Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/yHFBzTPdiBrbrFrHJXCxpeINdz4.roa
File: yHFBzTPdiBrbrFrHJXCxpeINdz4.roa (raw, json)
Hash identifier: 5Vv/QBpg1mUY8Vtvj7rYIQAm9/7ZFbnBRpjcjlHOGaY=
Subject key identifier: C8:71:41:CD:33:DD:88:1A:DB:AC:5A:C7:25:70:B1:A5:E2:0D:77:3E
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 058FC9CE
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/yHFBzTPdiBrbrFrHJXCxpeINdz4.roa
Signing time: Sat 01 Jan 2022 05:01:27 +0000
ROA not before: Sat 01 Jan 2022 05:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209645
IP address blocks: 2a0c:e641::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93309390 (0x58fc9ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 05:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c87141cd33dd881adbac5ac72570b1a5e20d773e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ca:b4:9b:d2:bf:31:71:09:47:32:6f:ee:6a:
a8:fc:ad:2e:31:c6:1f:87:61:1e:65:45:87:bd:68:
f5:39:ca:c5:13:41:a4:a3:9d:ae:6c:7e:0a:ed:ee:
f7:21:08:50:77:fd:12:11:a0:95:dc:0b:9d:21:5d:
f5:73:58:f0:9c:bc:f3:c1:73:47:12:cc:73:a0:ed:
71:26:b7:c3:59:5d:86:8c:5b:0c:b8:26:04:34:d4:
5a:23:97:9d:76:44:05:fb:7e:81:6e:0a:4d:43:a2:
b8:f2:6f:8c:44:4b:b2:57:4b:ff:d7:5e:e0:e0:e3:
54:6f:2d:7c:3b:f5:7c:ad:86:a5:a2:2d:9d:61:f3:
81:e2:8f:2c:d1:b5:61:1e:ec:ac:03:46:56:53:a6:
34:79:15:1e:a1:ab:b1:4a:6c:f0:19:49:18:78:92:
95:ee:16:78:25:29:fb:fc:da:ea:61:d6:3d:02:43:
20:e7:b1:6f:97:88:f0:b8:ad:79:b8:cb:74:ad:97:
67:71:15:28:9e:2a:39:44:e0:65:df:6a:66:47:49:
89:32:22:6f:fb:2f:23:7f:aa:c3:83:52:99:90:6c:
41:07:75:e5:9f:81:2e:39:b6:c8:5c:e6:3d:98:e7:
9e:ee:9c:fd:39:c5:90:fe:9a:58:e5:ef:3d:41:69:
1a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:71:41:CD:33:DD:88:1A:DB:AC:5A:C7:25:70:B1:A5:E2:0D:77:3E
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/yHFBzTPdiBrbrFrHJXCxpeINdz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e641::/32
Signature Algorithm: sha256WithRSAEncryption
2c:f9:59:d7:13:55:8b:54:49:80:91:67:64:68:89:20:e0:cd:
82:88:85:17:00:2f:bf:10:69:50:fa:2f:ea:14:1b:e9:01:7b:
eb:3d:50:2e:b9:54:37:35:05:a9:42:f1:16:2e:19:06:c7:e2:
5b:19:7d:98:ac:4e:40:c0:a8:e2:73:64:18:9f:2f:9f:25:7c:
90:5e:3b:3c:3e:53:45:4a:ee:49:49:4b:91:59:82:a7:ee:05:
24:66:36:dd:bd:58:82:96:3c:67:6f:90:9f:dd:ed:46:0c:24:
1d:7c:1f:38:2c:fc:a0:43:db:12:d4:89:a6:33:99:a1:e9:08:
71:41:43:74:39:14:e1:3b:30:f3:51:d7:06:17:9e:b6:ff:05:
b2:a9:51:06:da:d7:aa:50:31:68:47:1e:fe:27:72:a2:2d:fa:
ec:9d:85:87:d3:9a:81:5d:ae:49:92:f4:8e:19:0d:3d:17:f5:
bc:96:0e:3f:7a:28:d9:c9:4f:6e:2b:00:e8:80:5e:2f:0d:bf:
70:89:8c:df:b1:7c:b3:82:d0:1a:08:b8:b1:de:f2:64:79:23:
93:4f:ab:3e:ea:38:53:30:05:3c:e5:8f:82:26:8d:87:49:b0:
7c:89:f2:a4:71:8d:b3:02:72:a9:37:56:82:af:c7:84:3b:e0:
7b:aa:f4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-ams.rpki-client.org