Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/YBOx9UhkuLYgtwLZPJDSnn0xmvU.roa
File: YBOx9UhkuLYgtwLZPJDSnn0xmvU.roa (raw, json)
Hash identifier: NjZu8yHd19YlswcwenN/Tw/ZvyKSi6UljubISFNibJo=
Subject key identifier: 60:13:B1:F5:48:64:B8:B6:20:B7:02:D9:3C:90:D2:9E:7D:31:9A:F5
Certificate issuer: /CN=9dabc626ac264066b1c5c709a48477f3788361de
Certificate serial: 044935F0
Authority key identifier: 9D:AB:C6:26:AC:26:40:66:B1:C5:C7:09:A4:84:77:F3:78:83:61:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/navGJqwmQGaxxccJpIR383iDYd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/YBOx9UhkuLYgtwLZPJDSnn0xmvU.roa
Signing time: Sat 01 Jan 2022 04:02:40 +0000
ROA not before: Sat 01 Jan 2022 04:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212746
IP address blocks: 2001:678:c2c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71906800 (0x44935f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dabc626ac264066b1c5c709a48477f3788361de
Validity
Not Before: Jan 1 04:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6013b1f54864b8b620b702d93c90d29e7d319af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:da:23:d2:04:59:17:c7:58:c2:33:f9:9b:e4:
ee:ed:a7:ce:1c:e9:93:1b:32:c1:cf:c6:e4:57:b7:
ef:cf:75:42:f7:d1:79:cb:f1:8b:a1:41:68:64:42:
2f:17:4a:5d:46:61:0c:72:ff:cc:a5:5f:f9:ee:ef:
99:a5:37:49:e2:1e:bf:a1:17:5f:99:90:75:74:bb:
2c:7c:ca:5e:88:9e:35:13:8c:fd:db:91:f8:70:42:
be:5c:00:b5:59:67:d7:70:de:6e:62:ab:0e:6e:e2:
34:22:53:b5:8d:b8:07:8b:a6:9b:d7:5a:5b:b1:ad:
13:ab:3b:4f:53:15:22:41:f3:8c:ff:5e:b0:eb:c3:
c5:06:9d:82:35:dd:a5:f1:0d:cd:84:82:f9:0d:2a:
10:2d:e5:c2:1f:92:1b:ae:5b:8d:fd:9b:66:00:44:
5f:5d:74:8d:ae:8e:08:76:42:4a:32:4d:58:bc:94:
3b:65:05:88:39:c9:c5:f9:2c:23:de:3a:72:ec:d0:
ff:ce:d0:1f:b9:fa:36:36:e0:d1:b9:ce:11:51:16:
85:49:36:2c:af:b9:cb:ee:01:38:d3:b6:6a:a6:e3:
e1:de:44:6f:bf:6a:f8:b0:c5:7a:1b:da:71:e4:53:
e8:d8:ba:6e:4e:f0:bb:7b:7a:87:22:f3:08:ac:7a:
31:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:13:B1:F5:48:64:B8:B6:20:B7:02:D9:3C:90:D2:9E:7D:31:9A:F5
X509v3 Authority Key Identifier:
keyid:9D:AB:C6:26:AC:26:40:66:B1:C5:C7:09:A4:84:77:F3:78:83:61:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/navGJqwmQGaxxccJpIR383iDYd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/YBOx9UhkuLYgtwLZPJDSnn0xmvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/navGJqwmQGaxxccJpIR383iDYd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c2c::/48
Signature Algorithm: sha256WithRSAEncryption
