Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/V0oXYanUl4olV5iX2BpKCgaNhyw.roa
File: V0oXYanUl4olV5iX2BpKCgaNhyw.roa (raw, json)
Hash identifier: PSabc5dgKxqItkRP1tE6lNCKb+QzEGxZ1pqofa71AgA=
Subject key identifier: 57:4A:17:61:A9:D4:97:8A:25:57:98:97:D8:1A:4A:0A:06:8D:87:2C
Certificate issuer: /CN=51798cc1434bce8478b6ae49aa0bac24c5f117fc
Certificate serial: DB3F08
Authority key identifier: 51:79:8C:C1:43:4B:CE:84:78:B6:AE:49:AA:0B:AC:24:C5:F1:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXmMwUNLzoR4tq5JqgusJMXxF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/V0oXYanUl4olV5iX2BpKCgaNhyw.roa
Signing time: Sun 13 Feb 2022 18:05:42 +0000
ROA not before: Sun 13 Feb 2022 18:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a12:ea00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14368520 (0xdb3f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51798cc1434bce8478b6ae49aa0bac24c5f117fc
Validity
Not Before: Feb 13 18:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=574a1761a9d4978a25579897d81a4a0a068d872c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d3:02:fb:cd:f0:42:aa:fe:c7:d1:45:29:e6:
55:56:9d:33:01:d4:1b:9a:81:11:13:8c:4e:b5:2a:
2d:48:09:e2:70:89:54:d5:9a:55:b2:73:60:5e:90:
df:e6:40:33:d9:b7:68:32:12:5c:5e:cf:90:92:12:
05:b6:fa:93:6d:52:94:e8:71:83:1f:bb:6c:a9:e3:
0a:69:87:df:3e:ca:e9:8b:fd:be:ed:5b:42:cd:ff:
dd:f3:9f:dc:9b:e7:1c:e8:c0:a3:94:be:d4:4c:e9:
b0:cc:73:9b:7b:cf:70:53:e4:9d:a8:97:61:35:20:
ea:37:be:88:70:45:fd:05:d9:f6:ca:60:58:a6:32:
cc:bb:2c:14:c2:e3:c0:1c:ca:53:fd:79:5f:f9:4a:
df:f4:71:dd:61:ae:55:69:4e:23:14:47:df:c4:3e:
cd:05:75:a5:d8:e0:6e:52:ea:fc:98:55:98:6f:0b:
70:65:c9:eb:8b:69:a1:25:18:1e:d8:18:52:ec:48:
69:9e:70:6a:1e:e1:3f:6a:4a:c1:17:b7:f1:f0:57:
1a:00:ce:8d:ef:61:ee:a4:23:33:b3:85:62:98:99:
53:18:5b:0c:14:f7:0e:2c:13:b4:9f:18:40:74:d3:
48:33:8f:41:4d:2e:4f:1d:95:98:c7:e9:e4:cf:9a:
62:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4A:17:61:A9:D4:97:8A:25:57:98:97:D8:1A:4A:0A:06:8D:87:2C
X509v3 Authority Key Identifier:
keyid:51:79:8C:C1:43:4B:CE:84:78:B6:AE:49:AA:0B:AC:24:C5:F1:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXmMwUNLzoR4tq5JqgusJMXxF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/V0oXYanUl4olV5iX2BpKCgaNhyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/UXmMwUNLzoR4tq5JqgusJMXxF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:ea00::/29
Signature Algorithm: sha256WithRSAEncryption
50:32:2b:03:83:5b:08:b8:28:df:5e:e5:47:a6:86:46:b2:e5:
9f:74:80:ed:1b:05:3a:63:b3:69:39:c1:51:3d:56:b2:d1:75:
2d:ac:fe:aa:70:58:94:ef:fa:ed:b4:2f:f8:f0:bf:93:8c:72:
5f:60:4e:40:15:b6:9d:44:14:49:86:c4:b7:2b:f8:22:a4:b2:
46:82:fd:c5:69:de:4c:50:9b:af:d8:92:56:5f:ed:1c:65:f5:
e1:2c:78:0e:f5:ca:d3:6e:87:e4:16:ee:5a:93:24:f6:4c:7b:
50:df:4a:36:3f:0c:c3:c3:ea:cb:bd:3c:e1:94:a0:27:f4:d4:
9f:0e:18:cf:70:a2:fc:f6:46:52:28:e8:f6:fb:c3:36:ed:7b:
99:2b:2f:fa:81:80:e9:96:07:de:b9:77:5c:49:15:4c:67:00:
1c:22:94:95:58:87:15:77:c6:30:15:ec:06:54:0b:37:86:32:
c0:db:66:3d:c5:6d:47:ba:8f:3f:16:c7:e8:ac:6c:63:34:1e:
37:7e:9f:75:f3:82:2e:f5:a1:6e:f2:56:87:57:f8:7e:f1:3d:
36:9f:d9:1a:91:cc:55:c5:01:04:b3:58:e8:98:6e:cd:c0:51:
df:b6:b5:1f:1a:21:77:97:ab:81:ea:d3:8e:88:cc:79:6a:b5:
37:32:f1:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:52 2023 by rpki-client on console-fra.rpki-client.org