Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/y7lQyJeoLQJMrsozlU4w5DLT9YM.roa
File: y7lQyJeoLQJMrsozlU4w5DLT9YM.roa (raw, json)
Hash identifier: AIQyFr+aqc1bWZTyzvW/rgemDKZmkudwzHz4sZH+0F8=
Subject key identifier: CB:B9:50:C8:97:A8:2D:02:4C:AE:CA:33:95:4E:30:E4:32:D3:F5:83
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 150DC341
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/y7lQyJeoLQJMrsozlU4w5DLT9YM.roa
Signing time: Sat 01 Jan 2022 15:54:52 +0000
ROA not before: Sat 01 Jan 2022 15:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61352
IP address blocks: 2a02:101c::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353223489 (0x150dc341)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 1 15:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbb950c897a82d024caeca33954e30e432d3f583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e4:58:d2:e2:4e:c3:f6:35:1e:23:e6:96:a7:
f4:bd:bc:0d:3a:9c:42:76:fa:19:3a:d3:09:05:3d:
13:b7:c9:4d:13:af:e4:cd:7c:40:05:0a:26:ba:bc:
36:3a:bf:82:68:47:3b:f0:e0:fa:c5:cb:c0:5c:de:
29:1b:d7:c7:ef:7b:f8:f7:c4:64:a8:5f:a3:fc:a8:
c4:01:7f:87:30:34:e6:38:30:07:1c:7f:12:9a:9c:
db:dd:19:22:b7:59:e8:70:b7:22:a4:9b:45:12:40:
36:25:e2:57:4c:19:7c:c1:12:6d:63:05:1b:da:dd:
e8:91:86:fb:8d:6f:f3:ce:75:fc:0f:7f:7b:18:78:
95:72:1d:56:7a:0b:ab:69:f7:95:4e:b4:48:21:c0:
cf:b3:2d:33:c5:c4:e9:ed:6b:60:db:4d:1e:bb:71:
69:55:5c:13:8c:a0:a5:23:33:52:fd:0e:00:ac:c2:
eb:d5:eb:b3:59:37:89:d2:1f:05:6a:f0:e8:90:35:
f3:16:5d:e9:d5:1f:84:85:b6:da:15:eb:39:f3:cf:
66:78:51:63:53:26:49:2b:63:4a:d0:1c:fa:3a:00:
73:98:d7:c6:66:61:b8:d6:25:7e:b2:c1:df:54:2b:
b4:0a:ba:cd:ea:88:c9:a4:1d:54:0c:3a:83:10:19:
06:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B9:50:C8:97:A8:2D:02:4C:AE:CA:33:95:4E:30:E4:32:D3:F5:83
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/y7lQyJeoLQJMrsozlU4w5DLT9YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:101c::/32
Signature Algorithm: sha256WithRSAEncryption
b2:9a:58:35:19:9d:50:44:c9:f9:0b:ce:28:e9:98:c7:c8:20:
34:4b:35:fd:e0:66:a4:c9:b8:9f:55:35:02:6b:87:76:bd:38:
a8:73:66:93:b4:f1:a2:6b:31:46:6b:98:38:ba:9a:5e:2f:e6:
70:64:2f:f9:55:e6:28:2e:b5:a3:ca:f0:b1:e2:cd:cf:8b:0b:
86:be:2a:7e:3f:12:d0:70:a0:01:ab:b8:ef:a0:b8:75:77:f6:
15:b5:38:64:90:09:85:14:3c:b5:87:3f:10:40:8d:53:71:8b:
54:5a:55:b1:44:7b:da:e6:75:97:a4:e5:fd:7f:86:94:f1:d4:
c7:37:4d:b8:2a:41:a5:b2:f4:42:2b:6d:08:2e:f1:50:8d:91:
b4:08:fc:20:bc:31:53:f8:ac:c5:14:dc:ea:d3:a8:54:5c:79:
4f:74:5b:e8:1b:cd:5a:9d:25:9e:f8:79:48:53:1a:17:0f:43:
7b:6a:f9:ef:14:56:68:e2:92:80:4b:98:e7:22:45:0f:89:c9:
31:e3:d4:a3:30:57:e6:de:9b:79:aa:b4:07:97:2b:cd:a6:40:
9b:df:cc:4c:30:2d:c9:a1:2f:e1:b4:a7:70:c1:c5:37:6b:d0:
b5:80:c3:f4:0a:8a:c1:8b:3e:f8:84:3c:3d:ce:04:05:05:b4:
b5:7e:18:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org