Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/rYbY-e-23iQvlZgD7uF9x9DPJ80.roa
File: rYbY-e-23iQvlZgD7uF9x9DPJ80.roa (raw, json)
Hash identifier: Q3UPyUjL4nvL6uMAD0pQ7y6hL390YgRtxsW9kqVl8wY=
Subject key identifier: AD:86:D8:F9:EF:B6:DE:24:2F:95:98:03:EE:E1:7D:C7:D0:CF:27:CD
Certificate issuer: /CN=325a8b688deadbb91efbe0772308bac9f304a533
Certificate serial: 0181EEE4EFBE10CD2DD24FD280872D898CAE
Authority key identifier: 32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/rYbY-e-23iQvlZgD7uF9x9DPJ80.roa
Signing time: Mon 11 Jul 2022 20:13:09 +0000
ROA not before: Mon 11 Jul 2022 20:13:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204901
IP address blocks: 2a0b:6647::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ee:e4:ef:be:10:cd:2d:d2:4f:d2:80:87:2d:89:8c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=325a8b688deadbb91efbe0772308bac9f304a533
Validity
Not Before: Jul 11 20:13:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad86d8f9efb6de242f959803eee17dc7d0cf27cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5e:5e:31:21:48:fa:08:fb:85:ae:dc:4f:fb:
68:3b:c9:da:b9:34:e2:16:df:67:81:f6:51:72:13:
e7:8f:bb:24:a5:9e:0c:7c:6a:af:30:51:9d:7c:8c:
77:fd:16:dd:5d:04:a4:4c:ef:40:8a:1d:94:33:c5:
04:4b:89:a8:53:21:a2:eb:b4:65:59:36:05:35:13:
12:f6:25:4f:7b:81:cf:d4:1b:58:29:99:df:7d:ec:
11:4a:83:40:00:ba:0e:96:84:f8:8a:ea:2e:d9:49:
57:f7:a3:a5:7c:fd:83:e2:39:99:c5:92:e9:25:71:
c6:c1:d5:a6:6e:68:d6:a7:79:85:6d:a5:6d:16:12:
9f:2c:c1:2f:98:8f:5c:bf:ce:a0:d7:37:c1:ab:46:
e1:a5:05:60:30:75:e8:eb:e6:36:41:ae:7f:5a:9b:
61:c8:f1:eb:6b:75:3d:75:fa:65:01:b7:53:42:bd:
43:c1:41:26:52:b8:49:03:89:da:f1:1c:2e:c2:f3:
68:85:91:9a:a2:1c:cd:12:62:b5:36:f1:e9:ba:d5:
a4:9e:1e:87:46:1c:da:89:63:86:d8:72:09:64:f6:
6e:ac:6b:96:5e:a6:02:13:9a:cc:7d:ce:28:c3:d6:
28:61:9c:c2:55:de:ab:d5:67:7e:6e:65:f1:50:6f:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:86:D8:F9:EF:B6:DE:24:2F:95:98:03:EE:E1:7D:C7:D0:CF:27:CD
X509v3 Authority Key Identifier:
keyid:32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/rYbY-e-23iQvlZgD7uF9x9DPJ80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/MlqLaI3q27ke--B3Iwi6yfMEpTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6647::/40
Signature Algorithm: sha256WithRSAEncryption
78:90:ef:fb:25:2e:3d:e6:e0:36:f0:f7:bc:b9:c0:5f:68:00:
ef:9b:10:59:e6:0e:06:44:ee:0f:4d:4e:b6:35:a2:e3:0a:a8:
22:af:4c:29:3d:c5:cc:7c:c2:2c:58:98:87:9f:3b:04:89:ab:
01:9f:b0:50:c7:17:ea:e7:4f:61:fb:a5:84:d0:df:4d:c7:2b:
ff:50:94:3a:28:30:e2:07:b0:a1:83:05:d6:d7:84:95:af:ed:
ff:89:54:ec:ea:54:fe:70:d3:1f:17:57:fc:2d:5e:5c:e8:42:
f3:1c:2d:0c:4a:04:41:f4:1d:7d:09:30:b1:89:13:57:87:67:
d1:8a:0c:d9:dd:06:0e:11:74:87:74:b8:2e:9f:54:c0:3c:2e:
d4:51:10:66:30:39:af:15:e6:c1:a5:eb:80:c5:15:3b:7a:27:
cf:16:37:f5:4a:59:21:1f:48:f4:79:b8:2f:b9:8b:40:f1:bf:
5f:59:3b:5a:5b:56:62:0f:b4:52:c3:e4:fd:27:33:e3:70:7e:
d4:01:d6:29:a8:77:56:7b:6b:5f:4d:cb:dd:6a:1e:b8:be:1c:
1d:da:76:24:cd:3e:d0:92:4b:01:e6:de:ca:16:60:90:ff:e7:
da:e9:52:9b:9f:07:b0:50:f9:e0:2a:21:be:22:60:ab:45:b8:
f4:5f:bd:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:23 2024 by rpki-client on console-fra.rpki-client.org