Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/TkoyvLqc6_i51SA6o4IlXx5xgDw.roa
File: TkoyvLqc6_i51SA6o4IlXx5xgDw.roa (raw, json)
Hash identifier: Jt3rI/HtdT1jePFZy/w9ILhXKkK05Zhtm/z4N8AF/HU=
Subject key identifier: 4E:4A:32:BC:BA:9C:EB:F8:B9:D5:20:3A:A3:82:25:5F:1E:71:80:3C
Certificate issuer: /CN=29f9670ee2a30eac8c0a39dc47ff7a8cd2473b00
Certificate serial: 01F8BD
Authority key identifier: 29:F9:67:0E:E2:A3:0E:AC:8C:0A:39:DC:47:FF:7A:8C:D2:47:3B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KflnDuKjDqyMCjncR_96jNJHOwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/TkoyvLqc6_i51SA6o4IlXx5xgDw.roa
Signing time: Wed 09 Feb 2022 12:09:13 +0000
ROA not before: Wed 09 Feb 2022 12:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209114
IP address blocks: 2a12:6e40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129213 (0x1f8bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f9670ee2a30eac8c0a39dc47ff7a8cd2473b00
Validity
Not Before: Feb 9 12:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e4a32bcba9cebf8b9d5203aa382255f1e71803c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4d:3a:b3:05:21:14:f9:e5:18:80:9d:55:24:
5e:7d:1c:b3:e7:93:fe:7f:87:f3:5e:72:2b:70:d9:
1d:1f:da:61:83:d4:5e:3e:2c:71:18:10:23:80:12:
ec:73:fb:f4:83:87:4c:78:75:52:e8:ed:fc:2d:c3:
0f:0c:4c:59:78:d1:dd:9b:ea:2b:b3:a5:4b:9b:5e:
3d:48:26:6f:d8:b4:de:24:a7:1c:87:4b:b0:af:d5:
50:87:a6:ca:b8:ad:0a:09:c3:7b:27:a3:46:65:37:
6c:ff:c7:f4:da:ec:de:4e:ec:85:02:97:54:c5:cd:
a3:f9:af:53:17:87:5b:88:be:ec:74:eb:7e:8a:24:
50:29:16:7c:cb:fe:8d:e9:16:7b:a2:c3:31:89:b3:
89:85:c6:5d:52:5c:9b:24:6a:3a:31:86:75:63:3c:
7c:2a:a6:73:51:f5:7d:32:1e:9a:6a:9c:19:5a:f6:
76:78:c1:50:eb:91:d5:6f:a4:dd:2c:9f:35:17:95:
88:1c:30:30:7a:b2:f1:c3:35:2b:8a:30:53:c4:ba:
09:20:db:34:b0:25:69:e8:ba:b8:b7:4f:ed:c5:fc:
21:5a:92:b5:a6:ed:3f:2f:f6:cc:f6:f7:0b:9b:48:
3c:f1:46:82:df:c9:2f:b3:49:e8:93:f4:0f:44:27:
c4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4A:32:BC:BA:9C:EB:F8:B9:D5:20:3A:A3:82:25:5F:1E:71:80:3C
X509v3 Authority Key Identifier:
keyid:29:F9:67:0E:E2:A3:0E:AC:8C:0A:39:DC:47:FF:7A:8C:D2:47:3B:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KflnDuKjDqyMCjncR_96jNJHOwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/TkoyvLqc6_i51SA6o4IlXx5xgDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/KflnDuKjDqyMCjncR_96jNJHOwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6e40::/29
Signature Algorithm: sha256WithRSAEncryption
1c:11:a2:eb:27:84:54:a9:87:41:67:5e:3c:ef:ec:bd:57:ec:
71:9b:21:39:17:db:4f:60:f2:a4:39:08:d9:6d:a7:0c:9c:45:
60:d3:56:91:a3:f2:aa:7c:c8:8f:af:c9:61:60:07:b6:ee:82:
bf:c8:7c:86:6b:82:d5:2b:9d:30:75:e1:35:97:ff:22:75:a6:
ba:8a:f8:ef:35:60:53:2b:df:93:65:24:75:2f:48:e6:0f:2c:
87:93:35:16:29:11:b9:7a:67:4e:7c:64:4b:f8:8f:f0:54:e0:
bc:83:dd:b1:e0:15:25:e6:61:87:ef:e0:d7:f8:38:82:39:c2:
56:5c:6a:cd:c2:98:b5:1f:b4:ed:54:05:49:ef:22:70:0e:ad:
99:4e:33:da:fd:a8:7f:76:9f:14:a6:84:f1:ef:2b:a7:ad:02:
2a:cd:8e:b9:cd:d2:97:d2:6d:51:3c:83:aa:8a:b8:50:04:cd:
01:be:26:b8:99:47:15:4e:2b:f3:b9:c3:a2:52:44:54:52:88:
70:f5:fb:9f:91:01:07:7d:35:c4:24:5c:03:0b:1e:de:55:26:
e2:42:de:26:92:93:01:8d:21:eb:5a:ef:9e:43:64:53:97:09:
6d:8f:cc:5f:18:ff:e3:49:cb:f0:e1:89:95:4a:6f:60:38:5e:
80:8d:c8:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:30 2024 by rpki-client on console-ams.rpki-client.org