Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/yCjQNPwgeSCtV9nxDWiyfH_lDAM.roa
File: yCjQNPwgeSCtV9nxDWiyfH_lDAM.roa (raw, json)
Hash identifier: 3eHYFzSfVAV7tG+PczdJQ+sl/xb0VdcjJFxg7CaB40g=
Subject key identifier: C8:28:D0:34:FC:20:79:20:AD:57:D9:F1:0D:68:B2:7C:7F:E5:0C:03
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018200BD7015E815DC1B19A03810876E3A87
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/yCjQNPwgeSCtV9nxDWiyfH_lDAM.roa
Signing time: Fri 15 Jul 2022 07:23:11 +0000
ROA not before: Fri 15 Jul 2022 07:23:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212775
IP address blocks: 2a00:7180:8010::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:bd:70:15:e8:15:dc:1b:19:a0:38:10:87:6e:3a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 15 07:23:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c828d034fc207920ad57d9f10d68b27c7fe50c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:83:dd:ad:94:68:e8:1c:7c:f7:c2:a8:db:d7:
85:ba:04:2c:5c:bc:d6:69:ed:be:0e:f7:3d:0e:98:
6b:e9:8f:69:2b:29:48:88:9a:63:e5:e5:52:20:83:
95:a6:ee:2f:f6:fd:de:8f:ad:f3:7b:26:45:bc:6f:
b7:4c:0e:7e:84:3e:8c:1c:a9:6d:2f:07:b3:17:1d:
cd:c7:34:b0:76:83:54:1d:34:a3:f3:43:69:03:df:
8a:44:02:78:71:12:eb:13:b9:da:c7:de:9c:c5:a2:
28:15:b6:39:80:c3:5d:28:89:9f:66:65:f9:0a:55:
e0:55:10:77:25:9d:84:21:21:79:c2:59:11:4e:64:
9c:c9:4f:ab:81:60:bb:7e:b2:12:da:00:2a:b2:b2:
d6:e9:46:86:ca:f3:44:1a:5d:bb:f5:ee:03:71:cf:
53:a8:8c:f2:5b:80:4c:ac:c2:0e:20:3b:bf:26:da:
2f:95:2f:19:4a:9f:6e:e0:c1:b2:2a:9c:be:bb:fe:
34:4c:37:62:31:36:2a:39:8a:cd:f7:90:86:37:5c:
de:4c:70:ff:e0:bb:a4:9d:00:c6:2a:33:af:36:0a:
4e:40:53:75:f9:9a:d6:b9:3f:23:92:9a:a2:f3:d0:
90:2a:72:c7:bf:62:80:41:04:7e:75:e9:9c:f3:eb:
87:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:28:D0:34:FC:20:79:20:AD:57:D9:F1:0D:68:B2:7C:7F:E5:0C:03
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/yCjQNPwgeSCtV9nxDWiyfH_lDAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7180:8010::/46
Signature Algorithm: sha256WithRSAEncryption
82:5c:d7:09:12:cf:94:39:fc:bc:83:a2:d6:7e:6b:1a:57:fc:
47:0c:39:87:cb:cc:04:4b:c7:3b:4d:2c:b3:4a:8e:cb:70:1a:
a0:43:35:a2:8a:5f:ae:46:46:fb:db:5d:90:d2:d6:ca:3b:16:
9c:ec:fa:aa:81:6d:f9:79:44:c0:8b:69:a2:32:20:4d:9f:b4:
88:f8:8b:72:97:8a:be:2f:b4:90:65:a7:85:16:3d:a3:6e:b5:
97:ad:7e:dc:c6:60:2a:a8:be:ca:a3:49:d6:21:02:58:06:a6:
33:d5:b0:23:ce:b8:db:18:19:e0:22:50:e9:c8:8d:78:c0:a5:
f5:04:89:c0:69:30:09:e6:1b:01:d0:04:18:58:99:45:c6:a6:
95:b7:5e:b1:0d:db:6e:3b:ed:16:a0:0c:ff:cf:91:92:a7:b1:
e0:64:fd:58:d8:60:4e:15:3a:ea:7a:ca:b7:c8:7f:c5:3f:5f:
54:04:8b:3d:69:4d:22:df:e1:0c:a5:52:a1:79:99:6b:78:c3:
15:cb:ae:f5:c9:04:19:68:5b:5f:58:1d:d1:4f:f8:2c:4c:fd:
5c:b9:e8:a4:dc:92:4c:9d:e4:e6:a1:1d:6b:23:3e:d6:00:19:
f5:2b:50:96:62:c8:42:18:16:ed:dc:3b:8d:03:74:ca:37:16:
30:91:af:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org