Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/YNC8853eO_8aa3C7_Dv7rERgo4g.roa
File: YNC8853eO_8aa3C7_Dv7rERgo4g.roa (raw, json)
Hash identifier: VdUVmpX9i33EnBpjQtdo21UvLIU/oEvMlRbtzhkrfuw=
Subject key identifier: 60:D0:BC:F3:9D:DE:3B:FF:1A:6B:70:BB:FC:3B:FB:AC:44:60:A3:88
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018433C5B0B696FE1580D194D4A37477DA19
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/YNC8853eO_8aa3C7_Dv7rERgo4g.roa
Signing time: Tue 01 Nov 2022 15:18:24 +0000
ROA not before: Tue 01 Nov 2022 15:18:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206016
IP address blocks: 2a0d:2685::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:33:c5:b0:b6:96:fe:15:80:d1:94:d4:a3:74:77:da:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Nov 1 15:18:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60d0bcf39dde3bff1a6b70bbfc3bfbac4460a388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ba:d0:72:50:c5:94:95:e2:74:7b:4d:75:2e:
5c:55:13:3b:7e:b5:c2:13:53:94:9b:43:a1:b6:d4:
10:51:dc:de:47:e3:a4:9f:3c:c2:71:94:1b:3a:04:
c5:7b:e9:4c:0a:73:bb:40:a0:94:30:94:22:78:0b:
43:78:29:3e:86:43:ab:67:0e:b3:32:75:72:f4:3d:
39:0f:34:16:86:f3:6c:86:4d:a1:ae:e9:c9:c5:40:
0c:21:2e:1c:7c:43:47:38:9c:34:a0:ee:10:59:f4:
3e:52:7a:d9:64:cd:f7:ba:6a:47:85:7d:dc:5b:66:
05:d9:cb:f6:af:b6:d2:ee:ae:c6:a3:ca:41:7b:9b:
ad:e7:e1:21:ed:52:5f:17:2d:a2:1c:ea:09:7e:d0:
2a:0d:6f:70:d4:45:7c:88:9f:d1:e1:44:86:c0:f0:
34:15:59:99:34:0a:bc:c4:f0:e9:f9:10:dd:48:f3:
09:5b:57:0b:47:c1:36:fe:75:9b:5a:e4:30:0e:90:
d0:d8:6d:01:29:05:b7:de:b2:c0:6b:a2:ed:11:e8:
69:a2:5f:ad:96:61:7f:b5:61:d9:04:27:0c:12:50:
0c:9e:05:27:b5:5e:c5:15:1b:e2:e4:23:46:f6:66:
55:35:9b:0b:c6:2b:b0:f0:4b:fb:30:7a:d8:ba:5a:
e7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D0:BC:F3:9D:DE:3B:FF:1A:6B:70:BB:FC:3B:FB:AC:44:60:A3:88
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/YNC8853eO_8aa3C7_Dv7rERgo4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2685::/32
Signature Algorithm: sha256WithRSAEncryption
27:f9:a0:e9:e1:eb:c0:98:e2:22:8a:b1:3e:8d:ec:ba:08:6a:
8b:65:1a:b3:9e:48:f1:4f:1b:7f:70:82:15:95:ab:d6:ca:18:
e8:f1:97:cb:c1:ca:42:99:cd:56:09:15:b6:2e:fc:5e:ed:77:
fc:54:9b:8a:06:5e:6a:6d:77:16:60:4b:1c:bb:f1:63:51:e5:
8d:c4:d1:c7:bb:57:c6:00:9f:3e:89:63:69:c7:7e:2a:94:29:
ae:03:48:50:12:43:55:77:fd:3f:78:a9:b2:4e:92:ad:72:68:
7d:98:88:45:2a:d7:7f:6a:8e:80:5d:bd:b8:d2:9a:85:94:22:
05:bb:d1:5a:e0:d7:4c:5f:0f:da:8d:8b:fc:5c:38:a3:74:74:
64:8c:44:b7:6f:3a:79:f5:9d:06:a1:d8:9b:b9:3f:42:1a:d7:
07:bf:00:84:5d:e5:69:35:2f:7e:5f:06:80:aa:cc:83:50:0b:
ee:de:58:f3:02:41:53:aa:71:42:b1:77:68:2d:f5:97:5c:fb:
2d:b5:a1:18:c3:c8:8c:f3:7a:7f:72:94:dc:1b:f5:bc:da:0c:
48:f5:06:13:ce:01:e6:d2:18:1c:94:14:58:4e:60:73:43:e2:
e9:1b:58:af:e1:75:ea:3c:c3:de:04:86:d6:8c:28:64:87:b5:
a3:1c:62:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:11 2023 by rpki-client on console-fra.rpki-client.org