Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/grTc1f_xAEqrHFCzH8JC5ZWIh48.roa
File: grTc1f_xAEqrHFCzH8JC5ZWIh48.roa (raw, json)
Hash identifier: 7iK6F+oI9OeZ03Pgqe8zQGgHh3MZzy4h09qN69GWCas=
Subject key identifier: 82:B4:DC:D5:FF:F1:00:4A:AB:1C:50:B3:1F:C2:42:E5:95:88:87:8F
Certificate issuer: /CN=1cecefd9eadb2d5284d713b94b56d3abbc10e9e5
Certificate serial: 04E921
Authority key identifier: 1C:EC:EF:D9:EA:DB:2D:52:84:D7:13:B9:4B:56:D3:AB:BC:10:E9:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HOzv2erbLVKE1xO5S1bTq7wQ6eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/grTc1f_xAEqrHFCzH8JC5ZWIh48.roa
Signing time: Wed 02 Mar 2022 22:13:06 +0000
ROA not before: Wed 02 Mar 2022 22:13:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a12:9140::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321825 (0x4e921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cecefd9eadb2d5284d713b94b56d3abbc10e9e5
Validity
Not Before: Mar 2 22:13:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82b4dcd5fff1004aab1c50b31fc242e59588878f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4a:77:7b:92:00:68:ba:a3:26:91:8f:c8:20:
37:60:02:6f:c1:57:82:e5:af:52:87:2b:e8:fb:07:
b6:5a:c4:9a:51:27:84:94:1b:76:5c:ad:dc:db:29:
26:8a:e4:c7:10:00:fd:9b:dc:f1:73:d6:9b:42:a4:
a4:80:4e:c5:83:9c:af:6c:bb:44:ae:b1:0e:da:01:
a7:5d:73:75:7d:17:91:c0:3d:78:dd:d8:f5:d4:10:
14:30:6f:23:fe:be:52:b0:be:48:cb:5a:32:e5:f6:
6a:21:11:e5:7e:b4:5b:a0:29:bc:80:c3:65:94:96:
90:17:64:7f:93:a2:0b:64:11:af:26:66:7f:88:c1:
c1:05:18:ba:a1:2f:1c:16:1d:33:00:73:f9:59:a3:
4b:2a:b8:b3:eb:33:ea:71:4f:43:a4:52:ac:b9:93:
94:2e:6f:01:ad:76:1c:58:81:69:a2:57:cc:f1:91:
9e:e1:09:45:4c:67:9b:2c:cb:06:7d:5a:a0:dc:7d:
27:7e:28:eb:19:0c:45:01:61:87:a5:aa:9a:70:33:
13:c2:85:ed:b2:91:46:68:5a:bd:bb:a9:e5:d2:c0:
12:95:fb:3a:f9:03:c9:18:c8:dd:9b:07:25:d2:a8:
72:ae:33:94:41:38:fa:f2:c4:12:4d:0d:66:c8:cf:
40:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B4:DC:D5:FF:F1:00:4A:AB:1C:50:B3:1F:C2:42:E5:95:88:87:8F
X509v3 Authority Key Identifier:
keyid:1C:EC:EF:D9:EA:DB:2D:52:84:D7:13:B9:4B:56:D3:AB:BC:10:E9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HOzv2erbLVKE1xO5S1bTq7wQ6eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/grTc1f_xAEqrHFCzH8JC5ZWIh48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1eeba8-7399-4bca-9341-ce882a5054c6/1/HOzv2erbLVKE1xO5S1bTq7wQ6eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:9140::/48
Signature Algorithm: sha256WithRSAEncryption
5f:e5:0d:e9:37:b9:56:84:5f:7b:28:4c:58:76:b3:26:1a:86:
a6:07:3e:6a:5f:5c:7e:81:bc:e5:2b:35:44:f8:7a:74:fe:2a:
3c:4b:5d:a7:c9:2f:42:84:f2:d7:3e:ba:cd:c5:75:42:37:21:
b7:87:d5:55:4f:25:27:05:dd:0c:18:79:61:0d:34:3d:a5:c9:
df:eb:8f:9c:a2:ff:b4:d0:85:5f:7f:19:5c:d0:fc:c7:15:6d:
b4:d8:b6:e8:2b:17:47:b6:5e:9c:f3:e3:6c:e2:14:33:c6:0b:
af:57:d2:72:3f:d3:02:fa:65:65:85:36:41:b8:de:57:cc:cf:
08:6e:03:7e:93:c7:76:79:63:83:f4:70:ca:40:bc:6d:cb:3c:
7d:3e:d8:61:f7:03:6e:f8:95:b0:62:da:df:b8:5f:db:70:19:
90:b0:64:91:f3:cd:8a:1f:4d:eb:8f:70:cc:b8:6b:d0:97:fe:
0c:69:a5:e1:d5:34:13:e2:f0:a2:b9:7f:50:c0:58:f7:24:87:
16:3d:cd:88:d3:b8:5b:95:f5:42:4b:d5:ca:3f:f0:0a:f9:7f:
ea:01:64:20:fb:a7:60:28:3f:55:a5:44:31:2f:01:5d:95:9d:
3e:a5:7b:bc:82:da:91:09:55:4e:04:2b:9a:f6:79:0f:bf:d4:
ae:00:9e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:22 2023 by rpki-client on console-ams.rpki-client.org