Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/6Yk5gQ-RadxgpUS9oB3Omgij3ng.roa
File: 6Yk5gQ-RadxgpUS9oB3Omgij3ng.roa (raw, json)
Hash identifier: O4olZpniJqp0Yi76g1d6uauxFuktqtq+laOAjFnGbtI=
Subject key identifier: E9:89:39:81:0F:91:69:DC:60:A5:44:BD:A0:1D:CE:9A:08:A3:DE:78
Certificate issuer: /CN=e69f2b69f4a95a521e18fb33e6793f467e031bc1
Certificate serial: 17184A
Authority key identifier: E6:9F:2B:69:F4:A9:5A:52:1E:18:FB:33:E6:79:3F:46:7E:03:1B:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p8rafSpWlIeGPsz5nk_Rn4DG8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/6Yk5gQ-RadxgpUS9oB3Omgij3ng.roa
Signing time: Tue 15 Mar 2022 11:08:28 +0000
ROA not before: Tue 15 Mar 2022 11:08:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 2a12:5940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1513546 (0x17184a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69f2b69f4a95a521e18fb33e6793f467e031bc1
Validity
Not Before: Mar 15 11:08:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e98939810f9169dc60a544bda01dce9a08a3de78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:89:a8:f6:cc:43:36:eb:8a:0a:90:9a:82:a8:
59:71:d3:00:fc:d4:79:6d:65:50:8e:eb:ff:a2:23:
ec:1f:b2:2e:67:ee:a0:ca:81:f0:30:9f:8b:05:be:
2e:6c:ca:fd:cb:6f:d9:54:7c:49:73:f4:2f:66:17:
2f:a9:18:41:ee:11:bd:36:38:78:ea:00:16:76:78:
f4:00:ed:25:18:f1:31:1e:5c:49:91:66:6f:1d:09:
4b:e3:4e:52:8a:5b:37:bf:25:c9:97:01:cf:27:3c:
ca:25:04:c1:eb:55:0f:59:52:b3:05:7b:64:16:4b:
b1:dd:8f:50:d4:65:f7:e7:37:c1:04:d2:4a:75:9f:
1a:7e:8c:46:06:49:89:61:f7:8f:4e:5b:f4:96:7e:
fa:88:2f:52:2a:62:e4:bd:13:ec:e1:1a:9a:7b:8b:
b6:03:ed:d4:e9:69:e0:19:51:e7:37:ff:7a:31:27:
5d:bb:0c:2a:e3:65:29:89:26:68:d2:df:ca:bf:86:
b2:40:ad:53:6f:6c:9b:dc:97:29:6f:87:92:bb:b6:
52:65:c1:a1:fb:55:97:67:58:d2:64:2d:d3:33:6b:
9e:45:53:5e:e2:e2:65:cb:1d:fc:73:53:5b:1b:7c:
aa:b7:21:7f:f6:2a:df:a5:1a:42:c0:5d:61:05:8a:
54:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:89:39:81:0F:91:69:DC:60:A5:44:BD:A0:1D:CE:9A:08:A3:DE:78
X509v3 Authority Key Identifier:
keyid:E6:9F:2B:69:F4:A9:5A:52:1E:18:FB:33:E6:79:3F:46:7E:03:1B:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p8rafSpWlIeGPsz5nk_Rn4DG8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/6Yk5gQ-RadxgpUS9oB3Omgij3ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/5p8rafSpWlIeGPsz5nk_Rn4DG8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:5940::/29
Signature Algorithm: sha256WithRSAEncryption
a9:24:c6:92:55:be:fd:fe:18:e9:d9:5a:aa:61:15:57:13:01:
b2:2d:40:bc:8a:28:4b:b5:ae:d4:47:3c:b0:30:3f:b2:9e:c4:
82:9a:32:fd:86:b9:a2:fe:2a:79:67:8f:ed:a3:b8:f6:69:16:
f3:0d:fd:5d:22:82:b1:26:b6:ea:04:30:4e:b6:ac:03:b4:41:
dd:d4:2d:45:e1:8d:eb:05:a2:59:d4:6a:99:a8:98:db:67:0a:
c5:d7:bd:77:a2:13:ca:36:0c:96:65:bf:35:a4:2f:e4:0c:c0:
a0:42:4e:a9:e1:d7:b5:b7:24:3f:7a:27:48:c5:0d:f7:4d:49:
12:d9:de:9f:02:97:d8:1a:5f:b2:01:01:0a:56:99:65:f6:a5:
05:cf:29:01:25:21:1d:3c:ee:d8:19:03:c4:94:33:a0:7d:59:
0d:27:5d:45:2a:99:5e:10:9d:6a:ef:88:95:67:f9:88:cc:ef:
7d:aa:7d:82:6d:2b:b3:e6:58:a9:b0:a6:43:55:11:be:23:a2:
cc:34:b4:93:6e:85:0b:5d:15:8f:bf:3d:23:6f:a3:8c:06:ba:
f4:f8:64:43:6e:d3:f5:6a:fc:20:69:b7:14:08:18:73:fc:ab:
14:99:59:cf:7d:ff:3d:f6:a0:61:da:9b:c3:3d:6f:be:82:b3:
3d:3c:70:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:06 2023 by rpki-client on console-fra.rpki-client.org