Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/tR121PrJyYpodzsrteObGWzFzyg.roa
File: tR121PrJyYpodzsrteObGWzFzyg.roa (raw, json)
Hash identifier: twSlY1b93okVXgGiEioBFy6+3bWYCvvolfsRGSAmQ40=
Subject key identifier: B5:1D:76:D4:FA:C9:C9:8A:68:77:3B:2B:B5:E3:9B:19:6C:C5:CF:28
Certificate issuer: /CN=0bdaba873ee18be547bd935943c0798ddcf70935
Certificate serial: 4469E6
Authority key identifier: 0B:DA:BA:87:3E:E1:8B:E5:47:BD:93:59:43:C0:79:8D:DC:F7:09:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C9q6hz7hi-VHvZNZQ8B5jdz3CTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/tR121PrJyYpodzsrteObGWzFzyg.roa
Signing time: Sat 01 Jan 2022 00:52:43 +0000
ROA not before: Sat 01 Jan 2022 00:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210298
IP address blocks: 2a12:e683::/32 maxlen: 32
2a12:e682::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4483558 (0x4469e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bdaba873ee18be547bd935943c0798ddcf70935
Validity
Not Before: Jan 1 00:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b51d76d4fac9c98a68773b2bb5e39b196cc5cf28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:09:41:95:f7:42:2b:db:0a:aa:2d:54:53:57:
a7:f3:1b:a8:5a:95:d2:91:6b:f2:f0:e4:7a:24:b6:
74:3d:ee:d7:a1:27:e0:46:28:46:91:8f:ad:cd:4a:
86:46:88:2c:81:5d:43:8d:51:6d:4d:99:da:c2:99:
c0:2d:24:2d:29:44:0b:f2:50:78:fc:b6:94:1a:a3:
85:45:1e:0e:8e:73:f4:4e:99:8c:ef:32:9b:8d:1b:
7a:66:8f:04:06:ec:86:2f:3c:1e:47:26:cd:ca:6a:
16:a6:4a:8b:69:b6:62:65:96:b8:89:85:39:3f:fd:
a6:7c:77:8b:61:9b:3a:95:8d:a3:1f:0c:5b:a9:60:
5b:17:40:97:b1:8c:7a:aa:26:ed:05:9d:62:87:89:
35:ee:7c:de:3f:9e:16:6f:32:fa:6b:a3:2d:22:91:
44:bd:2c:33:43:eb:21:b4:ad:85:ac:58:c9:18:ab:
d8:8e:ca:c5:a1:16:e0:88:d6:bf:de:8c:75:be:87:
79:3a:b7:ec:db:f1:bf:14:5d:16:eb:61:d6:10:4d:
b3:4d:3a:2d:a4:5c:73:72:eb:a8:62:dd:f2:69:4b:
8d:86:0e:cb:e3:14:ac:26:d0:0c:a5:98:86:aa:73:
65:96:82:28:3a:0b:40:8c:e2:44:b2:09:c4:f8:29:
49:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1D:76:D4:FA:C9:C9:8A:68:77:3B:2B:B5:E3:9B:19:6C:C5:CF:28
X509v3 Authority Key Identifier:
keyid:0B:DA:BA:87:3E:E1:8B:E5:47:BD:93:59:43:C0:79:8D:DC:F7:09:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C9q6hz7hi-VHvZNZQ8B5jdz3CTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/tR121PrJyYpodzsrteObGWzFzyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/C9q6hz7hi-VHvZNZQ8B5jdz3CTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e682::/31
Signature Algorithm: sha256WithRSAEncryption
6e:55:6f:a2:a6:d5:60:74:08:1e:90:eb:26:86:a6:4c:c1:fc:
e1:c9:03:cc:65:24:21:b9:9e:d1:d6:0d:3c:43:1e:75:c6:4f:
a7:d1:44:48:0c:44:4b:42:65:ea:27:0d:78:39:35:a0:11:9e:
7f:49:7d:86:23:29:09:2f:7d:3d:e8:be:ac:f7:65:55:08:60:
88:35:41:38:07:16:3a:bc:0e:b9:0b:fd:9e:d5:6a:30:b0:58:
31:d2:50:18:b5:aa:61:7d:6e:30:41:66:77:37:40:3b:04:ed:
03:fd:7e:8b:b4:b7:6b:21:6e:65:0f:7e:5f:62:34:e8:d3:9d:
2c:97:d1:72:cd:d8:8b:94:cc:72:f6:99:f3:3c:bc:d0:89:de:
b1:8a:d6:4d:ba:3a:ed:81:23:b0:f3:05:70:65:5e:46:fe:df:
01:ce:09:5a:7e:13:da:e3:27:5a:71:fa:89:50:74:13:a3:32:
e8:7b:7a:72:23:c2:c6:2b:4d:ca:eb:b2:a5:2b:96:06:58:96:
b8:f8:3f:27:a2:43:48:43:d1:e5:49:a4:50:c4:7a:03:c7:50:
52:04:27:8f:65:30:66:79:93:92:d5:ba:c1:80:83:cb:aa:e5:
c5:8a:d1:06:9c:9c:9f:21:2e:90:f7:24:9f:db:18:db:81:65:
3f:df:75:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:54 2023 by rpki-client on console.sobornost.net