Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/YaBiIMLkS1rvuOwIxHXNg7IhPv8.roa
File: YaBiIMLkS1rvuOwIxHXNg7IhPv8.roa (raw, json)
Hash identifier: 8f3jlLlHc0hP89TOpr61rIWiJawnD7Bvz6unKa1lw9I=
Subject key identifier: 61:A0:62:20:C2:E4:4B:5A:EF:B8:EC:08:C4:75:CD:83:B2:21:3E:FF
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0B671197
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/YaBiIMLkS1rvuOwIxHXNg7IhPv8.roa
Signing time: Sat 28 May 2022 19:19:14 +0000
ROA not before: Sat 28 May 2022 19:19:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0d:2146:848a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191304087 (0xb671197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: May 28 19:19:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61a06220c2e44b5aefb8ec08c475cd83b2213eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d5:e2:a1:6b:ba:1b:ee:8e:f2:bb:91:4a:aa:
ca:cd:94:83:28:57:d6:a9:2e:04:a4:cb:a3:6b:f7:
41:ff:69:6b:35:5f:ea:50:e6:37:fc:f1:17:58:06:
50:cf:5d:78:a8:a1:53:bc:8c:b5:c6:e6:42:8a:d3:
e1:46:0e:2e:24:26:ae:ab:72:cf:27:47:0b:b7:43:
9a:05:0d:ad:9a:16:76:49:0b:4e:5a:59:20:79:f5:
c3:38:72:55:20:ae:b3:4f:84:e2:24:84:a7:64:c0:
0e:11:02:bd:5e:5a:1d:9c:3b:bc:42:a5:76:c8:be:
c3:3b:49:80:b3:78:06:2c:d6:c1:98:1b:cb:06:38:
99:0d:58:a8:77:3a:22:3e:c1:70:c7:2b:b4:f2:d5:
c4:1a:72:32:38:1d:62:e7:1a:19:a1:ac:8c:0a:3f:
1f:37:0f:d0:d5:24:bf:4f:98:bb:93:9c:ac:6a:e7:
3d:36:40:ce:3d:87:5f:fd:63:60:a5:67:d3:10:82:
13:e2:9b:46:95:92:21:69:e9:18:b3:70:79:da:e0:
aa:9b:a3:64:ba:d3:30:90:83:e1:41:ca:30:50:4f:
aa:5d:b6:33:36:a0:d5:e3:e7:da:9a:94:ab:a6:26:
b7:b7:ba:ca:a0:5d:81:24:e1:59:58:e5:a8:72:e1:
e9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A0:62:20:C2:E4:4B:5A:EF:B8:EC:08:C4:75:CD:83:B2:21:3E:FF
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/YaBiIMLkS1rvuOwIxHXNg7IhPv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:848a::/48
Signature Algorithm: sha256WithRSAEncryption
72:ae:ec:d6:23:b6:ab:69:5f:93:9f:85:1a:a8:4f:65:b5:b7:
a5:1d:ba:68:64:17:d8:3b:74:c5:65:c4:cf:40:2e:a7:37:9d:
34:da:81:84:5a:8c:4b:5b:13:cb:15:ee:e3:e0:76:d3:4f:05:
18:ca:0d:d9:cb:e0:0a:bc:04:7d:fa:e0:11:c3:c1:40:b0:98:
e0:8e:d6:c5:09:2f:ec:a1:cf:67:6e:b7:3d:b6:1a:80:c4:1a:
ea:68:65:2c:8a:a8:49:7d:ab:04:09:e8:bb:ab:f6:f6:04:8c:
39:ec:ba:d1:7a:81:da:61:37:eb:0f:22:3a:02:84:83:c5:5c:
e4:bb:2f:57:07:46:ef:dc:12:e6:dc:d2:b8:6e:5e:40:56:ab:
1b:bc:71:8d:24:eb:53:68:e1:0a:62:c1:49:b1:90:6a:67:42:
b9:e6:40:f5:3d:13:b3:ee:83:cf:ba:60:01:eb:40:8d:cc:4a:
51:ce:ba:1d:3a:8b:dc:76:69:1f:9a:84:71:b0:d8:11:9c:e1:
dd:94:7a:65:d4:1b:e1:de:7e:a6:4d:30:a8:60:bc:89:54:7b:
99:bf:e0:19:20:d7:d3:5d:9b:4d:b6:2d:e4:2e:f6:5d:5f:a4:
1e:dc:c9:b2:b7:31:21:11:5a:c1:91:d2:4b:29:1e:53:b9:e9:
71:9a:dd:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org