Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a05d91-e14f-4bdf-8f99-2849eb7334b6/1/tic7qq98fw4RCIoAQ3YFBrym7eA.roa
File: tic7qq98fw4RCIoAQ3YFBrym7eA.roa (raw, json)
Hash identifier: N6weaHj1ABGOKFDIkhxhdZm13cpsUFREfClmcb5dMLg=
Subject key identifier: B6:27:3B:AA:AF:7C:7F:0E:11:08:8A:00:43:76:05:06:BC:A6:ED:E0
Certificate issuer: /CN=dbe0cae6dc3c918c7ea8cd278f497f854dca3dc8
Certificate serial: 018486AD25C1A2860ECE03D65C50249B8BDE
Authority key identifier: DB:E0:CA:E6:DC:3C:91:8C:7E:A8:CD:27:8F:49:7F:85:4D:CA:3D:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-DK5tw8kYx-qM0nj0l_hU3KPcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a05d91-e14f-4bdf-8f99-2849eb7334b6/1/tic7qq98fw4RCIoAQ3YFBrym7eA.roa
Signing time: Thu 17 Nov 2022 17:40:05 +0000
ROA not before: Thu 17 Nov 2022 17:40:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:fc80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:ad:25:c1:a2:86:0e:ce:03:d6:5c:50:24:9b:8b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe0cae6dc3c918c7ea8cd278f497f854dca3dc8
Validity
Not Before: Nov 17 17:40:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6273baaaf7c7f0e11088a0043760506bca6ede0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3a:16:5f:83:2f:28:f3:f1:21:ae:7f:ff:84:
e9:a2:2f:59:b3:a5:43:d6:a2:9f:04:23:5c:be:dd:
46:0e:ff:7d:88:30:41:f7:e4:5f:1a:c8:81:81:cc:
97:4b:59:e9:17:b9:f7:c8:31:92:a7:a4:f7:15:59:
20:12:05:9c:5d:75:7b:11:4a:79:8b:81:3f:6b:ac:
3e:ac:c3:1a:7f:6f:1b:4b:fb:e2:6b:e6:ee:5d:2b:
b2:46:a1:20:99:13:b6:a0:6a:bb:a1:a4:03:7d:2b:
51:41:d1:38:7f:cf:ed:12:f9:87:9e:d1:a7:9e:53:
63:34:34:f8:b3:15:84:f4:8a:b8:7e:62:26:8e:b7:
30:c3:ae:71:72:f0:d9:e5:12:1f:4f:ea:23:c3:f5:
12:34:0d:fa:33:ea:33:09:ae:aa:d8:2c:99:84:ef:
79:22:2c:de:86:3a:2e:ad:1a:ce:25:16:3b:3f:bf:
3a:87:3d:c4:5b:e6:4f:1f:66:59:fc:1c:eb:96:01:
cd:44:d3:79:e5:f8:12:83:f9:6f:1f:82:f7:b6:a2:
0c:b6:6b:c2:dd:38:38:95:0d:c7:fa:3c:69:fe:3a:
54:1a:5b:76:20:b8:46:45:b6:2c:46:7c:e8:01:64:
03:3b:9e:de:68:00:af:7d:16:88:41:28:46:72:d9:
83:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:27:3B:AA:AF:7C:7F:0E:11:08:8A:00:43:76:05:06:BC:A6:ED:E0
X509v3 Authority Key Identifier:
keyid:DB:E0:CA:E6:DC:3C:91:8C:7E:A8:CD:27:8F:49:7F:85:4D:CA:3D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-DK5tw8kYx-qM0nj0l_hU3KPcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a05d91-e14f-4bdf-8f99-2849eb7334b6/1/tic7qq98fw4RCIoAQ3YFBrym7eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a05d91-e14f-4bdf-8f99-2849eb7334b6/1/2-DK5tw8kYx-qM0nj0l_hU3KPcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:fc80::/29
Signature Algorithm: sha256WithRSAEncryption
7c:1c:7c:ab:cd:75:7b:9b:bc:a9:a1:60:30:fb:fc:92:e2:3d:
67:d0:1f:b5:60:0d:b5:72:48:59:44:a9:49:98:c9:5c:ea:29:
0e:7e:bf:74:9d:10:b7:d7:21:4c:dc:79:eb:f4:68:d4:8b:d4:
94:8b:6f:59:47:32:8a:a1:d7:4b:07:7e:90:b3:e2:e2:78:7a:
19:31:58:0f:e0:6e:1d:0a:b2:c8:52:9c:1b:6a:32:07:60:8c:
34:57:01:ee:f7:76:42:ef:44:0a:a6:d6:2f:57:73:30:c5:89:
49:c1:b8:13:1c:b9:40:93:8c:a9:f5:dd:3c:e3:35:85:0b:45:
2b:32:62:e3:14:43:d0:90:42:ed:89:5c:af:22:5e:77:af:29:
5f:05:43:97:49:70:3e:98:12:aa:f3:90:d8:f2:93:7f:2a:89:
36:ab:6f:7c:ab:41:56:8a:01:7c:54:ad:66:97:91:45:46:74:
50:12:e6:a0:5c:7e:00:6f:cb:cb:b3:d5:d6:29:44:70:d8:e1:
51:0b:90:d0:c7:ec:e6:89:fd:7a:dd:27:f4:42:2c:e2:28:46:
58:84:ab:1a:b6:ba:d9:75:1e:10:69:b5:15:fd:83:59:bc:b6:
50:c0:a1:fd:e9:a7:40:6a:ca:37:7e:8e:56:2f:68:f0:f2:6d:
4e:19:df:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:24 2023 by rpki-client on console-ams.rpki-client.org