Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/yd-qKvmHb93UKBZe2-viWwMyREE.roa
File: yd-qKvmHb93UKBZe2-viWwMyREE.roa (raw, json)
Hash identifier: 9umLfwI1r+NVm+2qC6dhIXAsS6akrAurN9mtRZdPjV8=
Subject key identifier: C9:DF:AA:2A:F9:87:6F:DD:D4:28:16:5E:DB:EB:E2:5B:03:32:44:41
Certificate issuer: /CN=99d3a2d6fad651678e96d24e24d19d71fe380409
Certificate serial: 0182813A0E01E62195F788362C6DD58E04C4
Authority key identifier: 99:D3:A2:D6:FA:D6:51:67:8E:96:D2:4E:24:D1:9D:71:FE:38:04:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdOi1vrWUWeOltJOJNGdcf44BAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/yd-qKvmHb93UKBZe2-viWwMyREE.roa
Signing time: Tue 09 Aug 2022 06:10:41 +0000
ROA not before: Tue 09 Aug 2022 06:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13043
IP address blocks: 164.60.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:3a:0e:01:e6:21:95:f7:88:36:2c:6d:d5:8e:04:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d3a2d6fad651678e96d24e24d19d71fe380409
Validity
Not Before: Aug 9 06:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9dfaa2af9876fddd428165edbebe25b03324441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e4:4d:8d:97:07:e1:94:1a:2d:3d:63:d9:ff:
90:97:bb:67:50:f6:76:24:5e:a5:84:57:a4:52:fc:
85:71:15:8a:9f:3c:f6:5b:e7:61:3e:f0:f8:61:1d:
1b:95:99:fc:7e:3f:6d:01:1e:f6:66:f5:08:7c:95:
48:05:d6:d5:60:93:6a:fc:de:48:36:18:5c:8b:c8:
89:55:32:bb:33:84:59:32:08:25:34:e2:ea:dd:b3:
c7:2a:6e:3a:6c:97:6f:e3:ef:51:59:04:66:d1:da:
0b:09:a8:27:60:44:1a:c7:08:50:c3:f3:45:ab:e8:
c5:0c:18:e3:de:19:24:e7:4a:ae:fd:0e:ae:bc:94:
30:f7:db:04:41:c3:b3:4f:8a:fc:71:2c:11:9a:15:
84:5e:15:75:a6:57:17:9e:3c:84:90:f8:5f:ff:e1:
e0:5f:4b:28:6e:d4:9e:6b:e5:12:97:3a:f6:5c:4a:
e3:bc:c8:12:c1:f6:74:42:c2:c5:27:4f:ca:7a:ee:
8e:10:a0:dd:0f:68:2c:96:fa:95:a4:96:9e:e1:c6:
48:5e:e3:f9:be:94:db:6c:28:d2:3c:8f:3e:2c:ac:
fe:7c:23:20:70:83:6e:5a:4c:5e:a5:4d:cb:f5:11:
ba:fa:52:3b:6d:27:bd:4f:09:95:cf:2f:c7:2a:19:
8b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DF:AA:2A:F9:87:6F:DD:D4:28:16:5E:DB:EB:E2:5B:03:32:44:41
X509v3 Authority Key Identifier:
keyid:99:D3:A2:D6:FA:D6:51:67:8E:96:D2:4E:24:D1:9D:71:FE:38:04:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdOi1vrWUWeOltJOJNGdcf44BAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/yd-qKvmHb93UKBZe2-viWwMyREE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/mdOi1vrWUWeOltJOJNGdcf44BAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.60.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d2:b8:cf:a5:91:19:53:c9:de:70:e4:29:cd:80:7b:29:b7:77:
3a:e6:75:84:e9:f2:bc:8c:a5:dc:21:5f:8f:19:b7:be:f2:2f:
4b:22:19:97:f7:01:86:ea:b0:88:82:5e:1b:7e:b8:da:2f:1d:
78:8f:2c:34:7a:fd:cb:c7:de:25:c6:26:91:b0:4c:00:78:d2:
3d:15:c9:a7:eb:19:be:8c:e0:bd:26:ee:0b:76:e4:8b:d8:6b:
34:21:fa:cb:fb:7e:04:b4:d5:ff:80:ee:00:24:95:a4:30:de:
e3:5f:02:2b:bc:5c:d0:bc:b7:1b:2f:35:53:5d:b6:74:b7:85:
2e:cc:4b:76:c9:65:f1:e4:88:ed:ce:ad:33:64:8d:56:99:ee:
59:90:39:0d:71:a6:4a:55:bc:c9:d8:b0:c0:c4:13:55:35:c9:
e9:6d:65:36:2f:c2:85:7f:39:61:7a:d1:6f:b3:40:a2:5a:7d:
29:fc:e7:dc:8a:ac:de:f4:a3:36:0f:97:ba:e9:5d:7e:15:99:
f0:95:89:f8:c4:76:c2:7b:46:22:e8:2e:e1:3e:f9:fa:a9:a0:
54:e8:95:3a:65:ed:c6:7a:fe:92:f8:f1:10:78:55:08:35:00:
8f:15:f4:a8:a0:97:16:af:a1:1a:7f:f6:c3:f5:c2:fb:48:e6:
8e:e5:a2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:33 2024 by rpki-client on console-ams.rpki-client.org