:ae:a6:84:d0:39:
0e:3d:49:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:00 2025 by rpki-client