Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/DUp1a1V0Jfft8T7m-Zh7SmwtgMs.roa
File: DUp1a1V0Jfft8T7m-Zh7SmwtgMs.roa (raw, json)
Hash identifier: MUOI7gLEXVZJKL2ijTHUbP2Pe8X3AzwNbqGICMYDZ3o=
Subject key identifier: 0D:4A:75:6B:55:74:25:F7:ED:F1:3E:E6:F9:98:7B:4A:6C:2D:80:CB
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01850CF88AD469AECD270E921C099A8938FD
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/DUp1a1V0Jfft8T7m-Zh7SmwtgMs.roa
Signing time: Tue 13 Dec 2022 19:31:33 +0000
ROA not before: Tue 13 Dec 2022 19:31:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200586
IP address blocks: 2a12:bec0:a0::/44 maxlen: 48
2a12:bec0:b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0c:f8:8a:d4:69:ae:cd:27:0e:92:1c:09:9a:89:38:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Dec 13 19:31:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d4a756b557425f7edf13ee6f9987b4a6c2d80cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:01:d7:f6:2b:d6:d7:1c:b2:20:e8:2e:9a:54:
ce:a3:4c:4d:da:6f:ed:c6:ff:fe:89:26:77:be:01:
f6:d6:bf:d3:f3:f3:78:42:82:f7:f5:21:66:82:30:
dd:a4:04:c9:28:3d:08:98:d6:e3:31:43:d8:00:02:
49:49:df:a7:70:58:9c:0a:70:42:48:ce:e7:ad:f2:
64:20:db:fe:23:ed:de:20:b9:3f:10:ba:10:f4:1a:
62:ab:26:f0:39:7d:7e:08:4c:47:65:f9:16:e4:48:
55:3c:34:06:fe:55:05:97:36:b2:96:4c:e6:fe:24:
69:6f:e1:b7:83:29:93:3f:23:70:4e:1c:77:2e:68:
db:0a:cf:5f:03:47:04:d2:e7:eb:81:43:ce:55:75:
2f:04:07:9b:38:82:25:9b:c1:33:c4:4c:b1:2f:6b:
c2:ca:ed:81:b3:1c:1a:a8:a9:80:47:1c:a7:4a:34:
8c:2e:ba:1c:ab:e2:53:4e:20:fe:90:08:cc:71:cd:
b0:6f:30:c2:44:f1:88:8e:21:26:3e:28:6a:e6:52:
a3:e4:bf:8b:67:71:da:36:a2:df:7c:ca:2d:35:c4:
a5:69:cb:f4:57:9d:a7:8d:a5:3b:75:87:58:47:6d:
57:e4:7d:10:5f:c9:a9:5a:e0:23:72:de:66:06:6c:
fe:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4A:75:6B:55:74:25:F7:ED:F1:3E:E6:F9:98:7B:4A:6C:2D:80:CB
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/DUp1a1V0Jfft8T7m-Zh7SmwtgMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:a0::/43
Signature Algorithm: sha256WithRSAEncryption
9e:45:2a:ea:4d:f8:82:45:a1:f1:bb:e7:db:b6:5b:31:3f:88:
f3:d6:49:31:b9:2b:3b:d2:ca:60:ce:c9:69:bd:44:d4:6f:3b:
68:99:2f:9e:10:33:42:8f:35:6c:36:34:1b:59:0c:ef:5a:ef:
f0:08:b8:4a:85:88:ea:fa:ca:f9:8d:f7:37:d3:a1:c6:4e:3c:
35:f4:a3:ed:b9:c4:0c:a8:61:ee:cc:64:c7:4d:5d:09:7c:d3:
47:c7:a9:d5:5b:24:6a:0e:d5:34:e3:e8:72:05:eb:d5:b2:3a:
0b:fb:68:d5:45:90:20:39:9f:67:60:af:de:7c:b5:9f:bb:26:
ac:07:f0:96:9a:59:b2:64:25:77:4d:27:21:14:fa:c9:08:df:
4e:6f:fc:f0:3a:e0:b1:04:ff:3c:01:7b:11:86:3e:11:02:8b:
ca:af:07:2e:a1:01:7f:23:46:5a:c8:cf:42:db:a4:52:99:0e:
ff:c0:5a:c9:a4:e8:1c:5c:7c:90:68:e9:10:6c:96:ba:ff:59:
e6:0d:c2:9f:ec:6f:0c:9f:fd:3f:ee:cd:52:37:78:f7:1b:6a:
0a:0e:d9:48:66:82:12:25:0e:ee:fe:39:a0:1f:53:bf:a7:f2:
28:f8:db:5c:a1:c2:9a:8f:bf:4f:70:b7:8c:fa:05:8b:65:8f:
56:7b:5b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org