Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/JnjokUvdSsrH7_on5pG2BjTj9Mg.roa
File: JnjokUvdSsrH7_on5pG2BjTj9Mg.roa (raw, json)
Hash identifier: 6QhSJdUZa9pwZ9vZkBHnSeFV0Tr1hhmS8rhAfol0NUo=
Subject key identifier: 26:78:E8:91:4B:DD:4A:CA:C7:EF:FA:27:E6:91:B6:06:34:E3:F4:C8
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 0182C9757C2DEEDFFAD4E79B33470127B90C
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/JnjokUvdSsrH7_on5pG2BjTj9Mg.roa
Signing time: Tue 23 Aug 2022 06:48:16 +0000
ROA not before: Tue 23 Aug 2022 06:48:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39719
IP address blocks: 2a12:1d40:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c9:75:7c:2d:ee:df:fa:d4:e7:9b:33:47:01:27:b9:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Aug 23 06:48:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2678e8914bdd4acac7effa27e691b60634e3f4c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:77:53:a5:3d:4b:af:dd:b3:81:35:0f:01:eb:
79:f1:9d:e2:3f:1a:16:59:7f:00:36:3b:4b:ac:ef:
71:35:28:aa:b1:c3:f9:07:dc:b6:93:aa:6d:7a:a8:
e5:ed:27:bf:8d:7a:70:f8:9d:5d:7f:3a:fd:0f:4f:
c8:85:c5:f1:4f:2b:fa:40:30:b5:fd:89:28:2b:8a:
95:04:12:8c:5b:a3:0e:ad:fb:3c:ce:ce:c9:a1:66:
3d:ff:5b:4b:54:6c:a2:0f:62:86:97:1a:06:bb:52:
ad:f2:1c:2d:19:88:1c:f3:19:71:e3:f5:73:19:71:
d3:51:b4:0a:d8:10:3a:f4:0a:f2:e1:52:86:12:3a:
f7:cf:ba:e8:33:63:65:85:6e:6e:fc:d7:b3:42:88:
a2:58:88:ad:18:f9:e9:5b:a2:cd:93:b2:11:4e:8a:
c4:ee:f9:db:06:14:16:e0:52:da:30:ba:88:68:08:
fc:99:66:b5:ac:7b:78:e2:26:8f:00:08:a4:be:0c:
10:68:f2:fa:3d:9b:17:6f:c8:a0:91:d0:ed:f0:cb:
37:09:15:13:b3:e1:5e:b3:65:59:29:4d:72:55:74:
12:c9:3d:78:47:85:d1:3b:78:44:fe:83:28:92:df:
aa:d8:65:35:0d:cc:7d:10:e2:7e:4d:fe:a5:15:40:
75:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:78:E8:91:4B:DD:4A:CA:C7:EF:FA:27:E6:91:B6:06:34:E3:F4:C8
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/JnjokUvdSsrH7_on5pG2BjTj9Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:1d40:1::/48
Signature Algorithm: sha256WithRSAEncryption
85:6c:63:93:2b:96:79:32:d3:51:f2:2e:94:49:55:f4:e4:9f:
ed:d1:2d:1d:03:97:0d:a1:72:63:f7:67:d7:90:d1:e2:2e:e4:
0e:cd:9d:5e:7c:85:72:ac:a0:d6:eb:fe:36:20:4f:e3:d7:88:
4d:28:07:62:39:ce:51:25:ff:9d:be:9c:47:69:cd:dc:71:ac:
59:19:76:6f:9e:54:e8:e5:d5:05:5c:b9:41:fd:4e:f4:36:db:
7c:91:aa:25:55:b7:b7:c2:26:aa:69:84:c6:c6:9b:cc:2f:c6:
c7:7b:af:cc:fa:03:5e:34:8f:2b:e9:b7:7c:ee:cf:92:8e:af:
31:e7:a1:3b:b6:80:c0:8e:30:6f:ce:ea:11:01:ec:51:62:5e:
2c:e0:27:d8:19:4f:ba:66:52:0a:29:11:5e:39:60:fe:a3:bf:
6d:15:55:bf:3c:f8:0c:3c:81:1d:fa:ed:9c:62:89:8d:ac:40:
0e:0d:e5:57:f7:23:5a:36:e3:79:ea:76:76:48:c5:29:7d:e2:
55:7b:ba:da:bc:26:78:ba:25:8f:f0:2e:4c:8b:08:7e:f3:dc:
c3:b1:47:9a:f3:01:0b:5f:4f:5e:0a:23:a0:82:03:32:e3:d9:
e2:86:11:34:2b:72:57:c5:eb:30:43:e5:e3:a6:cc:c6:42:d6:
b3:8f:84:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:28 2025 by rpki-client