Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/YvgVFxAadFTKeJ62lQMs_-pHv_w.roa
File: YvgVFxAadFTKeJ62lQMs_-pHv_w.roa (raw, json)
Hash identifier: kQZjM/I5PqRZPzGwefuKeJvOCryR2ON569rWGoKT1us=
Subject key identifier: 62:F8:15:17:10:1A:74:54:CA:78:9E:B6:95:03:2C:FF:EA:47:BF:FC
Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Certificate serial: 0633A23F
Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/YvgVFxAadFTKeJ62lQMs_-pHv_w.roa
Signing time: Mon 10 Jan 2022 13:13:00 +0000
ROA not before: Mon 10 Jan 2022 13:13:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207518
IP address blocks: 2a09:d2c1:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104047167 (0x633a23f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Validity
Not Before: Jan 10 13:13:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62f81517101a7454ca789eb695032cffea47bffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d1:97:0d:c4:e9:54:93:a1:7a:a5:fa:ca:ef:
4b:ea:a9:9f:0e:4a:e7:b0:1e:ad:d1:bf:f7:28:72:
da:dc:f4:2e:e8:89:ae:9a:d9:57:c7:94:c5:6f:9f:
c9:83:fa:ed:9a:0f:66:b2:b5:fd:f3:3c:91:47:bd:
5c:48:1f:5d:89:ba:42:89:c0:90:22:4d:1d:02:fa:
d1:0b:eb:2b:35:7c:e6:42:2f:3c:78:69:75:de:78:
3a:42:5b:0d:5a:c7:07:d0:f7:30:e4:b1:5a:c0:ef:
b6:6d:1e:4e:6f:29:06:f9:0b:e1:03:46:ef:57:6f:
81:a2:6a:e3:03:bf:d7:46:9c:d2:81:5d:fa:76:5f:
84:3b:b1:f5:4c:db:db:f0:4d:cf:62:70:dd:ea:c1:
39:d9:d3:60:5b:10:8b:03:a8:c6:16:f6:d9:6d:ea:
90:07:1e:3a:0d:df:b9:40:55:0d:b0:25:99:7b:b2:
00:2a:ee:53:42:2f:56:d1:27:12:19:48:8c:52:96:
e6:46:b0:a6:2e:18:61:0d:97:41:b0:d8:4c:d6:07:
53:32:67:ba:f6:cc:3e:9e:9b:60:1a:a0:b3:aa:8d:
85:55:60:fb:9b:3e:5a:76:2d:b4:37:a5:ff:4a:33:
2d:e1:1e:5e:79:45:42:2a:86:55:f5:8c:82:94:c5:
43:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F8:15:17:10:1A:74:54:CA:78:9E:B6:95:03:2C:FF:EA:47:BF:FC
X509v3 Authority Key Identifier:
keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/YvgVFxAadFTKeJ62lQMs_-pHv_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:d2c1:4::/48
Signature Algorithm: sha256WithRSAEncryption
83:5f:30:ec:ec:21:79:14:24:6d:3a:69:2b:7b:1e:ae:90:47:
88:bb:e2:55:83:01:7d:e2:4e:b4:79:15:23:5f:9a:13:ee:c0:
b8:43:87:8a:66:ac:c6:26:68:87:0c:c2:1f:8e:0a:c5:c0:db:
fd:16:28:88:48:76:47:e0:34:7e:21:f1:53:15:73:b2:01:f0:
34:ba:6f:d8:27:27:c2:5e:e6:c9:e3:da:da:dc:15:d8:26:8a:
58:77:ee:6b:dc:68:3b:e3:b1:eb:4b:b3:c2:48:0c:da:df:67:
bb:5f:dc:31:80:64:42:de:7c:d5:09:27:98:55:5c:be:9c:ff:
82:1e:41:7f:ee:56:be:13:cf:05:10:d5:20:09:3f:5b:f8:68:
d3:6f:3e:02:46:e3:e7:08:42:44:21:b3:45:64:f7:a9:cb:c0:
c2:ad:28:d1:96:5b:a6:fe:f8:99:78:36:a5:cf:1e:14:8f:95:
f0:f3:97:21:3c:01:fe:dd:da:15:d4:51:93:5b:25:b7:f0:d7:
f7:6d:e3:b3:1c:94:41:48:af:ed:02:2a:ae:d2:82:40:8b:15:
a7:39:ec:44:77:cd:d4:9d:20:fa:3c:4a:69:9f:d5:b0:7c:34:
48:e9:88:f8:b5:39:d5:70:a6:f0:d0:f5:91:2b:13:6c:61:c3:
31:eb:90:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org