Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/Fstu6yiVBfsL8fQLzwCw8wRXYdI.roa
File: Fstu6yiVBfsL8fQLzwCw8wRXYdI.roa (raw, json)
Hash identifier: DR2Mjh5GmHMoWkOWudonOIl2TxqNJxOrOVXWItCfrFY=
Subject key identifier: 16:CB:6E:EB:28:95:05:FB:0B:F1:F4:0B:CF:00:B0:F3:04:57:61:D2
Certificate issuer: /CN=70f8b2dbb03cecc4f214564709149614c48d7085
Certificate serial: 018486AB4BF4045AF7D37F133E46D3CE95A8
Authority key identifier: 70:F8:B2:DB:B0:3C:EC:C4:F2:14:56:47:09:14:96:14:C4:8D:70:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPiy27A87MTyFFZHCRSWFMSNcIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/Fstu6yiVBfsL8fQLzwCw8wRXYdI.roa
Signing time: Thu 17 Nov 2022 17:38:03 +0000
ROA not before: Thu 17 Nov 2022 17:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:d880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:ab:4b:f4:04:5a:f7:d3:7f:13:3e:46:d3:ce:95:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f8b2dbb03cecc4f214564709149614c48d7085
Validity
Not Before: Nov 17 17:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16cb6eeb289505fb0bf1f40bcf00b0f3045761d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:16:68:e6:c1:55:5f:07:03:22:3c:07:54:1c:
2d:87:2e:93:b7:fc:da:31:eb:b6:89:f1:4f:f6:fe:
97:ee:90:5f:6f:5b:b8:3e:d3:7a:cb:46:05:af:d2:
7f:95:41:12:4e:69:63:ae:36:d5:d5:56:36:b1:a4:
cf:36:1f:33:f6:ad:17:90:6e:e2:5c:e9:88:80:3c:
87:68:ea:58:62:14:e4:84:d0:f2:6b:28:a0:a6:f8:
ef:cf:58:d5:43:ce:66:a3:07:21:de:c3:e9:12:64:
b8:83:35:7b:6a:93:59:63:b1:0b:e7:ea:d7:06:4a:
7b:7d:ed:fb:06:d5:c6:8f:1e:b2:02:13:b4:b7:ce:
6e:ca:6d:d6:e7:82:c5:fd:76:1a:bf:aa:f5:a7:57:
64:1c:f5:c7:f4:9d:86:4d:88:73:98:65:fc:61:30:
d0:64:98:18:85:63:a1:e4:8e:57:81:1a:63:ad:81:
60:dc:b9:67:25:b0:ab:1d:83:46:25:80:a9:14:4d:
4b:75:21:5d:be:d9:df:1b:dc:0b:da:7a:25:c1:9d:
5f:5e:fe:7d:69:c8:80:64:74:67:4c:ef:c0:9c:50:
66:70:88:be:96:89:b9:18:fc:93:c1:23:b7:45:64:
7a:99:68:d0:9c:9d:92:3e:84:05:de:51:aa:b3:7c:
7c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:CB:6E:EB:28:95:05:FB:0B:F1:F4:0B:CF:00:B0:F3:04:57:61:D2
X509v3 Authority Key Identifier:
keyid:70:F8:B2:DB:B0:3C:EC:C4:F2:14:56:47:09:14:96:14:C4:8D:70:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPiy27A87MTyFFZHCRSWFMSNcIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/Fstu6yiVBfsL8fQLzwCw8wRXYdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/cPiy27A87MTyFFZHCRSWFMSNcIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d880::/29
Signature Algorithm: sha256WithRSAEncryption
9c:35:92:ed:98:70:a5:b7:a2:ea:54:e2:83:28:bf:db:ce:4b:
c7:37:88:82:13:2d:00:72:dd:1a:a3:98:a9:dc:2c:e3:9a:43:
d3:65:bb:91:74:72:96:e5:1c:9d:a2:4c:79:78:3a:67:53:22:
3d:7c:19:1f:98:46:96:a8:ff:53:d0:48:16:87:f2:2f:b6:c8:
cf:90:3a:17:c8:da:83:e1:90:17:0f:c0:eb:a8:08:31:50:39:
e0:2f:26:a2:fe:17:17:f3:d4:87:43:66:6f:ea:4e:bf:a3:56:
bf:13:20:4c:3c:3b:ee:d1:ce:ac:9e:6c:f5:1b:12:44:99:1b:
56:15:69:35:3c:7d:fa:41:9d:bc:d6:22:96:a6:68:f8:ec:2d:
07:e5:10:ec:0f:9d:7b:f9:72:6d:80:a4:5d:de:f6:96:d9:f1:
ca:c5:6a:48:0b:e9:72:75:87:ff:38:20:53:55:47:9d:f5:e6:
99:56:2b:fb:fe:f5:80:ff:a6:2d:d0:48:a4:32:4c:db:14:3a:
5c:62:a6:7d:93:36:8f:4c:5c:ce:97:4e:ae:61:8f:f4:fd:e6:
f2:67:e9:bb:87:0f:94:1f:85:17:87:7a:4d:4a:0a:69:e5:d0:
0f:56:92:7f:01:3b:be:87:67:a4:49:42:e5:7b:a6:bf:67:8f:
d8:f9:4d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:28 2023 by rpki-client on console.sobornost.net