Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/YoKDGUbuu5G15COMnK4XZb6BHWw.roa
File: YoKDGUbuu5G15COMnK4XZb6BHWw.roa (raw, json)
Hash identifier: vKs6hIZUcP8K/2xhyTuTU7F+2/C07dQdNgfiJe6W+o0=
Subject key identifier: 62:82:83:19:46:EE:BB:91:B5:E4:23:8C:9C:AE:17:65:BE:81:1D:6C
Certificate issuer: /CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Certificate serial: 1356E966
Authority key identifier: 86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/YoKDGUbuu5G15COMnK4XZb6BHWw.roa
Signing time: Sat 01 Jan 2022 01:53:36 +0000
ROA not before: Sat 01 Jan 2022 01:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13020
IP address blocks: 2001:67c:20a1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 324462950 (0x1356e966)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Validity
Not Before: Jan 1 01:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6282831946eebb91b5e4238c9cae1765be811d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d5:b4:08:55:e8:42:a4:ea:9a:ca:2d:42:8a:
58:c1:b6:03:19:15:98:4e:ca:2d:39:0f:b4:7e:ef:
6c:50:94:1b:8f:79:b2:a4:88:66:b4:da:16:d6:de:
93:df:df:13:81:3c:32:b4:f6:f7:10:5e:bb:bd:e7:
7f:63:19:2b:f1:04:c9:0c:66:26:41:5c:9d:52:c8:
77:9f:6f:c2:8f:b6:be:1c:18:0b:a5:f1:70:c3:f2:
cd:7e:29:33:3b:22:bb:b2:6a:48:92:75:fe:bc:1d:
bc:e2:92:a1:34:6e:92:1f:e1:30:8f:43:a7:e9:c1:
c7:80:e7:50:94:ad:f3:09:bc:4f:bf:b2:59:fa:a8:
d4:4c:08:6a:c1:d7:2b:7b:76:ad:ad:f8:e2:68:54:
31:6a:b2:dd:be:a9:9d:5c:f5:20:fe:cd:36:ee:b0:
8b:74:f4:f0:2b:01:76:f6:78:da:76:97:53:c4:85:
03:9e:ff:60:94:43:c0:81:09:eb:ef:cc:b5:98:7a:
0e:90:dc:2d:21:56:ab:23:a2:77:a6:97:2b:74:37:
78:b3:5c:67:a5:23:c9:f8:2a:2e:08:fb:24:0f:57:
fa:91:7b:83:9e:a8:cb:3d:74:0f:c3:33:a3:81:60:
29:1a:64:aa:11:3b:33:50:2f:45:42:52:db:58:b6:
07:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:82:83:19:46:EE:BB:91:B5:E4:23:8C:9C:AE:17:65:BE:81:1D:6C
X509v3 Authority Key Identifier:
keyid:86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/YoKDGUbuu5G15COMnK4XZb6BHWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:20a1::/48
Signature Algorithm: sha256WithRSAEncryption
01:a4:e8:6d:13:64:a6:f2:c9:52:57:81:ed:94:10:67:f7:ca:
a9:1d:95:d7:46:d1:d8:c9:02:ca:0e:f5:89:25:49:f3:df:c7:
fd:00:1e:9b:bb:31:a4:79:87:d4:8e:0c:33:a1:51:97:93:0c:
c3:16:a1:33:1e:12:2b:f7:4d:f6:b8:21:15:19:ea:01:1d:b5:
2f:f9:47:34:f8:47:05:7e:f1:45:8f:6e:0a:15:5e:2f:67:fd:
de:94:19:34:a8:c2:37:8f:d1:c0:48:c0:0f:09:ba:bf:fd:71:
21:95:16:80:76:b7:7c:94:45:ed:8e:11:98:db:45:d3:f0:0c:
96:ed:57:ee:a3:3e:48:86:76:ca:50:2e:68:5d:4e:ea:b4:88:
25:e2:7f:fd:86:a7:25:59:2e:6f:f4:48:b7:c0:2e:b1:3c:ab:
6c:a6:67:6c:a3:44:55:7f:4e:e1:07:e3:e9:a8:3a:78:75:0a:
92:2a:7b:9a:cb:57:88:f6:26:77:8b:4d:7b:7b:44:f4:57:51:
04:37:dd:ca:7b:2f:4f:23:5d:82:94:33:47:91:01:56:1d:ce:
5a:80:bb:14:bd:4e:ae:20:a1:16:7d:bc:1c:44:fd:04:e9:28:
7c:ee:17:4c:96:7c:c5:2d:5f:57:9f:f6:20:ae:fe:3e:8d:3d:
46:3f:91:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org