Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/TYgyM4_ME74OYdh4VNszv5FRwpk.roa
File: TYgyM4_ME74OYdh4VNszv5FRwpk.roa (raw, json)
Hash identifier: 3dUtvlTAYob8/auRVwA9JJI7mbNr2rR/xxTFlpLa7OA=
Subject key identifier: 4D:88:32:33:8F:CC:13:BE:0E:61:D8:78:54:DB:33:BF:91:51:C2:99
Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Certificate serial: 01827DA771943FCAD525D0E387AA0E7EC42A
Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/TYgyM4_ME74OYdh4VNszv5FRwpk.roa
Signing time: Mon 08 Aug 2022 13:31:41 +0000
ROA not before: Mon 08 Aug 2022 13:31:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61977
IP address blocks: 2a13:1500::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7d:a7:71:94:3f:ca:d5:25:d0:e3:87:aa:0e:7e:c4:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Validity
Not Before: Aug 8 13:31:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d8832338fcc13be0e61d87854db33bf9151c299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:65:95:25:fb:15:0a:95:ef:aa:85:d4:46:4b:
63:83:9a:6f:06:9d:1a:6e:0d:f2:b1:d8:55:17:53:
24:04:3a:3b:67:45:ae:b0:6f:d6:8e:78:e4:ef:f2:
d8:ba:ce:13:fa:54:7b:82:7a:99:d7:82:1c:e2:3f:
4d:ec:b8:2d:5b:0e:6c:0a:24:ac:eb:40:9d:00:2a:
5a:6a:4e:af:a6:1f:a3:83:e0:a6:d1:b8:92:01:29:
cf:89:ef:bd:87:e2:4e:19:8a:99:1e:b9:8a:45:84:
0d:81:c8:01:fc:7f:2a:d6:44:ac:75:f4:ad:b3:7d:
37:45:ff:09:41:7d:88:00:fb:b2:8f:2f:1d:67:3d:
cc:29:ff:da:a6:37:e4:1d:aa:f5:5d:0c:e4:fc:e5:
82:02:91:98:0f:d9:47:64:eb:72:6b:de:83:fb:03:
91:21:dd:67:ee:c9:ef:b5:b5:44:8f:ec:43:8c:d9:
64:5c:c5:65:a2:31:a0:08:d9:87:6b:2a:10:f6:b1:
a1:b5:a8:be:73:13:26:da:4a:f6:9c:ac:26:d3:bf:
85:21:fe:bb:ad:79:8e:f2:de:c5:37:12:39:b9:ec:
8c:2c:35:6f:c2:2a:c2:ab:e8:04:59:56:db:17:ac:
99:4e:53:7a:e1:2c:28:9d:a9:18:38:94:6d:93:9d:
ad:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:88:32:33:8F:CC:13:BE:0E:61:D8:78:54:DB:33:BF:91:51:C2:99
X509v3 Authority Key Identifier:
keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/TYgyM4_ME74OYdh4VNszv5FRwpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1500::/29
Signature Algorithm: sha256WithRSAEncryption
06:52:7d:26:ec:0c:36:02:ff:a7:ac:bb:21:40:e5:70:26:28:
23:e9:52:ef:78:5d:72:36:cd:67:7a:b8:6e:a8:d9:e4:c0:49:
ff:c7:fe:4b:a4:4f:02:9c:b1:37:a6:ee:ac:99:c6:51:72:e7:
4b:26:f0:63:54:50:fc:f9:f4:c4:e3:a2:ff:67:05:bd:75:1c:
50:f4:3e:8e:df:25:77:f4:f9:1c:3b:5f:2c:51:60:65:e4:ab:
23:11:90:91:8b:72:65:c5:88:a3:07:99:1a:55:b3:8c:7f:f0:
9b:6e:0a:e4:0b:ca:1a:5a:fe:ed:d9:ab:8a:de:89:2f:ec:5b:
11:d4:1c:ee:30:a3:ef:8a:16:86:c7:04:fa:b3:a8:4a:95:6b:
8a:05:53:87:62:11:fa:c9:20:37:95:58:9e:d1:2c:8c:20:fb:
70:58:5e:05:e4:8e:24:77:eb:0b:f2:5c:27:b6:a1:8a:cf:bc:
f8:5d:7f:69:3d:7b:ad:2b:fa:72:40:55:d6:42:60:02:63:76:
a4:cc:32:2b:aa:5b:d1:07:03:db:7d:26:e4:88:ba:1a:61:55:
dc:78:12:51:04:fe:af:99:dc:c0:d2:d0:45:c6:1c:ca:bb:15:
94:1a:21:e1:3f:63:93:c0:4f:8a:3a:00:e3:e1:c5:29:c9:b0:
10:31:2a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org