Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/u3y4UcP63RsMybgu93VirshggVc.roa
File: u3y4UcP63RsMybgu93VirshggVc.roa (raw, json)
Hash identifier: +9OZYQ++WdOntThKvvLfOwojDeVP14f5MyaqESkwNLw=
Subject key identifier: BB:7C:B8:51:C3:FA:DD:1B:0C:C9:B8:2E:F7:75:62:AE:C8:60:81:57
Certificate issuer: /CN=17526ccac4f9064e058549b30172c84439787fbc
Certificate serial: 01841921A4BBDBBCF01476121586ED85C51D
Authority key identifier: 17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/u3y4UcP63RsMybgu93VirshggVc.roa
Signing time: Thu 27 Oct 2022 11:09:06 +0000
ROA not before: Thu 27 Oct 2022 11:09:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 2a0c:b6c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:21:a4:bb:db:bc:f0:14:76:12:15:86:ed:85:c5:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17526ccac4f9064e058549b30172c84439787fbc
Validity
Not Before: Oct 27 11:09:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb7cb851c3fadd1b0cc9b82ef77562aec8608157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:16:81:d0:ef:13:39:83:2e:9e:e9:78:28:b7:
b4:11:a3:c1:2c:d5:b9:f0:6c:eb:aa:62:88:8f:f2:
b8:de:74:97:b2:0a:c9:92:db:ae:50:75:ef:66:1a:
1f:37:43:e8:4a:8a:f3:ee:66:7d:37:5e:5c:75:12:
f8:01:6e:92:62:38:b1:ba:a2:33:5f:09:14:83:5a:
52:ac:b8:c5:7c:ba:6d:23:d7:19:35:53:52:b6:fd:
d3:60:80:a8:cc:35:59:4c:73:ec:b4:32:6a:05:f8:
f0:0b:85:b9:21:39:44:ba:20:00:21:a2:c2:3f:9c:
05:46:0a:c5:0c:b2:54:3f:ea:2c:14:5d:aa:da:c4:
6d:ca:f3:32:d5:2d:45:b7:9c:d6:51:49:c2:0e:a1:
1b:8a:da:6c:82:8c:ab:84:fe:c6:21:d6:b6:83:1d:
0d:04:ba:92:41:c5:6a:ab:ff:c5:d6:01:33:f1:ae:
3e:12:b4:79:03:75:10:60:7e:35:14:4c:a3:6b:8a:
81:e9:69:21:e5:8d:f9:a3:e0:8f:63:a8:18:66:36:
cc:4b:de:2c:7a:65:b5:84:92:1a:57:e2:5d:35:8b:
23:2a:0d:ff:79:b1:01:89:f7:35:b1:77:b2:6d:f3:
96:d3:2f:64:56:67:c3:b4:d7:6a:60:33:82:1e:26:
fc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7C:B8:51:C3:FA:DD:1B:0C:C9:B8:2E:F7:75:62:AE:C8:60:81:57
X509v3 Authority Key Identifier:
keyid:17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/u3y4UcP63RsMybgu93VirshggVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/F1JsysT5Bk4FhUmzAXLIRDl4f7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b6c7::/32
Signature Algorithm: sha256WithRSAEncryption
03:25:12:37:05:e3:be:87:9b:71:36:28:67:e0:97:fe:dd:d8:
23:0c:2b:2d:d1:45:be:1c:cd:13:25:c1:de:a8:a4:7e:06:be:
73:f2:45:00:df:41:64:88:f6:51:70:28:24:2e:66:cd:d2:72:
60:77:e2:bd:f3:39:a9:94:ce:ac:de:7c:ac:22:6c:f0:63:f6:
60:8f:f6:0d:61:e1:ce:a0:b4:b6:a7:f5:54:01:5b:8e:8d:a6:
63:9e:d2:13:e1:63:82:a7:97:24:30:44:37:8e:55:ce:d9:3c:
e8:64:74:3e:fd:35:8b:bc:03:61:af:c3:7a:54:31:48:72:9d:
e7:4d:b7:78:c8:dc:cb:4a:29:c3:37:9b:7c:79:8a:4c:aa:6e:
a0:d2:89:e5:16:08:a1:cd:af:f7:61:83:ca:f3:0d:a7:1b:08:
3d:b6:7a:8d:af:56:a7:e1:fb:55:13:f4:33:38:bd:24:14:d8:
d9:55:39:5b:9b:c3:0d:fb:52:cf:30:14:ab:29:9f:00:39:3c:
08:f7:31:2e:45:4b:e0:3d:2a:7e:c8:79:9d:05:03:bb:e2:58:
1a:28:2f:8c:c7:9b:d8:01:54:dc:11:67:92:09:94:38:3f:89:
f6:63:29:65:6b:ad:a5:1e:74:84:48:9d:eb:37:59:e0:e1:85:
96:60:ab:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:38 2024 by rpki-client on console-ams.rpki-client.org