Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/c5j2IO-bj75Hm96Isa096A80I6M.roa
File: c5j2IO-bj75Hm96Isa096A80I6M.roa (raw, json)
Hash identifier: kZpSTF+bi5pxKE0kXFsd2XcwgcIj21kjBRKEv5vkaeQ=
Subject key identifier: 73:98:F6:20:EF:9B:8F:BE:47:9B:DE:88:B1:AD:3D:E8:0F:34:23:A3
Certificate issuer: /CN=1cecefd9eadb2d5284d713b94b56d3abbc10e9e5
Certificate serial: 01824E48FFD79B0E85689E7003A15D8E8E8C
Authority key identifier: 1C:EC:EF:D9:EA:DB:2D:52:84:D7:13:B9:4B:56:D3:AB:BC:10:E9:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HOzv2erbLVKE1xO5S1bTq7wQ6eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/c5j2IO-bj75Hm96Isa096A80I6M.roa
Signing time: Sat 30 Jul 2022 08:46:23 +0000
ROA not before: Sat 30 Jul 2022 08:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51205
IP address blocks: 2a12:9140::/48 maxlen: 48
2a12:9140:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4e:48:ff:d7:9b:0e:85:68:9e:70:03:a1:5d:8e:8e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cecefd9eadb2d5284d713b94b56d3abbc10e9e5
Validity
Not Before: Jul 30 08:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7398f620ef9b8fbe479bde88b1ad3de80f3423a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:32:af:08:6d:79:c8:95:ff:f0:43:3a:1e:97:
c2:ad:79:bd:ca:5b:b5:df:22:d5:1d:70:81:41:fa:
9d:39:92:01:83:4c:a7:0c:25:69:4d:24:70:80:3c:
4f:f8:27:b6:6a:bb:c1:af:18:52:1e:00:06:3a:40:
70:e5:58:c0:c8:a4:54:2c:be:7c:ac:be:40:39:74:
7e:c3:a5:8f:88:3c:a3:3a:db:7a:2b:c9:a5:04:fa:
92:6e:ba:7d:56:83:9c:13:8d:c0:f1:5b:27:62:19:
b7:d6:6a:20:90:92:57:be:ac:e9:b0:2b:c3:d8:02:
fc:6a:db:eb:51:77:6a:61:7e:87:e8:f7:8b:06:d6:
cc:14:4a:e7:b9:d8:95:9d:b9:c5:4f:cf:02:a6:37:
c2:bc:d3:fa:8f:a5:18:66:5e:aa:40:c5:e5:76:5b:
d7:4e:6c:82:28:d2:79:33:f2:15:45:60:6c:88:b7:
46:bb:21:d0:ee:76:7a:71:15:43:e0:ae:98:7f:20:
c1:b0:21:09:76:d4:97:23:19:7d:e4:ad:6a:86:a3:
5e:d9:c2:75:ae:58:7e:b7:87:02:52:98:13:91:15:
45:dd:9f:d7:f3:4b:3f:a9:11:b6:57:c3:45:44:ba:
78:cc:1b:fb:6f:13:3f:4a:61:06:91:c2:44:6e:ba:
32:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:98:F6:20:EF:9B:8F:BE:47:9B:DE:88:B1:AD:3D:E8:0F:34:23:A3
X509v3 Authority Key Identifier:
keyid:1C:EC:EF:D9:EA:DB:2D:52:84:D7:13:B9:4B:56:D3:AB:BC:10:E9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HOzv2erbLVKE1xO5S1bTq7wQ6eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/c5j2IO-bj75Hm96Isa096A80I6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/HOzv2erbLVKE1xO5S1bTq7wQ6eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:9140::/47
Signature Algorithm: sha256WithRSAEncryption
81:4d:78:7d:47:7b:d4:f0:b3:74:a5:6b:7d:35:ce:e4:36:48:
6c:c2:93:ac:e1:d3:cb:a5:81:79:06:29:7a:4b:e6:e6:46:7f:
b7:a2:72:f6:07:40:a1:6c:ec:51:08:09:d1:63:24:7c:61:6b:
34:57:6a:50:e0:96:89:f8:60:5d:92:eb:1b:c5:2d:ec:a9:92:
a2:75:5f:a7:ba:1d:06:c5:40:5b:73:70:e8:75:e4:3f:04:d0:
ac:ad:6b:58:7b:12:97:e0:71:99:8b:93:0b:b8:de:6d:cb:cf:
22:48:18:78:f1:00:fe:c4:0e:23:56:67:cb:ff:74:8e:18:eb:
27:15:29:8f:7e:77:73:f7:e6:55:ec:9a:6e:4a:6d:6b:57:ad:
2c:80:ff:7b:67:a0:cc:a2:b5:a8:47:17:02:9a:25:80:b1:e4:
e1:2f:7d:25:7f:d0:ce:b2:1c:85:d2:50:86:de:16:06:b3:90:
b0:6e:45:c8:a0:92:6b:8e:6b:dd:b2:90:16:9a:f5:d4:ad:fd:
3b:6e:af:c2:7f:f5:26:75:f0:48:18:41:5f:31:c8:6c:86:c3:
b0:20:72:6f:48:6a:ea:b7:01:d9:13:24:7a:a8:f5:93:7a:90:
aa:e1:43:b2:32:9c:32:f2:1e:12:6a:0b:fe:7c:c6:c5:cd:ec:
a8:64:db:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:22 2023 by rpki-client on console-ams.rpki-client.org