Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e403aa-7fa5-4d96-b49f-6cf165239bd9/1/FFKp9bqWjP5_TY1CJlOJ2tuKohI.roa
File: FFKp9bqWjP5_TY1CJlOJ2tuKohI.roa (raw, json)
Hash identifier: 1oF0tlCupfLs96pA0X3EyWXWqdcNJnsMc8CDwWn4uhQ=
Subject key identifier: 14:52:A9:F5:BA:96:8C:FE:7F:4D:8D:42:26:53:89:DA:DB:8A:A2:12
Certificate issuer: /CN=cd963dd01ec80de9e138c9de44a36d48f06b93fd
Certificate serial: 5700
Authority key identifier: CD:96:3D:D0:1E:C8:0D:E9:E1:38:C9:DE:44:A3:6D:48:F0:6B:93:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZY90B7IDenhOMneRKNtSPBrk_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e403aa-7fa5-4d96-b49f-6cf165239bd9/1/FFKp9bqWjP5_TY1CJlOJ2tuKohI.roa
Signing time: Wed 29 Jun 2022 14:20:48 +0000
ROA not before: Wed 29 Jun 2022 14:20:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 2a12:96c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22272 (0x5700)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd963dd01ec80de9e138c9de44a36d48f06b93fd
Validity
Not Before: Jun 29 14:20:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1452a9f5ba968cfe7f4d8d42265389dadb8aa212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:51:1e:94:37:18:2e:bd:31:e0:68:02:09:c8:
18:e5:d2:cf:af:4c:90:cb:d9:46:2a:18:1c:88:2c:
41:a1:2c:2e:97:cf:d6:88:aa:b0:63:b7:e1:21:31:
f1:ca:fd:9f:77:0e:59:fc:5c:f6:74:19:4e:c6:78:
95:10:52:bd:c3:64:fc:e8:de:89:21:05:55:67:30:
58:7e:b7:b1:0f:2e:4e:59:69:f6:81:bb:f3:0c:38:
99:9d:48:28:35:84:6b:83:ae:13:2c:7f:b3:8c:b0:
4d:7b:ea:04:57:2e:17:d9:9f:23:08:e0:71:c2:8f:
0d:4d:54:ae:22:c3:b3:fe:dc:1d:c0:0e:fd:a7:ac:
09:76:24:76:00:d6:38:ac:8d:97:d0:55:74:14:8e:
15:5f:5d:c3:f7:87:04:4d:77:b9:23:ab:41:2d:16:
4a:f4:49:56:7c:3f:a2:24:85:82:f3:ae:46:d5:90:
49:f7:91:1a:21:f8:49:e9:b9:f0:5b:2f:ce:a8:89:
51:2d:eb:f7:70:92:79:9f:1a:8a:4d:dc:2b:cb:06:
3d:1c:3a:d2:f1:ed:29:92:47:da:8c:15:97:0b:d1:
08:09:9a:7f:51:c5:55:61:29:8d:b3:ed:60:bb:7c:
09:a2:1a:fe:c3:3a:80:0d:33:dc:50:c0:24:18:12:
5b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:52:A9:F5:BA:96:8C:FE:7F:4D:8D:42:26:53:89:DA:DB:8A:A2:12
X509v3 Authority Key Identifier:
keyid:CD:96:3D:D0:1E:C8:0D:E9:E1:38:C9:DE:44:A3:6D:48:F0:6B:93:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZY90B7IDenhOMneRKNtSPBrk_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e403aa-7fa5-4d96-b49f-6cf165239bd9/1/FFKp9bqWjP5_TY1CJlOJ2tuKohI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e403aa-7fa5-4d96-b49f-6cf165239bd9/1/zZY90B7IDenhOMneRKNtSPBrk_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:96c0::/29
Signature Algorithm: sha256WithRSAEncryption
b2:cb:8a:c9:da:9a:67:6b:19:4d:95:e7:50:98:7a:c4:3a:5d:
25:80:03:cf:67:db:be:b4:33:72:e0:21:f1:aa:59:dd:7c:4a:
3b:c1:3b:9a:f9:6a:db:33:c3:65:34:01:ce:43:e7:1d:1e:f5:
8c:d4:d2:4a:bf:e2:96:b7:df:28:b3:81:53:ee:78:29:48:f3:
bf:25:3e:37:43:da:e1:67:bb:6c:36:2b:46:bd:14:f4:89:57:
3e:e6:b2:78:b8:a5:5c:a3:6c:bf:bc:2f:49:8a:ca:3d:49:2b:
10:93:3d:3a:4e:ef:a5:4c:9a:bc:a4:5e:18:ff:78:ba:a0:0d:
1b:5d:da:88:a1:73:3c:b9:b1:39:93:06:4a:0d:16:79:96:54:
4f:9f:1c:3d:a3:2b:5e:1d:e6:af:4a:01:02:2c:1d:3c:e0:fa:
70:cd:1c:7e:00:e3:6c:02:14:df:3c:d5:3c:20:ce:12:dc:d2:
b6:56:50:8b:ae:3b:b3:d7:49:38:9f:8e:8a:4d:dc:61:c3:e8:
cf:ff:e9:86:92:80:84:a5:24:57:72:a2:74:e5:f6:a8:36:96:
86:97:16:e9:e8:17:2b:65:8d:88:85:33:c3:98:3b:75:59:83:
41:f2:54:56:cc:fc:18:3f:78:54:e3:7d:01:fd:3b:fb:6f:06:
0a:ef:3b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:37 2025 by rpki-client