Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/DmU7upIT0UdoAZKDy4hqHBeN7hs.roa
File: DmU7upIT0UdoAZKDy4hqHBeN7hs.roa (raw, json)
Hash identifier: ffYzvvcQnWRZOKD+HXuT5hE4u4ato9ACBG5Cxdu4uug=
Subject key identifier: 0E:65:3B:BA:92:13:D1:47:68:01:92:83:CB:88:6A:1C:17:8D:EE:1B
Certificate issuer: /CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Certificate serial: 85F2
Authority key identifier: B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/DmU7upIT0UdoAZKDy4hqHBeN7hs.roa
Signing time: Fri 29 Apr 2022 12:44:16 +0000
ROA not before: Fri 29 Apr 2022 12:44:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 2a12:de40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34290 (0x85f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Validity
Not Before: Apr 29 12:44:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e653bba9213d14768019283cb886a1c178dee1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:73:c7:c2:43:89:63:9e:12:96:62:28:36:9a:
67:8d:5e:ae:80:18:08:79:7a:50:48:27:78:a5:a0:
f3:65:12:04:9e:58:e6:e5:96:7a:dc:ae:7a:54:87:
a8:79:a0:6a:b7:e5:3b:12:b1:6b:9e:79:ab:7c:ba:
c4:1c:cc:d4:08:72:27:3d:04:93:89:59:92:bc:fe:
30:18:63:4e:e7:e1:13:41:1e:41:e1:32:47:f1:f7:
e0:cc:da:cf:b6:de:f6:b0:b2:fe:bb:23:f1:85:06:
ad:ba:68:0d:fc:e4:12:fd:7a:e8:9c:1f:be:29:20:
f5:95:e8:f1:1f:d0:f1:ad:ca:5b:c1:41:5b:55:13:
1c:e6:9f:68:94:ad:29:71:3d:d3:56:98:94:58:d5:
4e:e3:03:53:c6:8b:f9:cf:c0:80:79:ed:44:5e:89:
d1:36:13:1a:68:c3:3b:17:c0:b4:77:a0:53:45:5e:
fd:3a:6c:98:e3:ea:96:79:fd:1f:fe:4e:ba:2d:79:
a5:7b:7c:b2:b5:34:10:80:eb:0c:fc:31:f0:f0:52:
13:d7:af:37:9f:00:cb:3d:5f:ef:e2:02:03:12:bb:
65:ff:37:cf:24:97:fd:33:b5:f1:f7:b3:28:7d:7e:
ae:a6:9d:a9:76:09:89:36:dd:51:4d:28:9b:30:5a:
d7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:65:3B:BA:92:13:D1:47:68:01:92:83:CB:88:6A:1C:17:8D:EE:1B
X509v3 Authority Key Identifier:
keyid:B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/DmU7upIT0UdoAZKDy4hqHBeN7hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:de40::/29
Signature Algorithm: sha256WithRSAEncryption
69:02:ad:fa:0d:c1:e1:9e:62:1d:c0:77:4a:df:ce:89:24:81:
e4:44:72:ac:d2:88:79:09:1b:fa:87:c4:44:06:58:54:ff:71:
ee:9b:6a:28:ac:ac:fa:e3:ff:0c:ec:3a:9b:42:86:73:42:51:
81:c1:a7:b4:51:a5:9d:f5:6b:5b:39:35:62:1a:0b:89:e3:10:
9c:99:2a:e7:0c:ba:21:ee:6d:e2:24:92:c2:60:7a:1a:1b:50:
8a:a4:15:c3:79:6d:36:7c:10:92:cd:19:67:25:3c:5a:c8:a4:
82:3c:7a:cd:6c:07:62:12:a0:62:e0:38:ec:36:6c:bd:64:39:
1e:47:9b:ee:be:60:37:b3:fc:a4:21:1b:52:1f:aa:c6:57:de:
8c:8d:cf:bc:6d:a1:75:c0:27:da:a6:26:08:be:97:01:ce:4f:
69:a8:a2:e3:2c:b7:d5:8f:d3:1c:0b:7a:91:87:92:fe:1f:3f:
94:cb:67:1f:cf:6b:66:78:bb:65:aa:6f:b4:af:78:50:d7:bf:
bc:2b:fb:69:31:ad:a7:5f:91:15:84:38:a4:0e:71:dd:19:ef:
5a:6e:bb:58:a8:f8:e6:1a:ec:ba:a6:de:03:c7:58:2c:3e:ff:
57:a4:02:bd:83:78:f0:5a:3b:c6:77:23:07:8c:27:55:8d:4e:
a4:8c:21:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:39 2024 by rpki-client on console-fra.rpki-client.org