Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/LKC0CV85VzmfonaYJ2cDesy8mI8.roa
File: LKC0CV85VzmfonaYJ2cDesy8mI8.roa (raw, json)
Hash identifier: tL7byXt75ehP5541lqcBwEPQW7azRgCTbafLLqrzKkg=
Subject key identifier: 2C:A0:B4:09:5F:39:57:39:9F:A2:76:98:27:67:03:7A:CC:BC:98:8F
Certificate issuer: /CN=a5a56ebf01e00349f673019180560c9a31aea871
Certificate serial: 01838092CFFD08ECE0803E72B8C77567D7B8
Authority key identifier: A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/LKC0CV85VzmfonaYJ2cDesy8mI8.roa
Signing time: Tue 27 Sep 2022 20:10:48 +0000
ROA not before: Tue 27 Sep 2022 20:10:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44445
IP address blocks: 2a12:c6c0::/29 maxlen: 64
2a12:c6c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:80:92:cf:fd:08:ec:e0:80:3e:72:b8:c7:75:67:d7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a56ebf01e00349f673019180560c9a31aea871
Validity
Not Before: Sep 27 20:10:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ca0b4095f3957399fa276982767037accbc988f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d3:9a:3b:b7:21:ba:7a:4b:a4:72:91:bf:7e:
c8:78:5c:81:c1:55:da:d8:ea:3c:50:79:27:84:24:
5a:be:82:88:e0:2f:9f:f1:ff:49:f9:b5:47:f9:6e:
a2:32:3e:f1:7e:86:a9:f8:de:76:e7:02:67:2d:30:
49:80:c9:79:1e:36:47:e7:f5:db:8b:3b:9a:46:3b:
17:da:4f:35:c7:b8:54:39:d1:ec:96:f2:c7:50:9c:
50:83:cf:1c:6d:36:20:15:20:05:1c:b8:a8:9c:41:
5f:ca:ef:2e:b7:4a:f6:61:3d:29:bb:de:b5:93:2d:
27:46:0e:bb:18:bc:36:96:92:54:51:6d:26:bc:3f:
0b:54:72:a6:0f:b5:9a:73:e4:99:61:30:00:c7:62:
b6:93:32:99:df:97:08:99:6d:9a:21:04:48:73:8e:
b9:0c:1f:7a:df:a3:b2:18:f5:83:58:29:10:a7:19:
e6:6d:38:7f:72:60:94:ba:7f:c0:f1:f5:56:a7:cb:
44:02:e8:f2:bc:d4:d4:51:a0:ed:48:09:60:ab:6c:
6c:da:14:d1:ef:60:77:4c:7b:ac:48:61:fd:34:48:
14:15:b3:98:fb:42:44:5f:11:f9:a6:6f:31:8c:17:
2d:82:44:c2:33:21:79:1e:e3:c9:9b:e0:23:d8:c6:
dd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A0:B4:09:5F:39:57:39:9F:A2:76:98:27:67:03:7A:CC:BC:98:8F
X509v3 Authority Key Identifier:
keyid:A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/LKC0CV85VzmfonaYJ2cDesy8mI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/paVuvwHgA0n2cwGRgFYMmjGuqHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:c6c0::/29
Signature Algorithm: sha256WithRSAEncryption
4b:8d:e4:62:bb:8b:9c:62:7a:cd:42:d0:e7:0f:d4:2d:d6:f7:
3b:ab:59:c8:c3:6d:61:13:9a:4e:57:cb:68:2d:25:d5:24:bf:
7d:84:96:6f:c6:8e:02:20:ca:ff:44:41:3b:d3:16:04:92:05:
ef:33:a5:7d:9b:20:b3:2d:ef:2f:02:5e:7a:21:45:11:0e:66:
f4:9a:aa:37:17:ac:99:19:64:a2:43:12:19:85:0a:42:a3:6a:
7d:c6:47:42:db:99:4d:c8:2e:09:2c:5d:5d:95:fb:3d:d2:16:
88:c6:dd:cd:cc:47:cf:69:a3:e4:7e:30:89:8d:19:07:8d:2f:
50:83:3b:fd:63:eb:2b:f4:77:e4:7c:49:77:ac:d6:69:71:e4:
83:d2:be:25:9b:6c:45:dd:20:11:e1:6e:3d:0a:7c:3a:b4:2b:
90:62:c2:a7:eb:30:c8:b4:ad:69:e0:70:d6:c3:a4:e9:37:c1:
68:76:f4:2c:ce:d9:ed:66:7b:4f:75:a5:1b:3f:97:a3:b4:3d:
ff:e8:43:64:4c:fb:4b:16:94:e9:b7:b0:29:7b:64:95:0c:ef:
5b:7c:25:ec:a8:f8:f8:64:5a:9c:76:c8:61:43:52:65:50:f6:
ae:e4:aa:c0:90:96:79:3e:9d:84:3b:84:09:3d:fc:d9:ed:29:
b3:fa:b1:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net