Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/EsUC827fiGXVMsc712hECFn7Wq0.roa
File: EsUC827fiGXVMsc712hECFn7Wq0.roa (raw, json)
Hash identifier: NDH5c2fqAg4PZBmwSlNBLvWgtAJzMRywRs/2anSwsb8=
Subject key identifier: 12:C5:02:F3:6E:DF:88:65:D5:32:C7:3B:D7:68:44:08:59:FB:5A:AD
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 01856C1CAC0C49933BDDCE44C6A86DE1D67D
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/EsUC827fiGXVMsc712hECFn7Wq0.roa
Signing time: Sun 01 Jan 2023 06:54:56 +0000
ROA not before: Sun 01 Jan 2023 06:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203631
IP address blocks: 2a12:3fc2:aa70::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:ac:0c:49:93:3b:dd:ce:44:c6:a8:6d:e1:d6:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Jan 1 06:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12c502f36edf8865d532c73bd768440859fb5aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:98:95:11:fc:d0:33:8d:a1:21:90:1f:74:92:
34:aa:f9:0e:be:cd:1e:a6:15:2a:81:2a:9a:10:2a:
cf:07:09:46:4f:24:d9:cf:c8:06:4f:ea:c2:7c:98:
62:98:b0:66:23:a0:eb:10:e6:ad:65:ad:d8:20:dc:
12:ed:cc:56:0c:6b:02:3d:da:85:79:ee:02:ea:17:
1e:f7:cb:7c:cc:3b:27:0d:f0:55:97:37:0f:58:17:
46:94:c4:62:bb:b6:46:a0:37:f9:75:e2:73:e3:b5:
16:aa:a6:da:09:28:7d:2c:56:11:a9:d5:f8:ae:ec:
b0:19:35:3b:dd:98:32:52:bb:7e:65:3f:ce:0c:2e:
43:18:78:6f:9c:e3:f5:e0:49:91:25:f6:49:2c:0a:
1e:da:25:8c:f6:84:49:9c:61:30:ba:c7:dd:a0:8b:
07:f1:8d:b1:0a:d3:91:ae:92:8c:fe:c4:34:22:a9:
af:8a:4b:1b:4a:a6:ee:12:63:dd:38:2c:7e:7b:4d:
5c:e0:90:86:5f:58:dd:e3:6e:9a:51:50:a8:d8:50:
c8:fd:6d:48:bc:57:a4:15:b1:5a:3c:30:c2:a5:33:
e4:30:f6:66:d9:38:6d:0c:5c:e7:72:74:15:ca:37:
3a:06:56:9c:a3:99:0a:bc:19:83:7b:58:81:13:e3:
29:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C5:02:F3:6E:DF:88:65:D5:32:C7:3B:D7:68:44:08:59:FB:5A:AD
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/EsUC827fiGXVMsc712hECFn7Wq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:aa70::/44
Signature Algorithm: sha256WithRSAEncryption
4a:22:a0:6a:79:6a:a9:76:47:0c:9b:d8:53:2e:57:af:2a:41:
55:bc:36:21:66:11:7d:d3:a9:7d:5e:19:4d:8b:e9:86:7f:5f:
d3:61:92:9b:10:d9:7a:ec:e9:3f:15:ad:6c:3c:aa:e0:0b:0a:
cd:72:b5:7c:9c:eb:44:be:68:8e:3b:07:42:c4:8c:69:9f:00:
29:41:ff:eb:91:3d:62:6e:eb:aa:f3:0d:02:d7:7b:9f:93:48:
b4:dd:91:14:5f:7c:77:8c:e5:8f:f9:f2:86:2c:35:b2:48:b2:
52:7b:c6:1f:21:22:0d:28:d3:17:45:f7:55:30:ca:58:92:a8:
b8:46:72:8b:5d:ea:03:d8:b0:99:a0:a1:eb:4e:e4:f4:dd:cc:
b6:90:32:23:a7:ad:e1:62:5a:dd:3e:40:a9:59:09:92:80:c1:
0f:c2:1c:9a:cd:f1:bc:18:02:58:89:88:42:85:43:7d:0a:1d:
af:88:87:b6:aa:41:b9:f7:70:06:97:71:1f:ed:37:95:be:49:
71:d7:54:db:76:49:78:b0:17:a5:21:ec:7c:75:ad:22:36:fc:
97:89:f0:32:a9:23:ef:77:12:64:4b:fb:44:eb:15:51:63:32:
a1:f1:bc:f7:d2:58:a8:e5:34:d5:54:55:29:a1:21:87:46:b2:
10:1b:5f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:17 2025 by rpki-client