Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/xlZyJlYg-YIkEBnjdh_dpaBue_k.roa
File: xlZyJlYg-YIkEBnjdh_dpaBue_k.roa (raw, json)
Hash identifier: jb02pP/tymh178nABhSpjcB7H6LjgN0PDm1k/T4tHCE=
Subject key identifier: C6:56:72:26:56:20:F9:82:24:10:19:E3:76:1F:DD:A5:A0:6E:7B:F9
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 08DD0165
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/xlZyJlYg-YIkEBnjdh_dpaBue_k.roa
Signing time: Sat 01 Jan 2022 07:01:27 +0000
ROA not before: Sat 01 Jan 2022 07:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209178
IP address blocks: 2a02:afc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148701541 (0x8dd0165)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 1 07:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c65672265620f982241019e3761fdda5a06e7bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fa:c7:d7:fd:22:84:96:c1:e4:6c:f3:95:f8:
0f:e6:dd:4c:a4:75:9f:94:cc:85:0f:d0:78:84:fd:
35:b8:ec:70:d3:71:fe:8e:76:08:c7:4f:b3:d1:f5:
8a:85:93:52:ff:a1:83:42:27:71:4c:88:7a:df:78:
67:cf:e1:65:b9:5a:ef:20:bd:62:82:70:d5:bd:1a:
2a:d2:d6:65:5e:6f:b9:25:87:a2:ae:69:c0:b7:67:
e4:be:39:91:fa:58:16:a4:e4:bb:5b:fe:75:1e:76:
5f:61:1a:47:b8:92:8e:d0:f5:75:77:26:ab:46:f4:
4f:5d:db:8f:91:e6:34:c6:c5:e6:d4:b5:2c:c0:12:
26:59:c6:e5:49:4e:b6:f9:e3:4b:e5:b5:d9:48:3b:
62:7a:b0:5d:b2:5a:8f:88:27:3f:fd:d1:d2:bd:5e:
48:e1:60:5c:95:ff:e1:19:99:4a:54:bf:b3:51:89:
ba:d3:de:7d:6e:91:93:b0:42:a3:dd:81:fb:06:33:
f5:d4:89:8d:3a:f7:6f:c6:32:75:e5:b9:e0:ea:85:
e2:5d:7c:a9:bb:26:36:cd:62:90:d0:4d:70:51:3c:
36:70:fa:2d:2e:3b:63:a4:c7:45:ea:dc:8d:bd:92:
c8:2b:39:00:32:81:1e:01:7f:40:85:ec:d7:fe:5f:
53:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:56:72:26:56:20:F9:82:24:10:19:E3:76:1F:DD:A5:A0:6E:7B:F9
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/xlZyJlYg-YIkEBnjdh_dpaBue_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:afc0::/29
Signature Algorithm: sha256WithRSAEncryption
1c:4f:af:ee:c0:a0:3d:bc:5e:22:66:ff:70:25:b6:61:68:f9:
c6:75:d8:c5:67:4a:48:d2:5c:33:b0:6c:14:26:23:88:fa:4f:
bc:0f:af:03:1a:78:e3:64:4e:13:de:42:64:50:14:3d:fe:f9:
0d:05:18:17:ef:bf:3d:b4:b7:72:6e:72:b6:ee:66:29:c6:14:
f1:d1:5d:7c:59:33:8c:dd:d5:84:11:6b:9b:0e:72:31:88:57:
fa:3a:28:3d:f7:0c:99:a3:89:51:2c:c2:37:f7:1e:9c:52:e0:
cb:93:d9:74:6a:c1:2e:50:5d:9d:a5:c1:b2:8d:8b:f5:9d:64:
2c:45:07:7b:34:b7:d4:c4:24:54:f1:e7:4d:78:02:9e:6e:5a:
45:15:a4:21:4c:fa:00:9d:ca:47:c9:7d:14:5f:7d:b3:14:69:
6c:b3:e0:a2:f0:79:36:30:ab:66:c9:80:08:54:7b:0b:be:77:
72:2e:20:0d:d9:16:a6:f2:ad:c5:0b:86:4d:51:a4:2a:2e:d8:
b9:cc:f6:46:71:5d:c0:2a:23:41:48:41:c3:5d:b2:f9:a4:ff:
a5:29:e5:77:76:20:33:df:c2:ac:0f:e6:b6:c0:b1:7a:43:0f:
4a:9a:b6:e4:35:39:5e:a9:75:65:b7:f0:3c:5c:43:38:33:af:
7f:f5:54:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org