Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/gu4osnUhyIQV_T4aypOg4UEx1Sg.roa
File: gu4osnUhyIQV_T4aypOg4UEx1Sg.roa (raw, json)
Hash identifier: 87PyUfy5HqJwRu3I6ZudF06qsO9zyB/wtvPZIqachoQ=
Subject key identifier: 82:EE:28:B2:75:21:C8:84:15:FD:3E:1A:CA:93:A0:E1:41:31:D5:28
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 012ADF6F
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/gu4osnUhyIQV_T4aypOg4UEx1Sg.roa
Signing time: Fri 01 Apr 2022 02:39:54 +0000
ROA not before: Fri 01 Apr 2022 02:39:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51847
IP address blocks: 2a12:e100:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19586927 (0x12adf6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Apr 1 02:39:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82ee28b27521c88415fd3e1aca93a0e14131d528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:da:24:9c:5b:a0:9d:e6:c1:30:84:78:72:1f:
be:3f:b1:78:d0:7c:14:f8:7e:00:31:b9:42:7b:c0:
8c:02:a7:d7:a7:50:d9:2a:f5:7a:05:f8:15:72:95:
63:f6:f2:d8:84:a7:04:35:94:e4:3c:03:b2:64:aa:
bc:bb:1d:6f:d6:bc:54:42:ca:6f:f3:67:0a:f3:10:
57:87:55:b3:c9:25:c0:54:54:c7:bd:ad:61:ac:cd:
79:24:2c:da:3e:f2:4a:52:e3:e2:18:a9:bf:da:8a:
0a:48:e1:58:b3:b2:fc:81:bb:2b:1a:0c:a7:c6:17:
0f:db:35:2c:10:24:4f:02:fe:06:09:77:a2:ad:d9:
15:78:23:77:89:7a:86:1b:59:23:60:a1:bc:c1:0d:
75:54:ef:17:35:3f:5c:4a:4f:43:61:eb:17:32:b1:
4c:de:10:ae:52:e7:79:69:ad:78:bd:9c:76:62:6f:
df:19:e5:b2:0a:0c:9f:75:3e:b0:a2:9d:f8:b3:db:
da:40:50:a4:96:3d:f5:9a:18:ee:7a:60:7c:87:48:
8d:47:ce:31:aa:9b:ab:dc:b5:9f:36:51:da:8a:9a:
71:8c:69:b9:78:34:ba:3f:4f:7e:83:22:ca:54:30:
e3:94:ac:e9:96:a4:bb:04:c5:37:c6:0a:03:99:3b:
1e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:EE:28:B2:75:21:C8:84:15:FD:3E:1A:CA:93:A0:E1:41:31:D5:28
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/gu4osnUhyIQV_T4aypOg4UEx1Sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e100:3::/48
Signature Algorithm: sha256WithRSAEncryption
a1:69:ff:59:84:47:5d:44:73:9f:12:c5:f8:85:f4:9c:78:96:
a1:d4:9c:21:04:fb:63:e1:11:e7:1f:dd:22:79:ac:fe:64:16:
3b:c3:36:c4:01:40:1c:54:05:25:14:ab:c3:6f:6d:d8:9d:86:
17:28:11:e7:c5:c2:02:d9:ba:df:87:ce:b7:7e:df:f1:93:74:
3c:e2:67:c4:95:cb:79:ef:d9:1e:3d:db:ec:05:04:a1:6a:67:
5e:fd:4e:af:11:c4:ca:22:39:9a:80:51:7d:52:39:35:58:d2:
2a:1a:a0:03:78:15:9c:5b:66:c3:94:be:c7:68:06:aa:45:a4:
24:42:44:a3:21:04:1e:46:6c:24:ba:39:b5:36:87:75:75:50:
a4:5d:93:db:92:34:b8:e0:6a:d0:e7:70:6b:ec:33:a2:45:5f:
9a:6b:a4:70:a7:84:8a:7d:62:f0:7f:e7:f9:7d:4e:4a:0d:52:
97:92:1d:8c:ff:3a:37:40:1b:f9:86:46:09:fc:c2:69:34:5e:
36:17:23:b9:f3:c5:98:2a:48:4a:8d:5a:c1:e1:bb:00:a6:1a:
bc:9b:54:15:7d:ad:3a:48:18:e2:52:02:40:76:e0:40:50:66:
a3:e7:fe:38:53:f2:53:cb:24:fc:c0:41:a3:ed:cb:ed:1e:aa:
6c:aa:7e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:23 2023 by rpki-client on console-fra.rpki-client.org