Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/_KC2bOjVr9_mycl6fTy7JRtBJXU.roa
File: _KC2bOjVr9_mycl6fTy7JRtBJXU.roa (raw, json)
Hash identifier: RO8bC7Hr2dd3RwFGc80OcVxQf2fuaoYbIDs4x4BRHaw=
Subject key identifier: FC:A0:B6:6C:E8:D5:AF:DF:E6:C9:C9:7A:7D:3C:BB:25:1B:41:25:75
Certificate issuer: /CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Certificate serial: 0181DAD0806FB271CF649272DE474620D9D2
Authority key identifier: 45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/_KC2bOjVr9_mycl6fTy7JRtBJXU.roa
Signing time: Thu 07 Jul 2022 22:38:26 +0000
ROA not before: Thu 07 Jul 2022 22:38:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 701
IP address blocks: 2a12:be80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:da:d0:80:6f:b2:71:cf:64:92:72:de:47:46:20:d9:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Validity
Not Before: Jul 7 22:38:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fca0b66ce8d5afdfe6c9c97a7d3cbb251b412575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:35:c6:bb:61:52:e1:8a:78:39:8b:04:f0:b3:
ee:08:1e:11:3f:e8:ce:c5:20:9e:c4:23:24:09:0f:
7a:8c:33:c7:df:e5:9c:2a:99:d2:53:ae:26:16:6f:
0d:f0:df:93:4b:4e:2e:b7:c4:48:6e:fc:3a:e8:ce:
fd:25:6a:73:1a:18:3d:16:fc:6d:ba:9c:c6:79:25:
87:8e:ce:7e:fb:bc:6e:b1:d8:91:1d:1c:b8:17:fc:
c7:7a:78:5c:20:ce:24:7f:8b:d7:c5:56:c9:8d:88:
ab:e8:16:36:15:6f:2b:94:87:9e:de:62:9b:c8:18:
8d:6f:85:10:2d:ab:18:ea:fa:a8:8f:c9:75:f3:54:
6d:06:95:e7:f1:81:0e:c3:c2:0e:4d:41:39:21:22:
b4:61:ef:31:0e:b8:84:da:d9:83:78:a2:7b:67:60:
46:cd:40:9f:7f:62:c6:2e:71:14:ad:cc:f2:f3:34:
fc:99:9b:83:63:31:eb:04:5a:d9:89:9b:c7:72:0b:
a0:35:5a:86:a5:0d:aa:d3:dc:f8:73:48:bd:e3:5e:
e7:fd:d1:9d:61:30:7d:6f:07:ff:64:80:a8:01:8f:
d4:14:d6:c8:cd:4b:f8:ce:a1:db:25:2c:0f:84:74:
f6:a2:d3:64:e6:bb:97:a3:67:a4:1a:4f:10:8f:14:
7c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A0:B6:6C:E8:D5:AF:DF:E6:C9:C9:7A:7D:3C:BB:25:1B:41:25:75
X509v3 Authority Key Identifier:
keyid:45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/_KC2bOjVr9_mycl6fTy7JRtBJXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/Ra_g1zQZ-KreZdLHEVwBQgRyulw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:be80::/29
Signature Algorithm: sha256WithRSAEncryption
41:84:ae:6c:ca:11:dd:40:63:94:3c:eb:68:3b:a6:11:04:f1:
be:79:17:46:6b:59:bd:6b:57:f7:2e:88:2a:cb:23:2c:97:ec:
43:be:fd:6d:67:30:7d:e9:79:1a:7e:4e:6e:7d:9a:4d:6c:d3:
42:7e:2d:21:cb:86:cd:7b:fa:4d:f5:ec:59:78:c9:c4:2f:74:
33:11:32:ce:11:4a:20:4d:19:a8:0c:50:5e:2f:7a:48:8e:d3:
fa:73:bb:f2:f1:57:da:62:5b:a2:3c:2d:cc:3d:7f:63:4f:46:
63:1d:84:d8:7b:da:60:74:96:08:81:93:08:1d:10:d0:fd:12:
f9:20:aa:5f:b1:49:3f:a4:39:83:1f:db:a0:98:a4:16:0e:59:
0c:fa:5a:a2:b9:81:ae:f2:f3:44:31:99:66:43:ac:2d:fb:5d:
46:a0:57:44:11:d0:39:22:05:28:b4:9d:20:98:d6:9a:6f:88:
24:91:27:35:63:7d:d9:3e:90:ba:0c:73:aa:42:3a:4c:38:67:
fb:39:06:39:f4:0c:52:a2:6b:a4:1e:2f:7a:be:03:f4:35:40:
19:1a:50:07:a1:66:03:35:f2:f7:84:68:87:23:34:25:02:11:
5e:e8:53:0b:86:89:64:55:0e:e4:2b:62:aa:f7:2a:43:35:c6:
9e:67:63:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net