Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/xB-jpUzMCjch65CUzDytxqAApas.roa
File: xB-jpUzMCjch65CUzDytxqAApas.roa (raw, json)
Hash identifier: v72scB3rrxXB+CTho1UGvXmWWniBJKVgZx+URDAN+/M=
Subject key identifier: C4:1F:A3:A5:4C:CC:0A:37:21:EB:90:94:CC:3C:AD:C6:A0:00:A5:AB
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 018537C9360710C424F9B85657576F7FC130
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/xB-jpUzMCjch65CUzDytxqAApas.roa
Signing time: Thu 22 Dec 2022 03:03:31 +0000
ROA not before: Thu 22 Dec 2022 03:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200592
IP address blocks: 2a12:3fc2:e300::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:37:c9:36:07:10:c4:24:f9:b8:56:57:57:6f:7f:c1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Dec 22 03:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c41fa3a54ccc0a3721eb9094cc3cadc6a000a5ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8f:ee:a4:35:02:7f:5b:35:19:cb:61:39:47:
9e:e0:7c:f4:07:19:11:1e:ce:dc:47:c9:85:ca:fa:
98:c2:2c:d4:7a:55:c7:43:a5:3d:54:47:b6:2a:2b:
9f:4f:dd:d9:63:4d:c9:db:c0:3c:d5:c5:a8:ae:10:
47:58:ca:33:5f:f7:ae:0a:2e:10:c0:91:58:76:d1:
45:5b:8e:43:28:59:ec:72:ce:f8:4f:0b:9c:6c:c9:
48:c2:f3:8b:61:2f:fd:ae:13:54:cb:41:85:8b:c3:
cd:7a:9a:d1:d2:af:b4:25:40:a5:8f:96:db:b9:9e:
72:2c:7b:79:cb:27:8a:b2:0a:cf:45:04:81:d6:54:
d2:30:38:e1:fd:47:6c:c4:66:df:7c:07:a3:ba:e2:
c2:1a:aa:31:96:82:8a:47:19:b6:a6:1a:12:e2:03:
05:a5:2a:cb:24:55:c0:7e:31:44:15:2f:1d:00:13:
90:fc:d3:d0:d1:ee:27:d4:c1:5e:89:db:2e:a3:39:
1b:17:db:7e:7c:b3:c8:24:72:f2:99:49:ac:55:56:
b3:7f:0c:da:5e:47:ae:d3:12:05:39:22:c2:f6:4c:
d3:9e:24:48:c6:f6:84:5d:c4:7f:18:fa:ee:7d:ec:
f6:33:96:3b:8b:bd:40:76:19:2d:d2:f9:9b:a5:a6:
75:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1F:A3:A5:4C:CC:0A:37:21:EB:90:94:CC:3C:AD:C6:A0:00:A5:AB
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/xB-jpUzMCjch65CUzDytxqAApas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:e300::/40
Signature Algorithm: sha256WithRSAEncryption
79:5c:af:c8:70:6f:bd:d5:5f:ce:4b:9b:f6:82:d0:0a:e4:74:
36:ca:40:dc:63:12:ce:f9:af:55:13:16:2b:90:8c:65:03:01:
b8:62:b8:8f:e4:22:dc:67:b2:69:33:98:bf:e0:2f:a7:6f:19:
37:9e:9a:d3:a6:53:1f:b2:5d:61:dd:06:e1:91:3c:35:e6:50:
37:e9:5e:4f:eb:58:55:4c:f8:ae:6d:33:c5:e9:60:8f:8a:b4:
d0:9e:29:d3:7c:c6:9d:4f:73:18:84:0b:76:85:04:a7:ed:67:
68:47:64:31:86:ff:1a:f9:f4:0c:63:0b:95:16:3d:59:55:65:
4d:d9:87:89:43:3d:ab:23:4d:be:de:3d:37:87:04:84:52:c7:
53:a4:d6:8f:07:23:c1:90:ec:5a:3d:8e:29:71:67:57:bf:83:
78:db:58:dc:fb:6e:40:60:72:21:da:9b:1f:03:97:0d:6a:28:
58:52:7c:39:f8:4d:cf:dd:91:cf:39:ad:5d:71:f1:b4:7f:30:
55:f8:17:57:73:ac:6b:36:4c:81:37:ba:65:b7:b6:27:44:e8:
51:b4:85:dd:87:24:e4:e1:58:d3:8c:28:29:bc:4c:14:a0:85:
f7:8d:f5:e5:b4:c9:eb:40:bc:7f:28:4e:5a:86:37:4c:39:ff:
8c:1e:bc:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:26 2023 by rpki-client on console.sobornost.net