Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/w21jINDPezd0a-zQ1Xsim2y_rV0.roa
File: w21jINDPezd0a-zQ1Xsim2y_rV0.roa (raw, json)
Hash identifier: /lcNZ1T499qGR83c0sm5bN1qBBuws3s6AI5Ticcg79k=
Subject key identifier: C3:6D:63:20:D0:CF:7B:37:74:6B:EC:D0:D5:7B:22:9B:6C:BF:AD:5D
Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Certificate serial: 067FE913
Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/w21jINDPezd0a-zQ1Xsim2y_rV0.roa
Signing time: Tue 01 Mar 2022 13:05:06 +0000
ROA not before: Tue 01 Mar 2022 13:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209112
IP address blocks: 2a0e:1200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109046035 (0x67fe913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Validity
Not Before: Mar 1 13:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c36d6320d0cf7b37746becd0d57b229b6cbfad5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:be:b6:76:26:a1:8b:9c:e9:1f:1f:8e:06:51:
41:64:f1:8b:31:ec:d2:ec:44:c0:1b:93:2c:91:3d:
af:35:c1:38:e4:2e:cd:21:3c:36:f1:ee:e4:2a:dc:
55:bb:f9:13:79:d1:0d:72:55:54:00:b4:55:3f:10:
ec:84:b2:00:4b:9d:b5:3c:51:e5:11:66:93:91:04:
ba:93:8d:4f:e3:47:22:39:f2:07:cf:ae:3b:92:e5:
bb:f7:7c:30:87:46:d5:68:bd:ef:95:ae:bd:db:13:
f0:32:22:24:cd:54:35:6b:3c:66:e8:83:1c:23:d2:
db:81:b3:95:6e:fe:ba:5a:1d:3e:48:28:77:e3:81:
2c:7f:24:8a:c0:ff:50:a9:62:be:74:c4:85:00:6f:
24:3f:50:5b:46:c0:d9:d6:60:9d:b1:9d:9f:d0:87:
94:24:ab:9a:e5:b7:b0:93:65:9e:f0:60:90:06:54:
02:34:f7:ac:7b:2b:d8:bf:b6:0f:c1:65:8f:47:6b:
61:0a:65:58:2f:81:07:58:3c:db:23:33:8a:4a:45:
cf:87:62:47:1f:bc:bf:dd:7f:69:5a:b2:b6:bc:3c:
07:87:0c:f5:d0:77:02:55:03:ba:4d:0d:e9:c7:d9:
6c:48:5e:fe:a6:c2:2c:88:98:ae:f7:fd:a1:4a:8e:
90:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6D:63:20:D0:CF:7B:37:74:6B:EC:D0:D5:7B:22:9B:6C:BF:AD:5D
X509v3 Authority Key Identifier:
keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/w21jINDPezd0a-zQ1Xsim2y_rV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1200::/29
Signature Algorithm: sha256WithRSAEncryption
4c:e7:61:69:98:fd:b9:35:ee:71:2a:48:2f:d3:3e:ae:52:46:
ac:27:7f:d3:16:4b:23:67:b5:98:07:70:01:c4:3f:63:40:63:
17:60:d4:d4:83:fc:94:16:33:f3:ec:ca:12:41:7d:84:e7:b2:
83:fa:62:3d:42:76:6b:fe:8a:e1:a5:9d:8c:e0:36:c1:14:94:
f3:e6:22:65:47:1e:42:63:ef:c1:b6:c7:47:e9:e1:ce:1a:5e:
5f:35:1e:bc:26:f2:bc:16:ae:ad:51:aa:a0:0d:ce:62:75:ce:
cb:f0:82:03:bd:ca:a4:99:43:73:49:61:5c:3a:e9:58:4c:38:
a6:de:24:f3:3f:d3:b9:11:2e:30:d9:1b:75:a2:73:37:d1:51:
08:f6:bc:07:64:e1:fa:d1:46:24:f1:52:aa:f0:91:a3:cf:e6:
0d:10:34:01:d2:89:80:ab:ff:0a:75:79:27:6c:ea:ff:af:3d:
20:15:a0:30:e0:e7:35:ca:f8:dc:fe:d1:03:96:c1:e1:35:e8:
c8:3f:09:94:2f:ed:74:7d:72:8a:ad:2e:d4:36:e3:a5:a1:07:
68:77:c5:3a:01:fa:24:dd:f4:0b:33:ab:d5:c1:8f:23:55:d2:
ce:c8:3a:09:e2:ce:5d:16:b3:80:7b:e6:7c:06:0d:3b:70:34:
3f:c1:46:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:14 2024 by rpki-client on console-fra.rpki-client.org