Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/YVeAXPHEj7FNddz8TK7PaO18A5M.roa
File: YVeAXPHEj7FNddz8TK7PaO18A5M.roa (raw, json)
Hash identifier: 61otfQ5YDJ1iL1kTzZ54P7WkchCv0CYUn4mbSp2PmNo=
Subject key identifier: 61:57:80:5C:F1:C4:8F:B1:4D:75:DC:FC:4C:AE:CF:68:ED:7C:03:93
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 0DAE98D8
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/YVeAXPHEj7FNddz8TK7PaO18A5M.roa
Signing time: Sat 01 Jan 2022 07:55:44 +0000
ROA not before: Sat 01 Jan 2022 07:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 2001:67c:16a0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229546200 (0xdae98d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Jan 1 07:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6157805cf1c48fb14d75dcfc4caecf68ed7c0393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:49:ee:d9:dc:3d:45:c1:5f:69:ff:dd:5b:89:
b6:26:02:72:12:9b:89:5c:f7:e1:89:67:e8:d5:70:
8c:07:2d:83:c8:8a:01:c7:42:74:87:15:58:63:cd:
74:65:88:83:d2:f8:94:39:65:cb:1c:ec:4d:fc:4c:
e6:5a:db:6e:0f:ec:b2:4f:ef:ba:10:9c:9c:fb:cb:
42:61:2a:30:ea:06:6f:c4:49:f4:fa:2a:e8:f3:07:
f2:4c:05:38:28:05:d2:ee:f2:25:ff:be:0f:39:42:
a2:ad:df:bd:ff:7b:a1:50:f0:58:dc:52:5b:83:2a:
f9:19:b7:5a:54:7b:7f:b7:5c:57:24:b6:14:8e:ac:
b7:9d:2e:38:18:4b:96:b3:25:28:3d:c7:00:42:22:
89:db:d9:c4:19:5d:41:bd:51:c3:d8:a8:84:76:bd:
09:c9:61:5a:54:55:cc:81:4a:07:96:61:2b:2a:ea:
fd:23:48:1f:44:b3:4c:d2:20:0e:c4:21:aa:b4:02:
2f:80:12:84:9e:3c:a7:20:63:cf:51:45:d3:fb:44:
e2:4c:52:b1:16:1d:07:ae:53:fc:0a:9c:35:a0:e1:
5a:d9:99:62:da:6b:3e:de:9e:90:6f:d0:08:f5:f7:
54:c6:6f:9c:4a:4d:23:32:9d:8f:0c:89:34:11:63:
0d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:57:80:5C:F1:C4:8F:B1:4D:75:DC:FC:4C:AE:CF:68:ED:7C:03:93
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/YVeAXPHEj7FNddz8TK7PaO18A5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:16a0::/48
Signature Algorithm: sha256WithRSAEncryption
64:e1:ef:ad:96:cb:00:01:7c:c9:cb:43:cb:a2:f8:b3:51:dd:
95:4a:41:ea:bd:e8:00:f5:94:5f:ca:9f:88:10:3c:c8:7a:59:
fa:05:b0:90:86:5d:f2:ac:e6:d6:74:a3:38:33:72:30:ef:d4:
a6:41:20:d4:1d:80:09:d1:42:d6:aa:40:a2:ca:ab:5c:dc:a9:
7b:72:94:79:54:0b:cb:13:1d:29:78:44:34:aa:39:4d:c7:61:
3e:28:3f:c7:8d:30:25:df:6a:e5:d0:3c:35:3a:b7:bd:e5:c6:
7f:e9:dd:8d:d5:3a:46:da:53:cb:c7:af:7a:dc:25:b2:c8:ba:
27:c7:b2:49:d4:6a:75:4f:c0:d3:c2:9c:ac:af:d2:04:3a:cf:
31:55:45:e4:8f:e5:ca:b1:10:8e:60:1d:4b:d1:ae:da:56:9d:
aa:ef:94:1a:e5:c0:11:a9:b8:b0:2e:e1:06:06:76:1d:74:79:
03:30:07:09:95:fa:c6:73:43:d1:8b:29:30:8b:3d:ae:72:f1:
50:1b:f3:54:d0:26:34:0f:c6:fc:fa:63:ea:1d:a9:3f:ef:f9:
65:76:26:c6:dd:5c:9f:6f:84:bc:b8:7e:24:c3:9d:c7:5c:10:
c9:a2:24:ae:f9:f3:1b:de:d9:62:2d:8c:29:3e:23:02:5d:6f:
da:e5:a5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:05 2024 by rpki-client on console-fra.rpki-client.org