Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/yIImJHlbrEsx66VfiaZL31WCDBQ.roa
File: yIImJHlbrEsx66VfiaZL31WCDBQ.roa (raw, json)
Hash identifier: awNgvwyf8fB2SfoheNuzxZmNVSS1Fy5Wu3UFNjh28Qg=
Subject key identifier: C8:82:26:24:79:5B:AC:4B:31:EB:A5:5F:89:A6:4B:DF:55:82:0C:14
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 1CCDE5FD
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/yIImJHlbrEsx66VfiaZL31WCDBQ.roa
Signing time: Tue 19 Apr 2022 16:17:30 +0000
ROA not before: Tue 19 Apr 2022 16:17:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35819
IP address blocks: 2a03:2887:ff10::/48 maxlen: 48
2a03:2887:ff15::/48 maxlen: 48
2a03:2887:ff0d::/48 maxlen: 48
2a03:2887:ff0f::/48 maxlen: 48
2a03:2887:ff11::/48 maxlen: 48
2a03:2887:ff13::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 483255805 (0x1ccde5fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Apr 19 16:17:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8822624795bac4b31eba55f89a64bdf55820c14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:94:c3:45:0b:d0:c4:82:14:1f:9b:32:37:a0:
3f:78:bc:1d:b7:d0:db:ee:f0:2e:b7:71:3f:e1:ab:
1f:f0:78:72:1b:23:6e:d9:dc:0c:6e:44:ae:c2:77:
3a:5d:e2:32:09:e0:b0:fa:cb:31:e8:8f:dc:2a:6f:
ad:34:b6:13:b8:3e:57:a7:f7:9e:fe:92:1f:aa:a4:
c8:14:1c:88:c0:a6:3f:9a:af:cb:48:5b:d3:77:0c:
a1:31:34:ef:84:24:78:b2:5b:bc:48:27:58:c1:49:
99:3b:f2:54:0e:64:f1:92:0f:55:98:0b:d5:db:8c:
6d:5b:20:fe:74:04:a7:53:24:ef:02:3e:97:7a:12:
6e:dc:d3:95:71:03:e8:8c:82:34:96:8d:18:43:d2:
cf:52:3d:c9:33:a8:93:c3:cb:f4:d8:cc:68:4b:96:
02:a2:34:80:d8:3a:85:0c:65:28:c2:db:d2:69:7e:
21:14:74:01:07:3c:7e:4c:45:a6:58:91:d0:02:68:
03:48:5d:26:2c:1f:6d:e9:46:f9:10:95:ee:e4:d8:
eb:a7:f8:80:07:17:39:41:56:52:9e:8f:21:c2:37:
a7:bb:23:b6:2a:43:a6:fe:18:ee:5d:84:57:c6:f7:
4c:88:c1:15:7a:f9:23:9a:5e:fd:fd:46:f7:87:f2:
89:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:82:26:24:79:5B:AC:4B:31:EB:A5:5F:89:A6:4B:DF:55:82:0C:14
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/yIImJHlbrEsx66VfiaZL31WCDBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2887:ff0d::/48
2a03:2887:ff0f::-2a03:2887:ff11:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff13::/48
2a03:2887:ff15::/48
Signature Algorithm: sha256WithRSAEncryption
8f:e2:ca:e7:0b:61:8e:ce:6b:9b:b1:bf:27:71:1b:26:60:db:
05:70:33:60:a1:cc:fb:dc:c6:f4:f6:05:3c:ac:88:f3:f0:0c:
f3:72:8b:2b:2a:84:4e:03:3a:69:16:f2:e7:19:5e:c9:09:b5:
c1:dc:ec:2f:63:24:d3:4a:d9:39:63:16:c6:b6:26:95:3f:86:
29:64:e2:15:56:fe:d3:68:fd:1a:1a:88:b2:9a:92:e9:b7:3b:
49:40:2f:2c:ba:9a:41:48:28:a4:07:65:bf:1e:b5:3e:42:bf:
1e:fb:1c:c5:ed:36:e6:85:4a:90:f6:15:42:dc:04:5d:cc:9d:
ae:56:bb:80:10:d7:24:22:2e:8e:34:30:05:8e:fc:f2:f0:59:
1b:70:7c:71:6a:8b:85:ed:a0:75:25:46:6d:35:12:82:6f:f4:
4c:0b:87:38:53:bc:71:9b:5c:65:e3:4e:ec:ad:bb:c9:6c:fa:
af:4b:57:9a:05:29:4d:10:b0:d4:80:75:2e:c9:6b:4f:7b:a9:
5a:1a:59:80:52:b1:c7:eb:db:af:93:79:eb:57:a0:76:95:04:
0b:1a:aa:e6:c9:c5:e6:33:42:49:0b:09:78:54:6b:50:3a:86:
eb:1d:df:b0:32:43:cd:fd:22:d3:bd:4e:60:4b:eb:f8:ed:58:
ce:e0:3d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:57 2024 by rpki-client on console-fra.rpki-client.org