Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yJBGbY3mTyoIcTqIshT0VqBfzBw.roa
File: yJBGbY3mTyoIcTqIshT0VqBfzBw.roa (raw, json)
Hash identifier: YEy75WG+hK21YqGmp4mnxTQnABjLrz2nhdxsALuAbW0=
Subject key identifier: C8:90:46:6D:8D:E6:4F:2A:08:71:3A:88:B2:14:F4:56:A0:5F:CC:1C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10F5B637
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yJBGbY3mTyoIcTqIshT0VqBfzBw.roa
Signing time: Sat 01 Jan 2022 09:05:59 +0000
ROA not before: Sat 01 Jan 2022 09:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213244
IP address blocks: 2a0e:b107:d90::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284538423 (0x10f5b637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c890466d8de64f2a08713a88b214f456a05fcc1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ff:99:43:3d:34:62:66:f8:ef:58:c6:40:d6:
7c:7f:9d:78:63:53:9b:35:39:ec:1e:9d:e8:a1:a3:
47:df:85:04:f3:ee:56:e8:91:b8:b9:21:f5:b2:31:
9c:df:bf:ed:3b:95:96:eb:89:e7:ed:11:56:99:0c:
cd:13:cd:ba:d2:34:da:18:d5:d9:f2:78:31:65:b6:
47:5b:c6:f7:d1:8c:01:a0:be:e3:3d:1f:ab:b5:b7:
66:be:e2:d7:3d:10:8e:65:a3:2e:11:b5:cb:79:7b:
71:8d:78:21:73:3a:2b:56:fa:05:f1:fd:95:7d:21:
5d:c1:ff:d8:99:81:64:28:b3:f5:d2:3a:6d:6b:22:
b5:ae:bd:df:57:c3:f5:e9:91:78:de:c7:7d:99:5e:
bf:4e:f2:e6:28:f2:f8:cf:10:34:ec:47:3e:ae:71:
14:54:77:1b:6c:ec:eb:01:5b:c7:7f:d1:45:12:1f:
38:2e:a5:fc:d6:4a:60:55:31:0d:02:1a:4b:a6:12:
87:85:c9:cd:de:4c:6a:3c:bd:23:00:23:52:6e:9d:
db:f2:7c:9f:7d:6f:0b:5e:ca:45:93:81:2c:0b:22:
46:a3:3b:c8:0c:e2:90:6d:0a:b8:81:bc:c5:20:1d:
54:cd:92:3d:5d:47:d4:6f:02:2c:f7:18:03:be:34:
a9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:90:46:6D:8D:E6:4F:2A:08:71:3A:88:B2:14:F4:56:A0:5F:CC:1C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yJBGbY3mTyoIcTqIshT0VqBfzBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:d90::/44
Signature Algorithm: sha256WithRSAEncryption
2e:07:9c:91:b6:dd:70:6b:c4:c3:47:3e:62:ee:96:a2:f8:01:
ce:ce:12:b2:d3:0c:fd:c4:61:56:e9:38:77:18:df:01:b9:c5:
cb:42:e5:39:f4:8d:dd:93:9b:79:33:c8:96:4b:11:0e:36:af:
de:d5:37:bc:0f:64:fc:b0:69:e3:3f:55:69:90:f8:fa:e8:4e:
38:c6:0d:d9:a5:09:03:8b:15:ad:07:4b:54:da:af:c6:cd:b8:
45:cc:f6:9e:1c:e7:20:c6:4b:72:a3:f2:9b:29:f0:2b:6b:6f:
f4:75:73:00:8f:36:26:17:c4:2a:7a:46:fc:ef:c7:fb:3f:62:
90:25:20:13:3d:1a:63:e8:df:c9:ba:52:96:19:ab:ed:5a:73:
a0:89:cf:0a:2b:c6:2d:01:7b:7c:0e:fd:12:2e:87:43:55:bd:
18:af:78:f5:8b:d4:c3:80:b8:c0:cc:bf:71:08:c8:02:d8:d3:
29:33:1b:be:03:47:23:80:9c:39:79:8a:d7:4f:e6:c5:1b:3d:
1b:59:01:0c:a5:92:9c:58:3e:57:17:f2:c5:1b:f0:55:9d:31:
82:49:cc:ba:ff:cc:4c:46:58:0b:b7:0c:33:0b:d6:a7:0d:30:
92:41:d3:ef:b9:2e:6e:61:02:f9:81:0b:47:c3:66:0c:f7:78:
3f:c2:bb:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org