Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/V3hdKrHYkRXAHsk4EtIdb8BHp3w.roa
File: V3hdKrHYkRXAHsk4EtIdb8BHp3w.roa (raw, json)
Hash identifier: ryqRFkfNmowJsgTUvpkhturuQBecyEuxlb8Ux9Vfbpc=
Subject key identifier: 57:78:5D:2A:B1:D8:91:15:C0:1E:C9:38:12:D2:1D:6F:C0:47:A7:7C
Certificate issuer: /CN=8bcb6154f9c893e0a40b87afa0a2fa27fccf31eb
Certificate serial: 015B0B49
Authority key identifier: 8B:CB:61:54:F9:C8:93:E0:A4:0B:87:AF:A0:A2:FA:27:FC:CF:31:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8thVPnIk-CkC4evoKL6J_zPMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/V3hdKrHYkRXAHsk4EtIdb8BHp3w.roa
Signing time: Tue 14 Jun 2022 03:38:44 +0000
ROA not before: Tue 14 Jun 2022 03:38:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31736
IP address blocks: 2a12:44c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22743881 (0x15b0b49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bcb6154f9c893e0a40b87afa0a2fa27fccf31eb
Validity
Not Before: Jun 14 03:38:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57785d2ab1d89115c01ec93812d21d6fc047a77c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:56:dc:bc:d1:2e:38:ca:76:f7:c1:61:19:3d:
ae:fb:33:ca:76:e0:ae:f8:84:24:c7:46:a5:f9:cf:
68:02:1f:23:fb:cd:98:a5:43:49:1d:98:4b:b0:8b:
bd:78:4a:e4:f4:a2:9a:b3:b1:8d:be:4f:61:d2:d4:
8b:16:b6:a8:83:99:0e:ee:f6:51:d4:6a:14:00:65:
84:fb:4c:b1:87:5a:3f:75:af:73:c9:41:04:68:02:
bb:56:2d:a8:be:86:b7:0c:21:57:77:9a:41:b7:44:
30:ca:2c:04:6b:b2:e3:91:6d:fa:02:d5:1d:55:7f:
69:9b:1f:19:b7:19:4b:c3:6c:6f:1a:f6:41:fc:68:
c0:07:b3:93:e0:dc:fa:7b:4b:23:38:dd:a2:be:ed:
09:a8:d8:48:17:a4:52:4c:00:ff:44:4a:2f:3a:1b:
dc:99:ca:8b:a7:fa:2a:d3:c2:61:6f:81:92:e1:73:
fd:49:d1:9c:6f:b2:1b:cc:3c:56:5f:f3:3f:26:59:
fd:5f:b6:ff:08:94:03:74:21:34:b6:d2:14:ff:1d:
30:1d:35:04:20:f7:64:85:ed:92:61:ee:0f:ba:17:
fb:fe:56:ea:ff:d5:dc:80:34:56:b0:4d:f3:0f:be:
16:40:6c:55:e1:c6:fa:10:10:2d:a1:51:05:71:ae:
74:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:78:5D:2A:B1:D8:91:15:C0:1E:C9:38:12:D2:1D:6F:C0:47:A7:7C
X509v3 Authority Key Identifier:
keyid:8B:CB:61:54:F9:C8:93:E0:A4:0B:87:AF:A0:A2:FA:27:FC:CF:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8thVPnIk-CkC4evoKL6J_zPMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/V3hdKrHYkRXAHsk4EtIdb8BHp3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/i8thVPnIk-CkC4evoKL6J_zPMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:44c0::/29
Signature Algorithm: sha256WithRSAEncryption
22:c5:41:8e:6b:37:45:13:74:14:be:ee:3b:41:99:25:cd:4c:
8e:4a:8c:dd:bc:d3:76:79:6d:bf:8c:77:80:da:98:a9:b9:05:
12:43:72:b4:8f:13:6c:5c:eb:02:10:5a:19:f6:d4:e9:62:ff:
ea:0e:40:c8:e9:8f:19:4e:d3:0a:a2:1c:1e:95:91:f9:a9:d0:
e2:04:92:a9:fd:fe:26:a6:f0:6a:7c:58:b4:c7:bb:80:93:f7:
e0:4e:ed:c5:09:7e:91:5b:5d:f7:b4:2c:b1:75:c1:af:01:76:
59:d4:fe:0f:a1:f0:ae:97:3d:0a:f3:47:b2:d7:d7:0a:1d:a2:
65:2e:56:56:32:86:15:d2:c2:39:73:d8:3a:0a:91:81:53:22:
35:e2:5f:d9:ef:7e:5a:13:f6:a9:28:17:91:1a:bc:24:b7:1f:
c3:c8:c5:29:7c:d3:07:83:3f:9b:80:fe:ad:5a:3a:28:12:a7:
4f:db:5e:fb:93:6c:7f:e2:43:dd:c8:e8:55:e7:28:ff:b5:d4:
f6:84:95:fb:35:39:1e:d0:ee:74:32:03:c8:1d:2d:47:bf:ab:
c8:da:e5:f4:53:9f:6c:9a:fa:31:50:e0:d6:0c:df:e7:71:52:
9b:59:62:0b:55:85:6b:00:54:9d:6f:54:fb:38:bd:37:b6:06:
d5:9c:7a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:05 2024 by rpki-client on console-ams.rpki-client.org