Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/aU95Vjpu-2cqzBqWIAQnUREVEao.roa
File: aU95Vjpu-2cqzBqWIAQnUREVEao.roa (raw, json)
Hash identifier: R6W+iJUhXPE2WfP3N7ORY45MIfUK78e37+YpmMN4mjQ=
Subject key identifier: 69:4F:79:56:3A:6E:FB:67:2A:CC:1A:96:20:04:27:51:11:15:11:AA
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 0183E42FB9A28EA30CABB1189C654503DE4E
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/aU95Vjpu-2cqzBqWIAQnUREVEao.roa
Signing time: Mon 17 Oct 2022 04:24:36 +0000
ROA not before: Mon 17 Oct 2022 04:24:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209988
IP address blocks: 2a12:3fc2:1200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e4:2f:b9:a2:8e:a3:0c:ab:b1:18:9c:65:45:03:de:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Oct 17 04:24:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=694f79563a6efb672acc1a9620042751111511aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dc:c1:2b:94:d0:01:e8:f1:1e:5c:b1:26:c5:
e9:5c:d2:76:b6:e1:a6:23:5d:47:9a:8b:36:4b:6b:
3b:fb:50:7f:bf:2a:50:e4:cf:9a:1f:e3:44:71:f7:
80:14:b2:63:a8:13:33:20:f7:40:4e:72:ff:3f:f6:
55:d5:3f:71:f8:7f:38:3b:c2:7e:4a:4a:bb:13:ce:
d8:7f:6b:4b:f5:93:81:7d:16:43:25:ef:b1:b3:67:
9b:d0:42:5e:75:01:3e:c2:bb:e6:84:90:02:5b:ed:
f6:5e:27:11:09:80:21:c2:74:11:64:1f:bf:59:97:
03:ee:6c:2b:21:91:ac:a6:01:55:da:bb:ad:fc:07:
be:83:f6:3e:04:bd:e5:d3:b4:fa:4b:a6:37:93:cc:
f8:be:13:a8:bc:59:14:55:69:22:dd:ec:44:4d:b3:
4f:dd:42:2e:ba:c9:7f:56:36:ac:91:09:54:8d:ea:
d7:ee:ef:41:fc:75:bc:2d:04:36:56:fd:0c:b3:b1:
b3:f0:30:31:f5:1f:5c:b7:4e:c5:3b:af:cc:85:c5:
a8:fc:05:dc:e3:94:3f:aa:fa:9d:97:59:50:be:00:
ce:01:aa:3b:88:e2:ff:df:44:c5:3b:e3:87:1d:08:
f3:81:df:42:71:42:4e:28:cb:84:f1:fb:8a:9e:f6:
b2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:4F:79:56:3A:6E:FB:67:2A:CC:1A:96:20:04:27:51:11:15:11:AA
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/aU95Vjpu-2cqzBqWIAQnUREVEao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:1200::/40
Signature Algorithm: sha256WithRSAEncryption
34:b9:a1:65:e5:ba:b1:b0:20:fb:86:98:45:06:9b:00:7c:53:
45:2b:ce:e0:75:3e:6b:96:1b:c6:cc:95:bf:f7:79:0a:29:75:
d3:94:47:13:fb:22:bc:0c:b0:2f:ce:24:05:18:ce:c8:30:04:
4f:38:be:45:43:2b:53:b3:48:a2:28:94:03:22:d1:91:b6:e1:
ad:76:a6:e7:56:b6:60:6e:bb:5e:2d:5d:8c:bc:14:15:23:7f:
e8:64:04:bb:f7:b1:31:24:e8:62:1b:bb:42:e6:cd:7c:85:49:
bf:99:94:35:41:40:b3:2b:4b:03:c1:49:dd:0c:07:7b:bc:3f:
c3:c1:1f:16:b3:70:02:6e:5e:15:09:21:c8:15:29:7a:18:38:
8c:84:ed:5d:79:8f:1f:30:b7:38:7d:3a:6d:e3:3e:be:5f:db:
67:33:a4:8a:04:db:3d:c1:e0:bf:fa:a1:be:75:a2:dc:d2:98:
5b:72:eb:62:35:f3:a7:e5:7f:9f:26:41:29:bb:6c:3e:23:a0:
23:93:1b:06:36:b3:56:c0:4f:a9:50:93:26:2e:a1:bb:67:8f:
77:5d:bd:30:aa:82:29:1e:16:d9:e9:b7:3f:44:b0:fc:38:60:
95:91:85:17:7d:64:00:aa:ea:cf:e5:fa:4c:a9:17:d2:91:19:
76:b5:c6:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:48 2025 by rpki-client