Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/yoUTHZ-dotrks-Y5pHs2XAHax78.roa
File: yoUTHZ-dotrks-Y5pHs2XAHax78.roa (raw, json)
Hash identifier: NfSdUU3+D6/vDAFpBe6Onnq50G3UHsPDYcURd0gzxrQ=
Subject key identifier: CA:85:13:1D:9F:9D:A2:DA:E4:B3:E6:39:A4:7B:36:5C:01:DA:C7:BF
Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Certificate serial: 3818C9F4
Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/yoUTHZ-dotrks-Y5pHs2XAHax78.roa
Signing time: Sat 01 Jan 2022 16:07:23 +0000
ROA not before: Sat 01 Jan 2022 16:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20815
IP address blocks: 80.64.32.0/20 maxlen: 24
2a00:5c00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941148660 (0x3818c9f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Validity
Not Before: Jan 1 16:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca85131d9f9da2dae4b3e639a47b365c01dac7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9a:e7:a1:39:98:4d:29:af:53:89:d1:85:af:
57:51:1d:d7:b1:c9:61:06:f0:3a:c3:bf:f4:9c:43:
6c:73:17:23:fa:93:eb:78:80:05:c0:02:a9:33:da:
53:52:10:3e:2c:a7:be:a7:fd:11:73:21:e6:b8:bb:
61:f7:77:a8:33:d4:2a:b8:6d:c4:97:63:d0:56:e0:
8c:e6:af:46:1e:62:ec:e4:e7:05:51:b7:f1:70:86:
04:17:9c:c2:99:02:df:16:f5:76:cf:00:50:14:e0:
63:55:90:7a:d1:d8:10:18:a9:ab:c3:fd:67:42:3c:
20:1f:b9:c7:f5:31:b7:bb:f4:7a:29:90:ff:c4:82:
61:7a:da:ff:e3:aa:d6:84:86:12:ef:16:f7:27:22:
2b:f9:f5:b1:77:04:43:c4:dc:2a:c9:6b:d3:dc:8f:
47:f7:ea:84:8a:22:35:cc:a5:88:61:a4:92:6e:48:
f6:98:5d:c2:ab:a4:3c:87:eb:4e:4f:17:61:7b:fe:
34:4e:11:bd:5d:a8:44:03:ee:97:cb:98:ae:cf:de:
8f:d8:43:c6:9b:82:a9:54:5c:9a:88:90:2a:f3:f9:
65:1c:aa:fe:96:02:10:b7:34:c5:e6:f4:58:ed:34:
8a:95:ac:a7:0d:1e:c0:8b:e7:4b:38:03:2c:f8:c7:
93:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:85:13:1D:9F:9D:A2:DA:E4:B3:E6:39:A4:7B:36:5C:01:DA:C7:BF
X509v3 Authority Key Identifier:
keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/yoUTHZ-dotrks-Y5pHs2XAHax78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.32.0/20
IPv6:
2a00:5c00::/32
Signature Algorithm: sha256WithRSAEncryption
17:25:c3:87:b8:7b:8d:ae:25:4a:12:a0:be:47:00:bc:0f:dd:
92:85:d5:86:ee:f8:24:e7:73:62:0f:55:40:f8:b8:36:15:bf:
98:6b:db:6d:81:af:e3:7a:e3:70:8e:26:bb:a1:42:4b:7a:1f:
5f:1b:70:99:e9:11:be:fb:fe:ab:b8:5f:ff:3e:c1:b4:15:64:
d1:9a:22:3a:b8:c3:e3:5a:d5:10:79:b2:ea:23:26:70:f0:16:
a8:95:64:0d:bb:6d:c0:7e:bd:b5:a4:5b:af:96:50:8d:40:fc:
95:6d:66:56:be:b7:1c:d1:86:c1:34:92:bd:3b:17:4e:23:3e:
bf:43:2a:cf:e8:f6:fe:1c:4e:9f:d7:03:9b:3c:c5:80:fa:fa:
f4:fc:95:35:82:b5:c9:0d:35:1e:88:17:13:36:4e:24:cc:76:
4e:f7:02:bd:51:8b:ca:98:ff:b2:56:7b:2c:be:a6:c8:57:67:
76:83:91:23:1b:f0:6e:8f:64:23:2c:7c:e8:2b:db:5c:9e:2d:
91:da:9f:be:e1:da:a2:1e:80:76:ab:33:88:8c:76:12:ae:73:
3e:78:55:3d:e9:d5:34:9e:3a:7e:12:f5:24:5a:16:a2:8a:ce:
01:33:99:1b:e5:c8:66:88:eb:96:62:d6:ba:7e:0a:27:fd:d9:
3f:7a:16:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:32 2024 by rpki-client on console-fra.rpki-client.org