0e:03:49:4c:93:4a:27:5c:e5:f7:fb:57:9c:50:34:bb:74:2a:
1c:d5:7d:04:6a:b7:1e:0a:9a:54:8a:31:ea:20:ff:c9:58:26:
83:22:73:d9:c1:be:ad:55:fc:67:4e:3a:3f:0b:57:10:87:e8:
ca:76:95:77:fd:32:69:7b:38:1f:47:54:67:1e:4d:5c:36:3d:
6d:74:f2:47:bb:d9:10:3c:f2:5c:32:22:f9:f5:2f:39:67:28:
17:a0:94:72:fe:75:9d:4b:2a:10:b8:51:ac:09:4a:41:77:e7:
5e:b2:43:67:f5:4a:b1:1c:4a:f6:b0:a8:8f:7e:30:bf:0c:6b:
83:36:6b:b3:6a:c9:7c:6e:10:3a:d9:09:02:0f:cc:8c:47:e7:
b7:31:05:fe:69:8e:be:9d:ee:e3:19:d6:0c:62:9a:8a:10:da:
8e:fe:1c:6a:e4:03:6e:03:d0:17:fa:75:06:13:a4:a6:bb:93:
a3:84:37:d8:9d:8b:be:0d:32:8e:b5:8a:f0:c0:c3:4c:06:7c:
a9:4c:79:7a:e0:8b:ab:11:c3:05:5e:bb:6b:23:57:60:db:0c:
4b:97:33:52:ef:fb:39:92:16:03:0d:30:ad:89:3a:fb:18:0e:
35:fe:f2:ad:00:61:70:da:d3:b9:83:4d:25:c9:20:ca:9a:72:
27:58:25:cc
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBEk18DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZGFiYzYyNmFjMjY0MDY2YjFjNWM3MDlhNDg0NzdmMzc4ODM2MWRlMB4XDTIyMDEw
MTA0MDI0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjAxM2IxZjU0ODY0
YjhiNjIwYjcwMmQ5M2M5MGQyOWU3ZDMxOWFmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ/aI9IEWRfHWMIz+Zvk7u2nzhzpkxsywc/G5Fe37891QvfR
ecvxi6FBaGRCLxdKXUZhDHL/zKVf+e7vmaU3SeIev6EXX5mQdXS7LHzKXoieNROM
/duR+HBCvlwAtVln13DebmKrDm7iNCJTtY24B4umm9daW7GtE6s7T1MVIkHzjP9e
sOvDxQadgjXdpfENzYSC+Q0qEC3lwh+SG65bjf2bZgBEX110ja6OCHZCSjJNWLyU
O2UFiDnJxfksI946cuzQ/87QH7n6Njbg0bnOEVEWhUk2LK+5y+4BONO2aqbj4d5E
b79q+LDFehvaceRT6Ni6bk7wu3t6hyLzCKx6MS8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRgE7H1SGS4tiC3Atk8kNKefTGa9TAfBgNVHSMEGDAWgBSdq8YmrCZAZrHF
xwmkhHfzeINh3jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25hdkdKcXdtUUdheHhjY0pwSVIzODNpRFlkNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDcvMTliMDA4LWI2ZjktNDI3MS1iMTMwLTBiN2UzOGExMjJmZS8x
L1lCT3g5VWhrdUxZZ3R3TFpQSkRTbm4weG12VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcv
MTliMDA4LWI2ZjktNDI3MS1iMTMwLTBiN2UzOGExMjJmZS8xL25hdkdKcXdtUUdh
eHhjY0pwSVIzODNpRFlkNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngMLDANBgkqhkiG9w0BAQsF
AAOCAQEADgNJTJNKJ1zl9/tXnFA0u3QqHNV9BGq3HgqaVIox6iD/yVgmgyJz2cG+
rVX8Z046PwtXEIfoynaVd/0yaXs4H0dUZx5NXDY9bXTyR7vZEDzyXDIi+fUvOWco
F6CUcv51nUsqELhRrAlKQXfnXrJDZ/VKsRxK9rCoj34wvwxrgzZrs2rJfG4QOtkJ
Ag/MjEfntzEF/mmOvp3u4xnWDGKaihDajv4cauQDbgPQF/p1BhOkpruTo4Q32J2L
vg0yjrWK8MDDTAZ8qUx5euCLqxHDBV67ayNXYNsMS5czUu/7OZIWAw0wrYk6+xgO
Nf7yrQBhcNrTuYNNJckgyppyJ1glzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org