Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YGmRHFiwlD_24__Czjj10ne3GPw.roa
File: YGmRHFiwlD_24__Czjj10ne3GPw.roa (raw, json)
Hash identifier: t84p3eFHwZSVWz937Lwg8S6GkpPSZ1QPeN3AD98LB+E=
Subject key identifier: 60:69:91:1C:58:B0:94:3F:F6:E3:FF:C2:CE:38:F5:D2:77:B7:18:FC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10D974DE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YGmRHFiwlD_24__Czjj10ne3GPw.roa
Signing time: Sat 01 Jan 2022 09:05:42 +0000
ROA not before: Sat 01 Jan 2022 09:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212129
IP address blocks: 2a0e:b107:ef0::/44 maxlen: 48
2a10:2f00:160::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282686686 (0x10d974de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6069911c58b0943ff6e3ffc2ce38f5d277b718fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b2:9c:16:46:5a:26:3d:0b:b7:bd:0f:28:89:
65:86:28:44:3b:04:ee:b4:a7:a6:2a:bf:13:2c:2c:
c7:9c:e3:32:ab:d0:2f:26:b6:1b:31:90:37:42:d5:
b1:66:15:6e:ec:ac:81:d9:dd:79:83:c1:52:1a:89:
42:72:32:b6:45:c1:d6:b5:8b:fe:7b:6a:27:cd:a2:
b3:bc:e2:c0:60:25:49:29:bc:0a:07:ee:9b:5e:97:
c3:3a:b0:96:40:f6:43:b2:ea:b2:84:4c:92:73:ae:
3c:f2:9d:df:de:97:86:aa:21:db:ad:e6:5c:3a:8f:
66:66:72:f7:20:5e:47:47:5d:29:5f:09:b3:8d:37:
aa:a6:a5:d8:02:9f:c6:0c:9b:20:b2:45:7a:32:63:
09:20:c4:7a:60:5c:77:22:0f:f9:ed:21:bb:7e:25:
18:33:d5:f4:ca:6a:17:90:fe:7a:3e:25:b9:b0:5b:
bd:3d:53:04:94:ff:98:97:8d:51:c3:9f:3f:35:74:
0e:b3:58:00:a6:a1:c5:f6:68:d7:7b:07:38:e5:9a:
23:6d:20:71:67:60:7d:cf:63:b0:f4:7d:87:3a:a9:
63:7a:2a:ca:00:84:d2:49:85:59:23:ce:2d:3b:de:
5c:ee:c6:06:ea:1b:1f:eb:5e:64:ae:12:b5:10:93:
d5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:69:91:1C:58:B0:94:3F:F6:E3:FF:C2:CE:38:F5:D2:77:B7:18:FC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YGmRHFiwlD_24__Czjj10ne3GPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:ef0::/44
2a10:2f00:160::/48
Signature Algorithm: sha256WithRSAEncryption
11:4a:2b:1f:61:03:ae:03:47:f8:ca:a6:71:88:b2:6c:53:38:
02:63:48:9e:ee:a5:56:10:35:a2:d1:b0:71:bc:f2:8c:1f:2d:
a4:8a:d3:2a:aa:4d:a1:3a:79:48:68:60:41:94:e8:4b:54:ae:
54:01:19:f4:78:f3:86:5e:9f:f0:7e:c8:dd:77:7a:36:9c:f2:
c8:65:72:74:7a:e0:f6:f5:d1:7c:69:3f:34:2b:82:09:a6:f8:
e5:5b:f2:56:3a:15:d1:7a:4f:ee:89:07:a7:ea:e8:b0:05:fa:
9e:a1:92:95:ee:fe:ba:95:9f:02:2e:8f:8c:ca:5a:1b:32:a5:
6b:cb:2b:a4:cc:3a:fd:90:93:10:27:94:d9:5c:0b:62:a6:04:
8f:64:77:b4:5e:13:86:c7:6c:30:e2:b5:f3:59:ba:26:ea:a3:
98:eb:ea:77:81:65:4c:fa:78:5d:8b:ee:13:71:3c:95:43:2e:
6b:1a:ee:ac:31:69:08:59:32:c6:2c:d4:c3:e9:a4:8d:f2:3a:
d4:d7:e5:88:0b:5a:19:f9:7a:84:5d:89:6e:b7:54:ef:d2:ac:
3a:8c:7e:ec:ca:de:b3:ca:4c:7f:70:11:79:d5:7b:23:55:70:
ad:93:93:32:84:b7:80:86:28:13:31:a9:dc:8f:f3:36:38:93:
60:9a:4e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org