Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/IMgLJMs_nTp4Ke2QRsrRpaNY_U0.roa
File: IMgLJMs_nTp4Ke2QRsrRpaNY_U0.roa (raw, json)
Hash identifier: e3+de8A34pNoNe0L2HSCbUP5Td/xGg5vPWgzTJz6cQw=
Subject key identifier: 20:C8:0B:24:CB:3F:9D:3A:78:29:ED:90:46:CA:D1:A5:A3:58:FD:4D
Certificate issuer: /CN=3026806a6b8dac68c2a32b65849229524fc33da7
Certificate serial: 0181E842D70F1E434A655D12EC0D84BF6CCC
Authority key identifier: 30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/IMgLJMs_nTp4Ke2QRsrRpaNY_U0.roa
Signing time: Sun 10 Jul 2022 13:18:23 +0000
ROA not before: Sun 10 Jul 2022 13:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209018
IP address blocks: 2a12:79c1:1::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e8:42:d7:0f:1e:43:4a:65:5d:12:ec:0d:84:bf:6c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026806a6b8dac68c2a32b65849229524fc33da7
Validity
Not Before: Jul 10 13:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20c80b24cb3f9d3a7829ed9046cad1a5a358fd4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f9:16:80:cd:ee:36:2b:0e:1c:10:bc:a4:42:
11:b5:97:42:87:ca:0b:c6:f5:86:8a:c6:f0:8d:e2:
da:f1:f0:a0:67:aa:46:eb:5b:a2:5a:e2:ae:41:ae:
06:8e:85:fd:7e:2f:7e:50:31:40:ed:fd:2b:8a:cb:
01:99:3d:4a:ef:2e:c0:7a:a8:71:7e:e6:f6:03:16:
99:49:5b:d4:44:df:00:dd:03:6a:2d:65:ff:f0:9d:
ed:aa:f0:d0:d6:3d:aa:e8:ff:1d:42:7c:5a:96:40:
33:eb:a4:20:02:81:92:00:25:4a:57:96:da:8e:b9:
56:47:f0:f6:72:18:cf:87:b1:4e:b0:08:81:ca:76:
d2:b7:7e:99:77:ce:c5:5f:0b:0b:9d:f3:6f:5e:ed:
6f:e8:c7:7d:a7:e8:2c:6b:bd:35:9a:4c:d0:28:b1:
1b:01:86:c1:03:7f:6a:5c:41:2b:1b:d9:01:fe:d5:
bd:71:61:d1:2e:04:6b:81:41:1b:8d:e7:94:10:47:
f2:3a:18:99:c2:5f:00:36:cd:b8:6c:0d:05:df:e2:
a1:99:bd:68:f0:e7:17:2d:52:f8:95:a7:36:f1:5a:
58:fd:58:31:df:22:b9:0a:52:c7:77:1b:f3:dc:19:
16:79:a9:23:ce:74:64:1e:92:20:7e:eb:4b:9d:2c:
30:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C8:0B:24:CB:3F:9D:3A:78:29:ED:90:46:CA:D1:A5:A3:58:FD:4D
X509v3 Authority Key Identifier:
keyid:30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/IMgLJMs_nTp4Ke2QRsrRpaNY_U0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/MCaAamuNrGjCoytlhJIpUk_DPac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:79c1:1::/48
Signature Algorithm: sha256WithRSAEncryption
54:49:14:75:44:47:f6:75:23:5c:54:f8:30:d6:ac:13:3d:79:
30:a0:99:51:f9:1e:26:1a:1b:ce:e0:bf:da:db:78:b4:cb:ef:
09:f8:89:c2:fe:b4:0a:17:f0:ad:b2:76:d6:eb:79:f9:a3:88:
b2:0d:aa:c9:31:af:01:91:18:20:da:1e:86:ca:d2:15:27:24:
79:46:6b:f4:bf:02:27:59:ef:a0:67:b9:7b:ea:b5:d4:d0:e8:
fc:e2:49:2c:48:75:f3:cf:15:81:60:25:79:6a:44:70:d3:10:
f8:64:9f:65:a8:6f:08:ff:7f:b7:92:50:72:9e:9d:7a:c9:7e:
48:5d:cf:8d:f9:ad:51:e5:f6:28:9f:8e:e0:9d:39:6e:b8:2c:
a0:47:37:04:c2:d0:63:c2:3e:c5:f5:a5:68:9e:81:da:b5:56:
09:19:78:4c:10:36:88:20:76:89:e0:cc:44:8d:6a:bb:aa:52:
bc:bb:ea:da:49:93:4d:d7:86:66:af:42:9b:20:78:f1:f7:f8:
f4:99:41:92:2f:10:46:e2:39:f9:fd:15:fa:fe:ed:d0:e5:4e:
fb:a1:93:e8:93:b3:9a:a2:13:f3:2a:f0:5d:60:d2:ee:aa:9f:
5a:e0:b4:33:32:a3:e0:58:49:b9:57:e1:93:52:f2:1a:75:6a:
ca:9e:93:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:52 2024 by rpki-client on console-ams.rpki-client.org