Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/5b7387-3aae-497d-aabd-abb7438bc8a5/1/YLuXAqlHUF1sbQjWC0846pUBZrw.roa
File: YLuXAqlHUF1sbQjWC0846pUBZrw.roa (raw, json)
Hash identifier: LjSzBo8QjDu0CuL6tyq2kaCCkcVwTeygCQHneUmA6ds=
Subject key identifier: 60:BB:97:02:A9:47:50:5D:6C:6D:08:D6:0B:4F:38:EA:95:01:66:BC
Certificate issuer: /CN=c7cfccd68957a0f70439a8d60ff3c8b8d911a308
Certificate serial: 57EE
Authority key identifier: C7:CF:CC:D6:89:57:A0:F7:04:39:A8:D6:0F:F3:C8:B8:D9:11:A3:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x8_M1olXoPcEOajWD_PIuNkRowg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/5b7387-3aae-497d-aabd-abb7438bc8a5/1/YLuXAqlHUF1sbQjWC0846pUBZrw.roa
Signing time: Fri 04 Mar 2022 18:26:02 +0000
ROA not before: Fri 04 Mar 2022 18:26:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20932
IP address blocks: 2001:67c:1368::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22510 (0x57ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7cfccd68957a0f70439a8d60ff3c8b8d911a308
Validity
Not Before: Mar 4 18:26:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60bb9702a947505d6c6d08d60b4f38ea950166bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b1:2a:e2:12:12:09:b3:31:8e:6e:9a:57:3a:
93:c7:60:52:d6:8c:c6:ac:c6:1c:9c:ef:8a:8b:30:
40:e0:0e:7a:13:de:81:51:1e:d2:ad:4b:c5:f5:67:
17:ab:60:b6:45:5c:87:40:f2:9d:50:05:ec:20:58:
d8:8d:5d:7a:2c:9e:62:27:40:93:26:80:f8:01:d0:
74:88:82:eb:a3:e9:77:fc:39:15:a9:8a:4e:4b:e4:
bc:36:38:04:6a:bb:8b:f4:1f:59:b7:12:73:16:92:
40:5b:04:42:dc:1b:9d:86:aa:3b:7e:63:8e:02:1b:
4c:61:c4:fe:a3:23:b6:10:b9:59:5d:65:cb:21:9b:
77:e5:6d:ff:ff:4c:46:bc:02:41:00:04:36:d7:35:
1a:fd:2a:e1:66:d7:25:8a:cd:6a:e8:b1:df:92:be:
29:1a:c8:a4:ae:0b:b6:ac:0a:e4:30:81:c9:78:6e:
50:bb:fb:f4:9a:ea:72:7a:11:76:47:98:fe:ef:b8:
6d:27:bb:b6:e3:9e:39:18:c9:55:49:7b:f4:c8:e7:
59:03:ac:ee:59:26:c8:45:64:05:42:82:49:02:3c:
f9:03:d0:7f:0a:7b:0a:21:34:31:b9:f4:ab:67:a1:
b8:be:25:cf:63:2e:8f:25:7c:6e:9e:99:04:9d:91:
65:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BB:97:02:A9:47:50:5D:6C:6D:08:D6:0B:4F:38:EA:95:01:66:BC
X509v3 Authority Key Identifier:
keyid:C7:CF:CC:D6:89:57:A0:F7:04:39:A8:D6:0F:F3:C8:B8:D9:11:A3:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x8_M1olXoPcEOajWD_PIuNkRowg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/5b7387-3aae-497d-aabd-abb7438bc8a5/1/YLuXAqlHUF1sbQjWC0846pUBZrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/5b7387-3aae-497d-aabd-abb7438bc8a5/1/x8_M1olXoPcEOajWD_PIuNkRowg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1368::/48
Signature Algorithm: sha256WithRSAEncryption
58:1a:06:cc:7b:e2:1b:53:cf:64:95:5a:da:76:2b:fd:5a:f6:
3f:76:2e:6b:83:e1:c5:6f:51:57:3f:d4:7b:87:9b:55:99:90:
c5:4a:96:96:b0:2c:e9:87:0a:6b:b6:9e:19:0a:ae:29:74:5d:
d0:33:2b:36:0c:ba:35:3f:3c:55:15:c6:a4:41:70:11:fd:39:
82:14:a4:2a:6e:d6:34:88:9c:8f:44:56:70:fc:a8:d7:56:a5:
08:0e:9b:38:9f:b3:89:50:7e:00:14:27:35:de:32:68:97:70:
22:ef:92:a4:d8:4b:03:43:82:69:6d:98:7c:3d:21:12:0d:2b:
c5:f1:2f:f2:24:47:29:16:cd:43:05:1d:d1:f0:69:a2:ac:ee:
bc:29:54:bc:a5:a5:bc:2d:4e:21:97:68:f5:35:b9:4e:2f:a5:
c2:88:ad:5f:aa:49:5e:0f:0d:2b:7f:44:50:c2:47:92:b5:77:
6e:e9:dd:d0:de:27:4e:91:2e:8c:84:ce:27:ff:44:8f:26:65:
09:aa:14:c4:15:43:c5:fd:18:18:55:4a:e3:b3:4c:df:a0:88:
5f:bf:7e:50:53:87:7f:55:73:8c:1a:85:12:ea:de:ad:86:89:
66:8b:7d:84:69:aa:84:93:1a:27:de:0d:9c:71:f9:0f:c5:a6:
8a:2c:6b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:05 2023 by rpki-client on console-fra.rpki-client.org