Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/dbf772-9396-4101-b3e8-43f9ab6734ec/1/ukDd73GrQWswVWWTeA9aoHaYMtY.roa
File: ukDd73GrQWswVWWTeA9aoHaYMtY.roa (raw, json)
Hash identifier: fNkSrS+SDu1WU49ybbgmH11e/10k5QyAEGVFqq1aAyI=
Subject key identifier: BA:40:DD:EF:71:AB:41:6B:30:55:65:93:78:0F:5A:A0:76:98:32:D6
Certificate issuer: /CN=b538c7295bcd474b829e4e47eebcb0e093ce523a
Certificate serial: 51AB96
Authority key identifier: B5:38:C7:29:5B:CD:47:4B:82:9E:4E:47:EE:BC:B0:E0:93:CE:52:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTjHKVvNR0uCnk5H7ryw4JPOUjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/dbf772-9396-4101-b3e8-43f9ab6734ec/1/ukDd73GrQWswVWWTeA9aoHaYMtY.roa
Signing time: Fri 06 May 2022 09:18:49 +0000
ROA not before: Fri 06 May 2022 09:18:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133944
IP address blocks: 2a12:f180::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5352342 (0x51ab96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b538c7295bcd474b829e4e47eebcb0e093ce523a
Validity
Not Before: May 6 09:18:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba40ddef71ab416b30556593780f5aa0769832d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e6:b6:b0:25:9c:49:a9:b9:c4:84:ec:1c:41:
0a:4d:ed:1a:68:2b:c7:72:62:18:d9:56:33:42:c3:
66:4e:3c:6c:e8:5c:63:65:27:d2:e8:33:ea:ad:cb:
d7:8d:da:44:46:8d:0e:59:2e:31:5e:84:b7:0d:2e:
e1:0b:6c:95:d9:6b:24:6a:48:a4:ba:86:cc:84:43:
46:98:32:87:b7:b5:27:ce:9c:e2:0f:12:23:28:fc:
3e:e9:c5:f3:ac:f8:e4:06:cd:42:33:ac:70:a4:7e:
b3:e0:19:b7:d0:80:c8:fe:0a:e8:12:8e:c4:ce:4e:
2c:ca:ed:bc:90:bb:71:22:80:8b:26:3a:4e:a8:c0:
fd:93:c3:50:a4:fa:f7:55:a8:22:e3:a7:9d:35:bc:
6c:ae:bb:de:38:04:a6:bc:66:7c:c4:97:c8:2b:1e:
54:da:ce:76:bc:18:5f:58:56:4a:0f:24:00:b7:4d:
e0:18:c4:89:11:79:72:84:7b:f3:c3:77:00:6c:83:
d4:e4:e5:b1:ff:e7:e8:75:9d:9e:9f:34:60:95:e4:
21:1b:54:a2:5e:97:35:ad:b9:6a:e8:db:ec:75:8c:
cb:6d:ee:6d:71:e2:01:b2:a0:6e:72:4a:ef:7f:c6:
eb:35:6b:1b:7c:a7:12:32:72:e2:78:3c:89:be:8d:
b9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:40:DD:EF:71:AB:41:6B:30:55:65:93:78:0F:5A:A0:76:98:32:D6
X509v3 Authority Key Identifier:
keyid:B5:38:C7:29:5B:CD:47:4B:82:9E:4E:47:EE:BC:B0:E0:93:CE:52:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTjHKVvNR0uCnk5H7ryw4JPOUjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/dbf772-9396-4101-b3e8-43f9ab6734ec/1/ukDd73GrQWswVWWTeA9aoHaYMtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/dbf772-9396-4101-b3e8-43f9ab6734ec/1/tTjHKVvNR0uCnk5H7ryw4JPOUjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f180::/29
Signature Algorithm: sha256WithRSAEncryption
73:2d:2c:d9:1e:4f:43:8c:66:8f:bc:dc:0b:6c:e2:06:99:32:
29:f1:1b:24:0c:93:36:30:8d:f2:af:88:67:85:af:4f:f5:f2:
1d:0e:bb:bd:a3:ff:f2:10:66:75:52:7b:19:31:40:84:55:78:
bb:21:e7:d5:3c:39:cf:bb:90:7a:ae:44:04:40:31:7f:b7:2b:
42:90:6a:24:cb:60:97:0b:60:be:35:54:a5:7a:f1:b6:62:4c:
17:fb:50:cd:2d:27:70:cd:83:0a:33:ee:08:49:5b:4c:4b:87:
2a:54:94:73:62:4a:70:91:a9:a5:17:b5:1f:7c:c5:5f:37:8f:
de:9b:12:83:46:a1:7a:9b:92:d6:2e:e6:0c:f5:99:ba:5a:b3:
47:2c:50:96:19:75:5a:50:bd:7f:0c:17:b2:aa:aa:07:a2:6e:
5a:99:d1:52:a9:f1:11:63:bf:d2:0c:06:2d:cb:91:f5:80:07:
40:1b:44:14:89:b0:be:d1:a0:4c:9e:6f:5a:74:b9:fa:02:cc:
05:63:e6:bc:e8:3c:97:9f:18:60:3e:5b:f3:d3:e8:46:b3:d6:
4f:c6:50:fa:58:e9:7a:34:6c:3d:18:88:99:28:b2:68:3c:3f:
94:5d:e9:d2:ad:b7:e7:37:f1:34:d2:b0:77:9f:d8:3f:35:b5:
d2:6d:64:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-ams.rpki-client.org