Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/yohPj8iNvuK7U-8B1XnKEOe9lbw.roa
File: yohPj8iNvuK7U-8B1XnKEOe9lbw.roa (raw, json)
Hash identifier: imk96aQjQLl4+GcK9EjxA5caBySqwNIm8Tamg2gkNY0=
Subject key identifier: CA:88:4F:8F:C8:8D:BE:E2:BB:53:EF:01:D5:79:CA:10:E7:BD:95:BC
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 37ED78AB
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/yohPj8iNvuK7U-8B1XnKEOe9lbw.roa
Signing time: Sat 01 Jan 2022 06:00:59 +0000
ROA not before: Sat 01 Jan 2022 06:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196782
IP address blocks: 2a03:2a80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938309803 (0x37ed78ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Jan 1 06:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca884f8fc88dbee2bb53ef01d579ca10e7bd95bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b0:86:02:a4:2c:5d:35:c9:1e:b1:05:8e:44:
f8:4c:a4:83:b7:b3:60:37:12:05:f9:25:7f:91:e4:
8e:5f:65:43:fe:b8:ae:25:fe:3f:16:21:7d:a0:dd:
ef:54:5c:d0:40:10:8a:cd:53:9f:1b:16:a6:d2:20:
e5:20:96:55:d5:30:ab:2b:51:8b:5f:7f:02:22:5f:
60:c5:bf:02:a0:b7:ef:f5:b3:84:e4:bf:7d:17:8c:
8a:9d:5a:48:51:d1:96:f2:ac:2e:21:73:9f:91:ed:
6f:00:95:fc:39:e9:e6:e6:f8:a1:31:81:00:2a:d3:
0e:5f:7c:34:a3:57:18:18:90:1c:b9:81:a3:fe:d2:
51:57:38:57:0c:af:e0:b6:4b:2c:c8:0d:17:ae:02:
9e:e3:c5:b9:73:90:88:93:a7:bc:5a:6f:2f:2d:58:
da:a4:04:79:28:20:8c:b2:66:6b:8b:c1:b3:59:d7:
fb:5c:05:71:0b:f8:c6:42:89:31:8d:6d:15:86:96:
8e:57:12:18:81:75:90:45:b1:d7:1d:1b:01:33:6d:
67:61:0d:13:a0:d8:f3:2f:3d:dd:9d:ab:5e:2e:74:
c4:4b:f6:00:46:b2:2a:fe:4d:d5:fb:88:eb:16:a4:
5b:3d:7d:fa:3d:70:ee:1b:29:8d:5d:7f:13:40:e6:
09:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:88:4F:8F:C8:8D:BE:E2:BB:53:EF:01:D5:79:CA:10:E7:BD:95:BC
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/yohPj8iNvuK7U-8B1XnKEOe9lbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2a80::/32
Signature Algorithm: sha256WithRSAEncryption
30:f5:9b:3e:f2:47:3d:e9:a2:28:68:e0:54:ae:58:38:4e:d4:
13:48:b8:f9:3b:85:a0:fb:35:25:11:2f:af:c9:68:b4:40:59:
7b:fa:1c:05:e2:55:9f:3e:e8:21:05:66:cd:98:a3:14:4f:22:
35:3c:da:5b:73:e5:98:05:a7:21:87:5c:8c:4f:86:c9:7c:4a:
5a:5d:51:55:c6:5f:39:7a:c5:62:7f:5f:78:f1:31:70:2d:e5:
4e:55:d6:25:e3:63:fb:0f:16:c5:1c:92:78:d2:8a:34:ff:95:
cb:6f:ec:78:fa:42:6a:ce:f5:7a:26:6b:d9:68:76:42:45:9d:
95:06:39:2f:4e:b7:b4:c4:92:06:95:c9:90:6b:92:61:c4:2d:
fe:25:20:ba:dc:58:7b:08:d0:86:fe:33:3c:2f:36:47:f9:d2:
a5:d3:57:13:11:f8:b8:54:cb:26:9e:9a:cb:5c:3f:41:98:29:
59:93:24:d0:d7:0a:7a:6b:24:17:e5:6d:4a:d2:88:1e:e5:0c:
d6:9e:9f:c5:c3:13:29:b9:53:23:94:c3:fb:37:61:e9:be:02:
1d:09:40:ea:2c:45:53:96:78:0b:62:9a:f5:16:d8:46:55:f5:
03:bd:ef:63:af:c8:bc:f5:26:25:93:92:b0:e7:bb:e8:a6:02:
af:95:f7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org