Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/hs0t8S7MARt7xt7k-pR8qLdvbyo.roa
File: hs0t8S7MARt7xt7k-pR8qLdvbyo.roa (raw, json)
Hash identifier: p3c0To0a+oZEDuO6vuG8UREFXv9jkrJTBGCRiiPXr6I=
Subject key identifier: 86:CD:2D:F1:2E:CC:01:1B:7B:C6:DE:E4:FA:94:7C:A8:B7:6F:6F:2A
Certificate issuer: /CN=a9f2fdea263b79fce11389052b0cd940995c6dfe
Certificate serial: 01829737A1C490E8C65724FB3F5F98DFA417
Authority key identifier: A9:F2:FD:EA:26:3B:79:FC:E1:13:89:05:2B:0C:D9:40:99:5C:6D:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qfL96iY7efzhE4kFKwzZQJlcbf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/hs0t8S7MARt7xt7k-pR8qLdvbyo.roa
Signing time: Sat 13 Aug 2022 12:39:41 +0000
ROA not before: Sat 13 Aug 2022 12:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204471
IP address blocks: 2a12:d8c1::/32 maxlen: 48
2a12:d8c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:97:37:a1:c4:90:e8:c6:57:24:fb:3f:5f:98:df:a4:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9f2fdea263b79fce11389052b0cd940995c6dfe
Validity
Not Before: Aug 13 12:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86cd2df12ecc011b7bc6dee4fa947ca8b76f6f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:68:de:b8:68:0a:2a:93:aa:66:08:38:68:b4:
eb:6b:a1:2b:b2:1b:a9:fe:82:5b:3f:b2:d1:d3:9a:
8e:05:a5:8e:ca:54:1d:e6:42:b6:23:cd:0a:48:06:
8e:7d:b1:cc:e1:6e:12:05:5f:ec:55:83:7b:e6:24:
73:ea:30:95:1f:5a:e7:26:38:85:ad:43:d5:9c:90:
48:56:86:3b:21:56:8e:35:b7:15:4b:12:2a:e9:71:
43:a8:46:d5:99:d4:f9:ec:c6:ea:ae:00:dd:3a:86:
6d:22:8f:b0:f7:8f:d1:07:57:28:f0:0b:e0:f2:79:
65:93:50:9e:21:ad:19:dc:2e:7c:12:08:ce:49:7a:
e8:f8:8b:b2:ab:47:08:45:a3:6e:a6:6b:36:1f:62:
a6:e9:e1:a3:03:ec:a9:7b:ac:43:55:69:68:c5:8a:
04:1b:f9:7e:49:96:58:6d:a8:83:54:b9:ef:79:1c:
72:75:3a:db:cf:c7:cf:e4:7d:37:f0:7a:be:9b:2e:
d0:53:ea:c7:01:05:37:ce:62:52:f2:68:63:76:23:
e3:c4:a4:5b:73:1d:78:53:06:8f:5e:2b:24:e5:10:
4d:a9:a0:07:ce:1b:e4:c0:98:ed:54:ac:ea:2d:78:
e3:95:30:43:ce:eb:94:c2:36:b4:ed:bf:25:80:a5:
dd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:CD:2D:F1:2E:CC:01:1B:7B:C6:DE:E4:FA:94:7C:A8:B7:6F:6F:2A
X509v3 Authority Key Identifier:
keyid:A9:F2:FD:EA:26:3B:79:FC:E1:13:89:05:2B:0C:D9:40:99:5C:6D:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qfL96iY7efzhE4kFKwzZQJlcbf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/hs0t8S7MARt7xt7k-pR8qLdvbyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/qfL96iY7efzhE4kFKwzZQJlcbf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d8c0::/31
Signature Algorithm: sha256WithRSAEncryption
1c:1f:56:48:86:0a:0d:75:50:ed:db:7d:63:aa:e2:53:cf:0f:
8e:d5:5d:9e:ac:41:40:4e:19:fe:d2:da:3c:7a:99:f7:15:8c:
21:42:0b:a3:20:83:21:46:77:81:e9:db:06:e8:83:30:8c:75:
6b:66:76:9e:ec:24:31:13:fa:22:b8:9e:cc:97:f9:ab:fa:eb:
db:0c:18:af:81:f8:62:4c:ef:95:70:96:35:03:83:26:a6:7f:
9c:d2:52:d5:30:52:d0:8f:13:d4:b4:12:76:6d:ce:5f:9d:f4:
20:1e:bd:a8:d6:6b:9b:f4:14:ae:3e:22:d8:1b:d9:57:0e:fe:
3d:dc:44:3a:71:43:6a:d3:fd:4a:04:d4:35:a8:2c:68:2f:75:
86:2e:e3:49:fc:d8:1b:a7:16:9a:91:a9:23:5a:3d:4b:eb:0a:
15:3f:32:b2:fa:24:c8:a0:0e:17:02:6f:6e:24:f5:b3:a3:cf:
ab:69:1d:c4:20:bf:a2:9d:b2:50:32:6d:f7:b5:e1:2e:35:de:
6d:d2:dc:72:68:b6:f4:85:ed:56:31:a4:1f:62:b4:47:e1:42:
73:d9:b2:91:12:40:53:c2:73:de:41:54:aa:8a:da:f3:b8:67:
8f:8a:d6:b0:26:1d:65:fd:03:68:03:75:d2:cd:24:f0:a0:cc:
0e:87:a1:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:02 2024 by rpki-client on console-ams.rpki-client.org