Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YHPuAvygq24nAeaZAcfHGxJIPXs.roa
File: YHPuAvygq24nAeaZAcfHGxJIPXs.roa (raw, json)
Hash identifier: hpF0J8M2x5z0oq2bBq4ziGbMKGGNfLI3jpP9IEKnofE=
Subject key identifier: 60:73:EE:02:FC:A0:AB:6E:27:01:E6:99:01:C7:C7:1B:12:48:3D:7B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14454FA9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YHPuAvygq24nAeaZAcfHGxJIPXs.roa
Signing time: Mon 02 May 2022 20:50:51 +0000
ROA not before: Mon 02 May 2022 20:50:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210445
IP address blocks: 2a0e:b107:1a60::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340086697 (0x14454fa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 2 20:50:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6073ee02fca0ab6e2701e69901c7c71b12483d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:be:1f:95:db:a8:b4:a7:d7:c9:39:ce:23:a8:
0b:70:d6:2f:51:8a:fa:f3:7a:14:ac:a1:7f:cb:7e:
02:84:8a:94:b8:e0:cf:ea:e4:38:71:8e:df:2a:16:
d6:ca:46:03:46:6c:c8:c7:1d:0f:e4:06:88:d8:27:
be:1f:8d:14:07:f5:fe:ef:ce:bc:0b:1c:59:42:6b:
75:be:dd:63:fe:16:a9:46:ea:fa:06:16:91:1e:21:
25:05:83:34:19:21:9f:2b:55:8c:55:b6:da:6a:01:
fb:4a:42:0e:7c:db:67:4f:5f:22:54:35:5d:6d:9c:
fd:89:84:93:8a:f9:ea:fa:21:bd:33:96:f0:09:5e:
52:ca:88:67:a7:e4:2d:52:17:53:f6:4e:98:c0:57:
47:14:89:c7:1a:65:e2:90:92:78:52:f1:a5:cc:e3:
6a:01:53:d2:1b:eb:93:69:26:16:4e:72:ab:53:ee:
23:b3:a2:c2:5b:7c:24:2f:6f:a0:dd:19:89:17:d8:
1b:fc:27:e3:97:56:d3:4e:cc:9a:5b:bb:1a:b3:eb:
0a:71:1d:91:3d:93:9a:9f:28:29:83:27:b7:60:8d:
1a:a9:c2:69:e1:a1:e6:44:b8:52:e3:f4:25:53:fd:
ee:f2:08:9c:27:d2:88:fb:93:b1:19:2d:63:b4:5e:
2c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:73:EE:02:FC:A0:AB:6E:27:01:E6:99:01:C7:C7:1B:12:48:3D:7B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YHPuAvygq24nAeaZAcfHGxJIPXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1a60::/44
Signature Algorithm: sha256WithRSAEncryption
0e:ff:86:f8:64:89:f8:2e:ce:4f:84:36:59:1d:e5:34:66:f2:
fb:29:26:78:b5:9d:3e:af:0e:3b:2a:15:85:cb:e4:f6:38:f4:
4c:e2:69:f8:06:16:36:1e:70:57:5e:a9:16:c3:aa:ac:0c:26:
b8:7b:9c:e5:7a:54:e5:28:df:00:db:8b:f2:08:a5:95:cd:9f:
d6:b9:84:93:bb:de:39:cc:71:1a:c8:d5:8c:df:84:8c:ff:76:
ac:5e:f7:ee:29:15:a7:30:47:ff:f0:58:d5:79:61:86:2e:2a:
ca:d0:1f:e9:32:6e:9e:be:06:86:b9:53:f6:93:7b:ac:5d:3d:
98:b9:7d:af:f7:28:33:c7:a6:5b:cf:e6:81:d1:58:4b:b5:d8:
72:45:27:04:ef:d0:6d:93:01:27:88:e8:d0:c4:81:65:fc:d4:
2e:91:99:ac:97:95:14:1f:52:3e:8a:ae:66:9a:63:b9:28:9e:
62:45:87:ed:ea:5a:08:94:9d:07:87:b1:7d:94:c6:7f:dd:a2:
4e:44:b2:a0:fd:b7:05:76:07:3f:6b:35:72:ba:61:dc:ad:d8:
8d:0c:95:bc:0f:a8:b2:52:d5:74:55:68:08:c6:2a:ad:7b:e3:
be:bb:00:3a:ea:3a:fe:ca:5a:46:8d:8e:e1:78:5a:f9:8a:2d:
c9:c9:22:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org