Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/XfllVlC-Na8BJo8V1vPu9A_KVeA.roa
File: XfllVlC-Na8BJo8V1vPu9A_KVeA.roa (raw, json)
Hash identifier: NxpcBrq0IYjF9CPJ4Xozyf70mLAaBaumpwA6KWuo5Q0=
Subject key identifier: 5D:F9:65:56:50:BE:35:AF:01:26:8F:15:D6:F3:EE:F4:0F:CA:55:E0
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 01884A4B
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/XfllVlC-Na8BJo8V1vPu9A_KVeA.roa
Signing time: Sat 01 Jan 2022 05:52:54 +0000
ROA not before: Sat 01 Jan 2022 05:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44685
IP address blocks: 2a12:2600::/48 maxlen: 48
2a12:2600::/30 maxlen: 30
2a12:2600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25709131 (0x1884a4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 05:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5df9655650be35af01268f15d6f3eef40fca55e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:15:a8:bc:19:48:54:b5:8c:4b:60:db:9b:2d:
84:e7:8e:90:34:d1:64:cf:72:0a:73:b9:e8:0e:d2:
83:3d:8d:d0:2a:99:94:e2:35:65:f0:16:76:27:f7:
5b:bd:49:ba:a6:36:59:17:b9:13:dc:2c:48:71:4e:
78:31:bc:75:2d:87:f1:c2:ea:b4:cc:4b:2e:46:13:
56:b1:9d:08:fa:44:a9:8b:fc:70:42:3f:42:6b:f1:
a7:94:be:b2:b5:d3:80:48:34:5f:b9:0a:46:4a:15:
d7:0b:f2:04:43:9e:52:74:27:1f:b5:7e:8a:af:4c:
e2:08:7e:7b:64:77:10:ee:14:d0:81:f5:30:11:e9:
24:0f:45:06:f3:91:53:cf:f9:85:87:4e:a9:a3:37:
e1:cf:fa:00:87:af:35:c7:76:14:ea:a9:a4:51:df:
fc:51:a9:ac:21:9e:85:ab:f0:b9:5c:fa:78:a5:bc:
2f:1c:c1:72:b6:d1:45:4c:2d:b3:46:cd:6b:62:a9:
95:39:8c:3f:af:c6:3f:a2:67:dd:13:a4:67:37:ea:
a3:7a:12:77:14:66:a8:4d:b4:b1:2b:0c:67:12:f4:
9c:40:f0:24:6c:6a:77:28:e9:34:ad:0a:bb:2f:7a:
9e:ce:ef:51:11:df:16:8c:a0:26:9e:55:34:ac:23:
6e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F9:65:56:50:BE:35:AF:01:26:8F:15:D6:F3:EE:F4:0F:CA:55:E0
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/XfllVlC-Na8BJo8V1vPu9A_KVeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:2600::/29
Signature Algorithm: sha256WithRSAEncryption
97:45:8e:1f:6f:ed:a9:12:55:08:2c:00:21:00:35:ff:01:03:
6e:91:b4:12:76:ca:e4:a6:61:31:4d:93:c4:17:2a:92:48:9f:
37:8b:f2:ea:22:e3:23:e7:e1:d9:01:4e:a2:86:7c:46:89:25:
8f:53:9d:77:7b:43:00:94:36:00:c8:94:b9:5d:25:a7:a8:49:
da:c0:0b:60:98:64:1a:de:b4:21:e4:21:ba:ed:a9:81:c2:e6:
87:ef:92:76:ff:1b:06:f0:3a:c5:35:ab:3c:d9:cd:31:81:d1:
64:ee:e0:ec:a5:08:66:c0:e7:3c:02:2e:66:f1:88:39:1d:b3:
85:02:14:85:f8:5e:22:ae:c0:16:14:8a:0d:7a:05:66:7b:bb:
87:16:49:f0:73:53:0c:d1:28:d5:93:0f:08:81:17:03:22:3d:
13:da:17:6f:3c:fd:61:0f:74:8e:91:8c:73:01:82:77:20:c3:
49:79:0a:86:bf:36:39:8b:87:69:b4:7c:95:db:60:50:8c:1f:
7d:2e:fb:8f:f9:78:f0:d2:69:ef:57:93:37:56:24:e2:26:8e:
c1:7f:44:e1:35:d6:f9:31:f9:d3:9a:5f:5f:33:89:82:98:f4:
f9:56:e1:13:15:76:ec:5c:2b:55:e7:4a:0a:0e:4f:a8:c2:22:
71:51:29:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org