Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/1a8cbd-72cf-4a1c-83d2-c23eaed4d125/1/aYLB9aGpIVZTw5BDUAuJsSf3B-M.roa
File: aYLB9aGpIVZTw5BDUAuJsSf3B-M.roa (raw, json)
Hash identifier: +OoBfj507p0yFOakFxK3JrGWU3lzII5xS+I17VSNDc0=
Subject key identifier: 69:82:C1:F5:A1:A9:21:56:53:C3:90:43:50:0B:89:B1:27:F7:07:E3
Certificate issuer: /CN=8f041d669ea6c41170d6f81409c0ffdc28e56907
Certificate serial: 063F9475
Authority key identifier: 8F:04:1D:66:9E:A6:C4:11:70:D6:F8:14:09:C0:FF:DC:28:E5:69:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jwQdZp6mxBFw1vgUCcD_3CjlaQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/1a8cbd-72cf-4a1c-83d2-c23eaed4d125/1/aYLB9aGpIVZTw5BDUAuJsSf3B-M.roa
Signing time: Sat 01 Jan 2022 07:56:37 +0000
ROA not before: Sat 01 Jan 2022 07:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207563
IP address blocks: 2001:678:be8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104830069 (0x63f9475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f041d669ea6c41170d6f81409c0ffdc28e56907
Validity
Not Before: Jan 1 07:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6982c1f5a1a9215653c39043500b89b127f707e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:98:ea:15:ab:87:5f:33:45:f6:51:52:e2:27:
3a:2a:1e:95:57:27:8a:bf:d4:4e:42:39:8f:d6:f4:
78:f5:d5:e5:b7:c5:2d:6e:91:e5:16:89:9d:db:e8:
79:b0:78:75:d3:23:9d:ce:b4:ec:57:75:11:65:fd:
f7:94:2f:fb:ae:48:ab:3b:3f:ed:3e:a6:d0:a4:bb:
80:eb:69:c1:ee:50:46:81:46:d0:17:90:09:34:54:
df:46:dd:69:10:35:f4:0c:2c:51:62:b0:42:6d:f5:
74:4a:51:68:8b:20:38:41:12:e2:69:a5:4e:62:39:
71:c4:46:3f:65:89:eb:02:68:ae:d9:b8:c2:1b:5f:
e5:1e:da:61:b3:cf:7f:1d:7b:67:c9:30:5d:37:dd:
64:a1:aa:2e:90:7f:9d:8e:dc:ff:56:b9:73:93:44:
95:0b:5f:68:d6:7a:44:84:91:76:ec:92:e3:d6:41:
76:1a:e9:32:46:15:0a:78:f3:1b:91:d2:51:cb:98:
dc:47:c8:f3:ec:97:6a:26:69:42:a3:35:3d:6a:2f:
85:d6:8d:67:4c:ce:9f:6d:ac:d8:9a:01:2a:d9:7d:
69:b5:2e:9b:41:ab:73:fa:3e:02:e6:d0:a9:d3:32:
f2:bf:40:c0:0b:1b:a5:9f:04:ff:10:43:fd:81:ad:
20:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:82:C1:F5:A1:A9:21:56:53:C3:90:43:50:0B:89:B1:27:F7:07:E3
X509v3 Authority Key Identifier:
keyid:8F:04:1D:66:9E:A6:C4:11:70:D6:F8:14:09:C0:FF:DC:28:E5:69:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwQdZp6mxBFw1vgUCcD_3CjlaQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1a8cbd-72cf-4a1c-83d2-c23eaed4d125/1/aYLB9aGpIVZTw5BDUAuJsSf3B-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1a8cbd-72cf-4a1c-83d2-c23eaed4d125/1/jwQdZp6mxBFw1vgUCcD_3CjlaQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:be8::/48
Signature Algorithm: sha256WithRSAEncryption
42:df:12:7c:50:e7:14:ff:1c:51:eb:78:b7:74:64:2d:55:42:
a8:82:81:71:a8:43:35:53:b0:7e:47:d1:2e:3d:db:d3:60:1b:
a7:50:0e:0f:23:6e:89:d0:e5:34:64:fc:63:27:fe:63:dd:b2:
18:d3:ff:ab:74:41:29:40:5e:1c:4b:5f:45:33:8a:15:e7:f0:
b2:7b:ad:95:a2:7a:69:b1:39:80:fa:9a:7a:64:d4:be:a1:b0:
6c:c9:4e:3d:51:5e:81:f8:9d:e4:99:91:71:cd:27:26:26:d0:
cf:4e:85:07:26:07:af:83:44:73:64:a3:e9:72:77:95:08:0e:
0b:88:20:e5:f1:d9:4d:fd:56:7f:15:65:cd:f4:31:2e:73:7b:
68:68:da:5e:c4:7a:e7:84:c1:ca:55:0d:9e:54:b2:31:27:d4:
1f:f5:5e:af:b3:eb:f3:6c:6b:49:38:90:e3:91:62:f1:9b:d4:
35:6f:56:4a:cb:c0:02:65:bb:e4:51:09:1f:eb:a7:d7:5b:84:
59:7a:30:05:98:b2:72:ae:07:ba:c5:70:13:e0:f1:bc:6a:e4:
ed:d2:3c:0c:65:5c:91:89:ea:9e:b5:a8:b8:f3:14:35:e8:75:
8b:53:ea:b6:75:3a:04:7b:66:ee:a7:ef:4e:71:c6:a9:14:a5:
72:aa:93:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:41 2024 by rpki-client on console-ams.rpki-client.org