Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/O6jh8YMu50FrQLaKK1Sz1DPd_qg.roa
File: O6jh8YMu50FrQLaKK1Sz1DPd_qg.roa (raw, json)
Hash identifier: 5NLtb5Z0GVM4RpW4Xobm4W++lJNrlVYyHc+zmw9HyI8=
Subject key identifier: 3B:A8:E1:F1:83:2E:E7:41:6B:40:B6:8A:2B:54:B3:D4:33:DD:FE:A8
Certificate issuer: /CN=3026806a6b8dac68c2a32b65849229524fc33da7
Certificate serial: 0181E838C4AB3C47C630BF15EB9FCE0E8059
Authority key identifier: 30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/O6jh8YMu50FrQLaKK1Sz1DPd_qg.roa
Signing time: Sun 10 Jul 2022 13:07:23 +0000
ROA not before: Sun 10 Jul 2022 13:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204585
IP address blocks: 2a12:79c1::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e8:38:c4:ab:3c:47:c6:30:bf:15:eb:9f:ce:0e:80:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026806a6b8dac68c2a32b65849229524fc33da7
Validity
Not Before: Jul 10 13:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ba8e1f1832ee7416b40b68a2b54b3d433ddfea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7f:d0:5f:20:d9:54:67:0e:15:df:ed:fc:3e:
9d:bc:b5:a8:cd:7d:7d:3e:a2:91:3f:b4:20:e2:09:
49:bb:2b:50:da:97:c5:eb:6a:c7:ee:61:b5:77:9a:
58:f7:7b:f8:29:d1:ac:09:79:5b:35:1b:bc:82:f9:
70:96:d5:4b:f6:06:a0:2e:ab:32:99:c7:34:bf:c3:
80:4a:2f:0c:7a:d7:d6:6c:1f:9c:7f:14:85:1e:7d:
5e:8f:52:fc:cb:4f:44:52:70:a3:59:cf:8b:cd:9e:
ec:05:f7:cc:25:18:ab:41:f1:60:dd:4a:ea:24:6a:
65:19:fb:1d:ab:58:ca:f6:ec:44:8e:2b:a6:ca:41:
5b:7c:4a:cb:34:94:f1:50:a8:e8:8c:46:24:c5:ad:
61:85:98:6b:b7:84:1d:80:39:4b:91:73:fa:ab:a1:
5c:8e:ab:c1:67:56:e3:c2:11:b1:b3:8b:38:2e:92:
ec:b2:93:79:b9:40:74:e8:3d:c7:4c:7c:e5:94:5b:
70:b3:d1:63:f9:bd:75:7b:af:d1:d8:78:97:88:6b:
b3:b1:a6:12:a0:9f:7a:c1:36:8c:82:2b:c9:cc:7c:
36:47:4c:bf:69:e1:02:72:d6:48:1f:83:09:77:ef:
dc:6b:06:b1:90:74:9e:81:ce:b7:d8:f3:65:17:4e:
cd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A8:E1:F1:83:2E:E7:41:6B:40:B6:8A:2B:54:B3:D4:33:DD:FE:A8
X509v3 Authority Key Identifier:
keyid:30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/O6jh8YMu50FrQLaKK1Sz1DPd_qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/MCaAamuNrGjCoytlhJIpUk_DPac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:79c1::/48
Signature Algorithm: sha256WithRSAEncryption
91:8f:4d:d3:94:7a:76:ad:a6:51:d1:33:fe:07:ef:07:63:d9:
56:76:ef:bf:d2:3b:0f:c0:d7:55:d3:1a:42:91:db:76:23:65:
77:38:ec:14:76:29:64:b9:13:b6:5e:79:11:dc:ee:34:2f:e2:
b5:2b:b6:7c:e8:c3:43:73:05:ab:a9:1b:6c:b7:78:e1:d0:c4:
b0:ea:2e:08:8e:74:8d:df:ab:16:69:83:36:78:89:ea:43:f4:
b2:3c:64:59:97:70:b7:92:a1:0f:67:cd:a2:02:9e:12:96:cf:
3a:c4:4e:4d:90:ca:0e:2c:40:b2:82:20:63:d3:19:6e:e3:33:
51:7d:d6:bc:70:b7:dd:92:77:03:c1:fd:b0:17:a9:a5:7e:b3:
f5:1e:01:b7:a4:0d:84:eb:d4:0e:ba:5b:30:8e:d5:39:4e:6a:
ed:13:5f:a8:66:31:9e:6e:cf:60:06:66:2c:fe:bf:f8:6a:67:
07:0b:9d:02:dd:7f:b6:b0:cc:1a:85:aa:3f:73:14:4e:87:a8:
6a:6e:b8:eb:43:c1:9a:dd:72:31:b6:39:cc:6d:72:01:55:9a:
34:1d:fa:eb:ef:9f:0a:0e:e4:cf:38:db:41:ec:6a:b4:ce:73:
73:75:9a:c6:48:71:34:be:ac:24:6b:f6:95:75:2a:c2:d4:cf:
d9:7b:1d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:14 2024 by rpki-client on console-fra.rpki-client.org