Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/G9t610jZubASh4DyOm-O-3pIqt4.roa
File: G9t610jZubASh4DyOm-O-3pIqt4.roa (raw, json)
Hash identifier: HFsv4qHuvtMpN2ciSzpqDTgrpnDC29/7JEiFl8nkN1I=
Subject key identifier: 1B:DB:7A:D7:48:D9:B9:B0:12:87:80:F2:3A:6F:8E:FB:7A:48:AA:DE
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 46AB32
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/G9t610jZubASh4DyOm-O-3pIqt4.roa
Signing time: Sun 01 May 2022 07:29:08 +0000
ROA not before: Sun 01 May 2022 07:29:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205421
IP address blocks: 2a12:bec0:20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4631346 (0x46ab32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: May 1 07:29:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bdb7ad748d9b9b0128780f23a6f8efb7a48aade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8a:c3:e0:31:f0:c9:15:40:9b:52:1a:84:9e:
d1:a4:a4:7a:3d:0c:c4:fa:a1:b9:e2:2c:ee:48:41:
fb:7c:de:49:89:f7:67:04:62:d8:35:5a:51:df:59:
c2:6c:bf:63:14:47:32:0e:da:fc:7f:5a:de:b6:90:
fa:49:c9:40:f5:31:fe:7c:05:c0:60:7f:2f:2f:7b:
dd:81:1c:8d:8b:3c:37:a9:ab:80:52:2b:1e:ba:53:
9d:f4:2c:ab:f5:bc:1c:27:3f:e4:47:ae:db:82:a0:
6e:8f:ea:ab:a2:6f:d3:cc:32:88:48:6a:5f:4f:ce:
a6:6e:1f:df:a9:c3:9e:a6:88:91:75:78:4c:05:78:
b5:ca:7e:9d:95:74:15:87:0c:b6:4f:07:23:e0:9d:
64:71:8c:e2:91:7b:39:f1:df:9c:7c:54:06:9d:eb:
ae:43:b6:eb:6a:90:27:4a:ac:b3:14:61:e5:64:09:
83:c9:2c:44:eb:9c:58:c1:df:79:40:bb:56:7c:e3:
2b:86:a5:9c:8b:d5:65:cd:f2:a6:11:58:e3:8b:ea:
f4:76:9a:79:ac:13:7f:da:46:a3:9b:32:88:54:59:
cf:d1:e4:7a:7c:1e:02:5c:09:a7:58:97:66:cb:62:
76:84:59:b6:b1:76:0b:00:5e:c8:d5:2f:07:cc:1a:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DB:7A:D7:48:D9:B9:B0:12:87:80:F2:3A:6F:8E:FB:7A:48:AA:DE
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/G9t610jZubASh4DyOm-O-3pIqt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:20::/48
Signature Algorithm: sha256WithRSAEncryption
b3:cc:2d:cb:6f:bf:cf:df:f0:74:61:40:93:7b:35:30:88:20:
9a:16:5a:f2:53:9e:89:42:13:91:a1:a7:4a:75:33:1a:1a:73:
28:50:7b:0f:c9:51:3a:dc:bf:0d:cb:e5:d2:81:16:d5:ed:23:
35:d1:c8:bd:64:80:de:0f:f1:85:da:6e:ba:1c:ed:cb:60:d6:
54:2c:9a:c2:e6:73:7a:65:d4:ee:2e:ff:42:7f:8b:4b:bf:f8:
06:fb:94:ca:42:f6:82:ec:fa:f6:b5:03:22:a3:44:11:71:c6:
51:69:da:70:74:f4:39:6a:a5:87:73:f0:b4:e0:7c:f0:e2:8c:
97:5e:00:c5:f0:35:ae:ee:d6:9e:aa:7e:5c:ee:c0:0d:cb:14:
f2:44:5e:74:c0:fd:6a:54:7e:dc:96:91:ac:54:45:7a:7e:52:
de:f1:99:1c:b5:7c:f8:90:54:52:36:41:b0:a8:7f:6c:15:0c:
3a:b8:f1:48:22:a4:50:32:ff:7e:ad:dd:a3:dd:ef:08:7c:d7:
9f:0a:ba:ff:84:1e:45:a6:74:77:69:90:f1:36:ed:92:b4:ad:
d4:a5:21:e3:11:83:e3:32:9b:20:a2:dd:41:8a:da:59:8d:46:
46:21:77:20:a9:fd:50:8b:e4:bc:eb:1e:b9:62:67:99:c0:fc:
ca:b5:20:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org