Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YhswD89FzVO5QaSu5IlZeBNkfXg.roa
File: YhswD89FzVO5QaSu5IlZeBNkfXg.roa (raw, json)
Hash identifier: JJce1AhQp+0xfSQZHLeoDpyYqdPY31e9gPI0Y/V9RX4=
Subject key identifier: 62:1B:30:0F:CF:45:CD:53:B9:41:A4:AE:E4:89:59:78:13:64:7D:78
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 147FB318
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YhswD89FzVO5QaSu5IlZeBNkfXg.roa
Signing time: Mon 09 May 2022 13:59:17 +0000
ROA not before: Mon 09 May 2022 13:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210864
IP address blocks: 2a0e:b107:1a00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343913240 (0x147fb318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 9 13:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=621b300fcf45cd53b941a4aee489597813647d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:cc:15:99:6c:c0:1d:d1:f8:4c:9d:d8:c1:d3:
58:a5:6b:c1:00:2a:70:ec:7f:62:7a:1b:0a:db:d5:
a2:f6:a9:23:58:66:60:73:63:58:60:dd:72:7a:98:
34:dc:44:31:ec:94:65:68:49:59:3c:de:e6:c1:a4:
35:f0:9d:20:12:53:19:5f:dd:81:5f:34:cd:58:10:
21:f5:f8:8c:f4:d4:4e:d3:0f:4a:ce:06:94:26:f7:
14:42:3f:68:e1:59:4a:eb:93:08:5d:be:7e:23:c7:
0c:69:cb:1a:25:18:51:e8:08:8b:14:60:ef:ef:66:
15:5c:10:23:6b:b6:76:a7:ae:07:94:61:c0:6b:72:
30:c0:42:3c:a8:20:2c:7d:06:ca:39:3d:3e:4e:85:
49:bb:65:17:3b:b0:f4:37:b4:12:4c:5f:38:a0:ab:
8c:c4:19:6e:d3:42:a1:69:99:c1:f0:e2:94:9b:4d:
de:a9:2b:df:83:15:47:52:2a:b6:17:7c:e2:21:e7:
7f:76:57:24:30:b8:e7:9b:35:84:52:bb:ca:cd:eb:
09:c2:ff:f4:7f:58:aa:e4:d8:ea:14:55:61:42:b4:
ba:19:85:4f:ae:81:cf:b7:e7:05:58:5a:ee:29:44:
fc:af:f6:06:a6:01:00:c5:d3:86:41:f5:6c:b2:74:
4b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1B:30:0F:CF:45:CD:53:B9:41:A4:AE:E4:89:59:78:13:64:7D:78
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YhswD89FzVO5QaSu5IlZeBNkfXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1a00::/48
Signature Algorithm: sha256WithRSAEncryption
62:94:65:e9:70:05:1c:37:84:e2:3f:1f:a7:58:c2:0d:ee:e3:
19:15:cb:1e:c3:01:9d:b2:ea:45:ca:9c:4d:68:c9:3f:1b:a2:
77:7f:53:f9:04:f1:5f:95:92:83:bf:de:dc:b5:c9:8f:ca:ae:
ad:ca:ad:a1:cd:73:11:5b:dc:aa:6b:58:10:72:0b:5a:ec:d5:
a6:cf:9f:3e:ff:54:1e:bb:a8:37:20:01:41:fa:8b:d3:c8:15:
21:f7:7a:ca:af:a2:55:df:84:15:c8:71:49:78:15:15:f8:c1:
00:7a:55:e8:6a:0e:05:a3:99:12:c8:a8:f4:c3:60:36:ed:d1:
aa:7f:d9:2e:63:26:39:3b:87:e3:08:75:2f:36:4f:33:1d:83:
78:96:c3:ad:9a:14:d0:2f:e3:ee:6f:a9:da:28:c8:91:cd:50:
56:a6:a7:2f:ba:94:3b:65:03:48:bc:ea:6a:19:52:33:81:e0:
59:18:ef:a9:a6:39:5e:21:b6:dc:77:7f:7f:fb:37:b3:c8:ba:
dd:5a:b1:8a:03:f7:53:98:26:27:c9:cd:5a:97:73:c8:bd:f9:
7b:df:77:19:64:b7:c9:38:eb:a1:db:a9:df:93:a0:0c:4c:7b:
8d:a4:de:f3:27:6d:4c:fb:d2:28:22:ab:32:90:fb:0c:ad:fe:
41:b1:6b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org