Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/YGrtIgokXg_FwasqXFntBq1VdtY.roa
File: YGrtIgokXg_FwasqXFntBq1VdtY.roa (raw, json)
Hash identifier: iDoxOIFaL6RplNpc3T6EunQi7Sw4fOCml/NHbSgweEo=
Subject key identifier: 60:6A:ED:22:0A:24:5E:0F:C5:C1:AB:2A:5C:59:ED:06:AD:55:76:D6
Certificate issuer: /CN=6177c580926599e83ab735ba2e04fc108778c441
Certificate serial: 01B86E
Authority key identifier: 61:77:C5:80:92:65:99:E8:3A:B7:35:BA:2E:04:FC:10:87:78:C4:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YXfFgJJlmeg6tzW6LgT8EId4xEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/YGrtIgokXg_FwasqXFntBq1VdtY.roa
Signing time: Sat 19 Mar 2022 16:01:32 +0000
ROA not before: Sat 19 Mar 2022 16:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207131
IP address blocks: 2a12:af40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112750 (0x1b86e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6177c580926599e83ab735ba2e04fc108778c441
Validity
Not Before: Mar 19 16:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=606aed220a245e0fc5c1ab2a5c59ed06ad5576d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4d:63:72:03:fc:38:46:af:53:43:a0:d7:74:
4a:38:b6:47:38:d5:a1:88:b0:1e:ec:ec:5b:8d:27:
75:18:84:05:1c:90:cd:60:b5:91:37:61:19:bc:74:
d5:f6:c0:ed:66:ab:b7:0a:1b:f3:99:d0:7d:f2:53:
0b:a2:c5:2a:dd:4a:f5:4f:8d:3d:74:76:fc:fb:08:
09:d0:bd:0e:e0:2a:1d:0a:da:74:6b:05:03:bd:bf:
86:05:53:5a:50:8c:a6:ff:cb:19:0d:c4:66:45:5a:
62:69:72:01:b2:f4:dd:6b:ef:41:dd:ff:88:f4:33:
8e:d8:25:b9:cc:39:b8:bf:09:4f:bb:8a:07:d2:60:
68:29:dc:26:ca:cd:11:b3:06:28:42:0e:15:c9:88:
c0:1d:5e:0a:bb:05:2a:bd:63:96:80:18:64:90:f5:
b7:70:bb:c9:f5:b0:17:56:f1:a9:1f:b4:76:81:bc:
50:05:b3:18:3a:29:2b:00:a3:19:ac:ab:1a:7d:75:
3a:4f:bd:76:82:5a:9c:4e:c9:4a:60:a3:f8:63:ba:
28:3a:d1:2c:eb:8e:68:22:b5:42:c6:1b:54:f6:19:
02:5d:94:bb:6a:57:8c:9b:37:83:3b:58:3a:d9:f6:
9b:8d:eb:b8:f9:a4:1b:f7:86:f8:71:74:c6:82:bb:
ef:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:6A:ED:22:0A:24:5E:0F:C5:C1:AB:2A:5C:59:ED:06:AD:55:76:D6
X509v3 Authority Key Identifier:
keyid:61:77:C5:80:92:65:99:E8:3A:B7:35:BA:2E:04:FC:10:87:78:C4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YXfFgJJlmeg6tzW6LgT8EId4xEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/YGrtIgokXg_FwasqXFntBq1VdtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/YXfFgJJlmeg6tzW6LgT8EId4xEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:af40::/29
Signature Algorithm: sha256WithRSAEncryption
20:16:84:e1:78:1c:0e:5c:d7:93:a8:51:5d:5a:63:2a:26:d9:
b5:01:28:5f:31:99:c8:89:0b:e3:c5:70:73:76:58:8a:82:67:
86:e4:a1:78:1c:70:0a:20:bc:d7:66:05:a0:b6:30:e0:3e:0b:
d2:17:ef:4c:f5:52:2d:40:01:d9:60:9d:d6:cd:d6:e9:14:44:
5a:73:9a:4e:ec:84:fd:8f:26:af:5c:32:1a:41:1b:3b:37:82:
e6:a2:8b:72:84:94:34:15:b9:43:52:a0:5c:cb:77:de:b8:3a:
28:95:d3:48:d7:98:89:b1:f4:32:5c:1e:58:98:e5:e0:b3:a0:
1d:53:cb:c0:17:4d:27:5a:d0:5d:51:ef:7a:0a:30:6b:0d:61:
f4:11:0c:f3:5f:fc:27:73:08:3c:71:82:d0:54:29:0f:0b:91:
dd:d5:a7:89:4a:36:50:46:16:64:ba:d8:03:98:9b:39:f9:b5:
f8:9d:b4:9d:7a:76:27:0f:16:b2:f2:f4:ca:2b:84:87:8e:22:
c5:56:5b:8a:1d:e7:34:04:e1:5b:10:12:74:83:35:ae:2d:b8:
1a:2f:16:84:81:24:b2:4b:25:7e:b4:b3:64:79:d3:e8:86:9e:
4c:90:d4:49:11:ab:28:63:97:01:ba:b1:5b:0b:1f:76:20:85:
63:f0:f9:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:44 2025 by rpki-client