Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/50CdhvmiJ6hsyetTY2AK77H8wKI.roa
File: 50CdhvmiJ6hsyetTY2AK77H8wKI.roa (raw, json)
Hash identifier: NWd89ybvqLRChoE2nehvfB09Bq8THbnpBrpNHSnWHXA=
Subject key identifier: E7:40:9D:86:F9:A2:27:A8:6C:C9:EB:53:63:60:0A:EF:B1:FC:C0:A2
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 7B95F8
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/50CdhvmiJ6hsyetTY2AK77H8wKI.roa
Signing time: Mon 23 May 2022 16:10:31 +0000
ROA not before: Mon 23 May 2022 16:10:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208548
IP address blocks: 2a12:bec0:40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8099320 (0x7b95f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: May 23 16:10:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7409d86f9a227a86cc9eb5363600aefb1fcc0a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2d:04:3a:be:bf:22:ac:72:69:7f:5d:cc:4c:
c5:25:85:3c:c7:2d:a4:00:12:83:30:ba:2a:a4:8b:
0f:0e:a2:34:ba:11:f0:d7:61:b2:30:26:ff:f1:61:
f9:82:01:f2:f3:17:71:dc:c1:46:51:05:a1:34:c5:
df:2a:9a:92:27:42:e1:18:64:e2:5b:69:74:f8:57:
bb:15:e1:16:6b:69:ff:22:ec:0c:b3:f6:89:01:c3:
01:c2:4d:86:89:ce:61:54:01:b6:66:cf:b4:bc:b7:
0f:fd:1e:54:8b:b4:05:46:20:75:ad:02:74:55:79:
7e:7e:ea:a3:e0:fb:76:88:b5:3c:4c:24:6f:7e:7a:
a0:8f:5e:a2:45:47:c8:b4:d7:37:98:c3:63:52:02:
bb:fb:38:25:50:63:0f:bc:eb:52:a3:bc:9c:28:08:
0b:3a:6f:84:ed:20:ef:a3:72:27:4d:fb:b4:88:a8:
19:6b:96:79:0b:72:26:ef:02:b3:5e:bf:00:d0:57:
b3:cf:05:db:4f:b1:94:15:72:d3:1c:31:c4:c4:d9:
57:f7:23:39:e3:61:75:c9:f5:e5:4c:d9:52:da:25:
c8:eb:42:6b:6a:1e:42:54:b7:af:2a:45:f7:01:fe:
7e:f5:01:a7:4e:cc:18:bc:67:ae:3d:4e:3c:0e:49:
8d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:40:9D:86:F9:A2:27:A8:6C:C9:EB:53:63:60:0A:EF:B1:FC:C0:A2
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/50CdhvmiJ6hsyetTY2AK77H8wKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:40::/48
Signature Algorithm: sha256WithRSAEncryption
34:db:c8:85:b4:95:a5:99:a8:37:0d:38:43:96:f5:81:12:b4:
2b:98:1e:96:e1:b3:2d:45:0b:03:79:1d:f3:95:81:d7:3b:d0:
d7:8e:56:79:83:34:aa:9a:a7:47:04:9e:f6:2b:68:e6:e2:fd:
6b:e5:5c:2d:8c:af:18:86:06:ee:d3:c5:00:da:7d:68:e0:c0:
e4:6e:63:73:8c:5f:f0:f4:38:0a:ff:e6:c7:02:ca:d6:68:5d:
1d:20:c7:6f:ab:d2:2c:70:87:e4:03:5a:43:69:ce:be:a4:68:
96:70:3f:b5:80:a0:2b:26:d2:94:45:c4:d1:c6:d5:99:52:97:
a0:bd:79:2b:d3:7c:c4:e2:05:af:66:e5:a1:26:ca:24:80:ee:
f5:27:4e:12:f5:a3:7c:59:1f:82:0d:47:62:d5:5c:b0:2a:61:
c4:25:cb:5a:4b:3f:2b:5c:d5:7d:cd:e1:ea:cd:50:fb:43:d4:
73:ec:42:15:01:e3:67:7a:13:90:e8:1b:9e:ca:1e:7c:ea:51:
d1:ec:76:4d:e4:a7:08:d6:55:5f:6d:53:e2:1b:89:f0:71:22:
a2:32:77:cf:54:2e:67:73:e0:27:9d:d6:6c:b4:eb:3b:7d:ca:
10:32:57:24:e5:58:a8:cf:a1:d3:6e:10:3f:cc:f1:09:f4:a3:
c7:28:31:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org