Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/OH1va5mPBwc3ACY3BStC4nS0ycE.roa
File: OH1va5mPBwc3ACY3BStC4nS0ycE.roa (raw, json)
Hash identifier: jDupIu5DSFSaFl7I+2w11cMW/nE3OnXxkhlnO4W95Mw=
Subject key identifier: 38:7D:6F:6B:99:8F:07:07:37:00:26:37:05:2B:42:E2:74:B4:C9:C1
Certificate issuer: /CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Certificate serial: 018226836BFD5E14BD01A20862BF19CA542D
Authority key identifier: A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/OH1va5mPBwc3ACY3BStC4nS0ycE.roa
Signing time: Fri 22 Jul 2022 15:25:23 +0000
ROA not before: Fri 22 Jul 2022 15:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206880
IP address blocks: 2a12:6ac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:26:83:6b:fd:5e:14:bd:01:a2:08:62:bf:19:ca:54:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Validity
Not Before: Jul 22 15:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=387d6f6b998f070737002637052b42e274b4c9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2d:62:e8:ed:e2:35:9c:3a:c0:56:d0:95:ab:
65:eb:ba:dd:a2:87:c9:ad:a4:4d:93:04:85:a9:42:
e3:e0:1a:09:2b:fa:51:ef:3f:cb:af:00:a3:b8:b4:
33:73:77:d1:92:04:f4:d9:83:c7:98:a5:e3:3e:53:
c4:c3:2b:ba:76:d8:22:e8:8d:2d:40:bb:25:a9:7a:
41:40:fb:ba:7c:6a:cc:be:71:9f:50:b7:91:90:d7:
c4:42:7c:46:ac:bd:b6:f0:77:0e:99:93:3c:da:0f:
7d:73:4c:6c:3f:5d:80:00:88:31:5b:54:dc:41:0f:
b2:de:89:1c:34:2c:57:b0:8f:77:19:89:cd:4e:d5:
b3:37:48:24:84:ec:66:2f:4b:2c:f2:e7:f3:19:e0:
ce:7a:78:9c:a9:23:23:fa:f8:3e:db:fc:75:46:f7:
76:52:25:ac:50:b6:74:49:f7:87:7f:a6:cb:7f:86:
ad:9b:51:f1:2c:0f:ba:1e:91:12:8a:58:60:c3:2e:
4c:18:52:e7:7c:b7:b2:8c:a5:68:fd:23:02:b6:f5:
19:3b:65:79:e6:cb:69:d5:74:23:d9:3b:e5:f6:7c:
61:65:2c:86:e1:75:0c:b8:71:3c:df:b6:97:82:fe:
b4:47:33:f3:10:32:4b:2c:47:e9:e1:9f:06:ae:ae:
8f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7D:6F:6B:99:8F:07:07:37:00:26:37:05:2B:42:E2:74:B4:C9:C1
X509v3 Authority Key Identifier:
keyid:A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/OH1va5mPBwc3ACY3BStC4nS0ycE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6ac0::/29
Signature Algorithm: sha256WithRSAEncryption
75:e7:bb:d1:a2:68:50:ba:cc:8c:bd:24:d1:d5:db:ec:e6:5f:
28:59:26:28:8f:cc:dd:3c:f3:4f:dd:ae:14:80:44:b0:2e:d5:
11:2a:7d:f5:7a:4a:6a:88:ee:dc:7f:5b:0a:85:b7:87:56:ab:
b3:0f:dc:0c:b5:6c:73:a9:7f:a5:a5:0c:c2:0d:83:27:4c:e3:
86:88:a8:25:3c:ef:be:97:78:c3:44:32:8d:17:3c:ef:ee:7f:
b3:8b:a1:c8:02:2f:d3:70:f8:fe:fe:78:63:d4:24:52:8c:b5:
be:84:92:8b:31:ac:a3:61:1b:ab:88:d9:70:7e:ec:25:0d:e0:
c4:47:81:d4:0a:e0:66:c5:6d:ff:c8:5e:70:a9:02:1c:56:97:
93:cd:41:48:94:f7:2d:56:2a:c5:b8:c9:86:70:4a:9f:bd:45:
b3:d9:4d:8b:7f:b7:6d:bf:2a:08:c0:e9:28:9f:db:b7:a9:dd:
8d:24:f1:f3:a9:b9:90:9a:06:e4:fc:9d:95:37:d7:0a:ed:20:
65:17:9b:b9:51:85:4a:25:ef:d2:d4:f5:58:a3:2a:fb:82:89:
65:b4:0e:fb:dc:bd:9d:58:4f:df:3a:77:f7:8b:d5:e0:e1:02:
b2:6a:e9:c1:5a:9d:f9:ad:d7:47:dd:6a:96:bf:f2:9b:a8:98:
0b:b5:95:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:30 2023 by rpki-client on console.sobornost.net