Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/JdqB7jEZbUG-xUoGJKi4BwKsnjI.roa
File: JdqB7jEZbUG-xUoGJKi4BwKsnjI.roa (raw, json)
Hash identifier: Zg5ok0aeuDlvUiXFBIJOkKLiA4gvRq1D5UliQ0vnBXg=
Subject key identifier: 25:DA:81:EE:31:19:6D:41:BE:C5:4A:06:24:A8:B8:07:02:AC:9E:32
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0185398415C4B112089310FA513664F3874D
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/JdqB7jEZbUG-xUoGJKi4BwKsnjI.roa
Signing time: Thu 22 Dec 2022 11:07:15 +0000
ROA not before: Thu 22 Dec 2022 11:07:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200351
IP address blocks: 2a12:bec0:c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:84:15:c4:b1:12:08:93:10:fa:51:36:64:f3:87:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Dec 22 11:07:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25da81ee31196d41bec54a0624a8b80702ac9e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a4:12:31:5c:df:ea:0a:4c:3f:64:10:a5:6f:
1f:da:d5:39:30:c5:9e:ed:6f:da:20:f9:81:3d:97:
a0:eb:7e:33:41:7f:25:c0:e6:75:ab:bd:89:73:c5:
53:52:dd:6e:7e:2c:3e:21:c4:25:be:1e:93:c1:52:
d4:7c:f5:fc:a5:2d:f6:b4:9c:99:9d:45:44:0d:5d:
cd:bd:69:de:7a:c2:14:8b:45:7e:df:9b:58:2b:dc:
ff:81:5a:7e:f8:5b:07:df:7e:fe:f1:ad:22:1d:71:
bd:12:0b:f5:6f:5d:ae:de:b6:77:a9:89:eb:cf:03:
97:ef:29:55:55:44:e0:b5:39:eb:4c:5c:50:7c:90:
6e:b9:f6:1e:7b:c5:0d:7d:93:9e:07:64:28:0e:b6:
2b:f7:68:20:37:1d:51:b3:5c:c5:0d:ed:05:ed:ba:
2d:b7:88:85:0c:e8:fd:60:05:09:8b:ea:cc:4d:ca:
87:7b:44:de:8d:0c:a5:50:10:b5:46:44:e2:5e:09:
46:d4:aa:df:19:b9:96:3c:ea:f5:3f:fd:a0:bb:99:
9f:8d:f8:f7:d7:00:f6:97:b7:17:59:f5:e9:76:ae:
a8:5a:94:fd:c4:18:8e:22:bf:f2:36:e2:cf:c5:08:
2f:23:cf:9b:af:44:b2:b2:77:d2:48:b7:00:3b:86:
0b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:DA:81:EE:31:19:6D:41:BE:C5:4A:06:24:A8:B8:07:02:AC:9E:32
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/JdqB7jEZbUG-xUoGJKi4BwKsnjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:c0::/44
Signature Algorithm: sha256WithRSAEncryption
94:ff:40:7e:82:e8:d2:ce:3c:b6:6a:ff:82:13:37:72:09:6a:
36:fc:5b:5f:7b:c7:43:71:f7:5c:c6:e6:23:20:5d:88:fc:08:
4e:c1:81:c2:87:6a:65:fe:fd:2c:2a:c5:a4:4c:9d:8d:2c:5e:
04:c2:28:35:49:cf:2b:82:e3:16:d3:00:55:3a:18:cc:5e:2a:
d4:b2:0b:94:a8:8d:95:11:9c:1e:c1:1b:ad:47:ac:cd:0f:5e:
4a:2c:24:49:5b:6b:c0:64:bc:02:bc:33:f2:50:53:70:9d:dc:
60:32:15:c5:55:ab:c0:4a:38:01:04:12:93:5f:d5:3f:5c:68:
1f:18:c4:0f:7f:6f:13:4f:22:d2:b9:46:8a:88:5b:5d:0b:29:
d9:80:ed:72:f1:71:88:fd:a2:24:1a:9d:e6:aa:e3:0d:53:c8:
eb:3a:34:fd:af:45:74:e1:29:8d:3f:da:d5:2a:dd:f8:34:cc:
cd:96:f2:5f:bd:22:42:ba:ca:84:07:d1:41:96:78:0e:a3:ae:
31:63:ec:3c:13:74:ab:86:1f:32:ff:b9:69:37:75:d1:0b:cd:
b3:e4:dd:2b:00:26:41:cf:c1:5d:46:62:05:a1:06:f4:90:2d:
73:04:a0:46:e8:b8:5a:04:bb:11:51:09:e7:24:dc:44:55:c0:
bc:fe:b6:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org