Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/3439d8-7ea3-4e32-9352-ba1ed9474ba2/1/RYieMEbS_ehZdDuYgkRO8LFoGI4.roa
File: RYieMEbS_ehZdDuYgkRO8LFoGI4.roa (raw, json)
Hash identifier: Sbs6pjuxQ9jRJ9I7x7qqE9MP+rEN7HK7/YNVc/PZMJk=
Subject key identifier: 45:88:9E:30:46:D2:FD:E8:59:74:3B:98:82:44:4E:F0:B1:68:18:8E
Certificate issuer: /CN=f68e231d5551876e15afc6637eab7fca80088391
Certificate serial: 04BA95F9
Authority key identifier: F6:8E:23:1D:55:51:87:6E:15:AF:C6:63:7E:AB:7F:CA:80:08:83:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9o4jHVVRh24Vr8Zjfqt_yoAIg5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/3439d8-7ea3-4e32-9352-ba1ed9474ba2/1/RYieMEbS_ehZdDuYgkRO8LFoGI4.roa
Signing time: Sat 01 Jan 2022 04:58:44 +0000
ROA not before: Sat 01 Jan 2022 04:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212535
IP address blocks: 2001:678:d70::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79336953 (0x4ba95f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f68e231d5551876e15afc6637eab7fca80088391
Validity
Not Before: Jan 1 04:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45889e3046d2fde859743b9882444ef0b168188e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7a:34:9d:87:40:66:a7:16:ef:20:a4:a7:7d:
08:8c:aa:63:1a:e0:f4:21:0c:46:77:91:11:91:d1:
da:be:9e:5f:25:9f:eb:c6:0b:0b:34:3b:2c:18:74:
d4:3b:1a:26:59:5c:8a:cd:c3:e2:54:4c:eb:70:1c:
ec:6a:1c:71:68:08:b6:0d:1c:63:a2:46:f5:6d:71:
99:2c:07:0f:a4:c2:59:8f:7d:07:ee:bd:d3:f4:98:
20:4a:91:2b:75:c5:19:62:3a:d5:c9:3a:8c:34:88:
08:8e:2a:15:d8:82:50:8c:b1:5e:3d:15:e4:f1:b3:
41:9f:50:1a:5c:ec:03:33:c1:d8:de:c8:b2:dd:14:
9e:19:c7:72:22:29:3b:d6:7b:69:19:36:8a:fc:2b:
08:fc:81:6e:60:2b:e8:12:c6:4c:2c:08:f5:16:52:
49:e0:f8:e5:7e:c3:fb:3c:1d:09:99:22:72:3a:49:
1e:c5:53:32:fd:d2:45:2b:b0:92:c7:f5:06:53:ad:
f6:a3:a2:2b:3e:0c:e3:5d:cd:91:3b:ae:63:ed:6a:
b3:b3:b8:dd:b7:f7:1a:2f:05:61:56:f0:91:02:e9:
92:56:37:79:7b:17:1a:13:33:7c:70:85:da:31:82:
59:39:aa:40:8f:8f:c6:1e:23:5c:c6:d3:d9:9d:ea:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:88:9E:30:46:D2:FD:E8:59:74:3B:98:82:44:4E:F0:B1:68:18:8E
X509v3 Authority Key Identifier:
keyid:F6:8E:23:1D:55:51:87:6E:15:AF:C6:63:7E:AB:7F:CA:80:08:83:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9o4jHVVRh24Vr8Zjfqt_yoAIg5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/3439d8-7ea3-4e32-9352-ba1ed9474ba2/1/RYieMEbS_ehZdDuYgkRO8LFoGI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/3439d8-7ea3-4e32-9352-ba1ed9474ba2/1/9o4jHVVRh24Vr8Zjfqt_yoAIg5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d70::/48
Signature Algorithm: sha256WithRSAEncryption
bd:6d:de:00:0b:b9:cd:9c:86:d3:32:c9:21:1f:98:6b:62:f5:
54:5d:21:c2:e3:8a:a7:eb:d0:b4:01:22:d8:da:25:25:bc:9e:
09:85:4d:aa:74:46:05:97:f4:bc:cb:99:c0:95:9b:84:43:94:
3f:35:74:81:1d:e5:73:25:88:d5:b6:42:30:a2:48:f3:56:88:
39:8b:46:93:5a:a8:39:17:82:f1:b5:5b:8e:35:fa:0e:84:a8:
d3:d2:06:75:da:f4:1c:a6:65:37:c9:35:d0:ce:ac:29:20:e2:
0c:02:49:d9:1b:b4:68:bb:0f:1a:5d:92:6b:bb:81:3c:62:7b:
02:50:92:75:c2:2b:64:fb:d8:40:9d:2d:48:56:a7:8e:b9:ac:
79:53:b8:02:3e:b3:f6:1d:03:29:af:14:27:ed:fe:8b:e8:5a:
b2:2a:b1:bc:34:79:07:cd:7f:bd:5b:6b:60:4d:29:34:97:17:
77:65:03:6e:dc:cc:da:0e:4a:5b:cb:8c:44:d4:51:81:f6:9d:
c1:3b:90:b0:17:1a:66:5f:c0:97:bd:f1:f0:e1:65:fe:93:c9:
60:1b:a9:55:a6:90:0c:58:d1:2f:b8:65:04:f2:8c:c0:69:d0:
f1:76:58:cb:12:f4:a5:ff:04:e0:6f:82:81:07:fc:29:40:e8:
1c:50:6e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:16 2023 by rpki-client on console-ams.rpki-client.org