Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/SSGHwnXLC6DwLolMDcCaWOTR5yY.roa
File: SSGHwnXLC6DwLolMDcCaWOTR5yY.roa (raw, json)
Hash identifier: gPxwA6RSucHnR5WuXbsbrAd0NDKmV90mulNTwgSr6r0=
Subject key identifier: 49:21:87:C2:75:CB:0B:A0:F0:2E:89:4C:0D:C0:9A:58:E4:D1:E7:26
Certificate issuer: /CN=f7ed6e066436e0a0b617474955a8a758e6e35d76
Certificate serial: 0146E4C2
Authority key identifier: F7:ED:6E:06:64:36:E0:A0:B6:17:47:49:55:A8:A7:58:E6:E3:5D:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9-1uBmQ24KC2F0dJVainWObjXXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/SSGHwnXLC6DwLolMDcCaWOTR5yY.roa
Signing time: Sat 02 Apr 2022 08:09:47 +0000
ROA not before: Sat 02 Apr 2022 08:09:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29491
IP address blocks: 2a12:7100::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21423298 (0x146e4c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7ed6e066436e0a0b617474955a8a758e6e35d76
Validity
Not Before: Apr 2 08:09:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=492187c275cb0ba0f02e894c0dc09a58e4d1e726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b6:5d:ef:08:e8:df:f8:49:24:a4:48:e8:57:
c2:dc:e2:0d:e1:93:d5:d2:83:7d:9c:9e:82:47:e6:
91:e2:27:83:c2:c9:3d:bc:f6:fb:35:af:59:74:38:
50:3d:2c:0b:35:3e:f0:73:9e:2c:5c:e4:3b:be:63:
35:2a:c5:1f:4f:d4:d3:19:e7:de:c1:04:7b:d6:c4:
25:8f:0e:9b:14:0d:be:60:fd:8e:c5:45:20:90:51:
f2:21:48:5b:8f:00:e5:bc:66:e4:f2:4f:1e:15:2d:
47:c2:29:97:4a:45:08:b4:d1:ff:24:09:94:92:e5:
6d:e8:b6:a7:31:29:55:61:fd:d6:4e:d5:fa:a9:c0:
be:d1:8b:4e:59:8f:c5:07:bd:48:bb:92:10:2e:65:
9f:82:a5:94:00:5e:91:70:7f:07:50:c9:02:e3:d2:
8a:4c:9b:f2:2d:88:17:e6:59:e2:2d:b8:20:86:94:
80:1f:bc:a4:71:77:ed:10:8c:f0:82:24:05:ff:ee:
b4:31:0f:bf:1f:ed:02:78:b6:05:b0:88:e4:40:04:
14:38:96:b1:a8:ea:23:fb:dd:e1:04:1a:c5:6b:f5:
69:6f:16:c8:7b:0b:5c:90:19:8b:2b:53:d9:77:b8:
10:65:d7:87:38:b2:63:a1:4e:76:62:b2:e7:5a:b8:
e8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:21:87:C2:75:CB:0B:A0:F0:2E:89:4C:0D:C0:9A:58:E4:D1:E7:26
X509v3 Authority Key Identifier:
keyid:F7:ED:6E:06:64:36:E0:A0:B6:17:47:49:55:A8:A7:58:E6:E3:5D:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9-1uBmQ24KC2F0dJVainWObjXXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/SSGHwnXLC6DwLolMDcCaWOTR5yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/9-1uBmQ24KC2F0dJVainWObjXXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:7100::/29
Signature Algorithm: sha256WithRSAEncryption
4e:78:f2:4a:3b:57:5f:d8:44:eb:26:e6:b4:e8:bd:d5:9c:c8:
3f:73:7c:21:41:d3:e0:76:3b:3c:af:b0:ef:63:1f:c9:15:08:
93:ef:01:cc:14:a7:59:3a:ac:6a:5f:35:10:5d:f6:60:47:2f:
c1:8d:7c:0e:6c:53:01:cc:a2:1b:25:62:34:b9:6d:93:9b:b3:
1d:40:4a:e3:26:f0:a6:c2:f4:fb:ab:b5:f2:64:5b:2f:29:28:
9a:e9:72:47:d2:b6:66:98:33:d0:e7:f4:52:52:a2:5c:95:f2:
54:c5:8e:fc:f9:c1:4c:8b:ef:9c:41:15:af:70:f0:d1:22:f2:
88:cc:68:e2:ec:39:35:ea:35:71:5d:ad:cc:6a:e6:5c:9f:60:
18:f5:90:18:9f:3d:f1:14:6c:1f:be:f8:fe:ef:5b:32:d3:f7:
5b:11:59:a5:e0:e4:ae:49:19:c6:2c:0c:d3:b8:55:53:85:23:
49:26:23:93:6f:8e:33:76:09:ef:37:23:2c:7a:40:5b:87:7d:
b4:80:71:c8:f6:77:df:6e:eb:45:92:51:89:52:35:d3:24:93:
21:df:e5:5d:04:6b:a7:ab:58:ee:ab:3d:34:be:57:60:50:e6:
d7:b7:08:fe:5c:4d:b2:36:9d:f3:07:dd:fe:09:56:21:1d:d2:
91:d5:92:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-ams.rpki-client.org