Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ywHtyRMbMZ7ME5lupWGvOYA6srQ.roa
File: ywHtyRMbMZ7ME5lupWGvOYA6srQ.roa (raw, json)
Hash identifier: E6Hyt/FMoG2ZhMCPGs4lkmEPiQw1F5Xa95pXhI3B2Dc=
Subject key identifier: CB:01:ED:C9:13:1B:31:9E:CC:13:99:6E:A5:61:AF:39:80:3A:B2:B4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0181F33513A9E2720387362520E8E70B29E0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ywHtyRMbMZ7ME5lupWGvOYA6srQ.roa
Signing time: Tue 12 Jul 2022 16:19:10 +0000
ROA not before: Tue 12 Jul 2022 16:19:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204115
IP address blocks: 2a0e:97c0:375::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f3:35:13:a9:e2:72:03:87:36:25:20:e8:e7:0b:29:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 12 16:19:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb01edc9131b319ecc13996ea561af39803ab2b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:02:be:f1:a3:1f:f1:ea:7a:e6:72:88:2c:5b:
0a:72:e0:8e:93:97:3b:30:14:4c:8f:38:e4:19:8c:
4e:1e:c9:70:e5:82:73:00:8b:f5:4e:bf:a9:cc:ef:
eb:15:b6:d9:fc:fd:c2:0f:a2:0e:ad:de:f5:05:fd:
73:f9:99:bd:c6:4d:53:fd:fa:ba:9e:22:e0:52:84:
c1:8b:68:97:8b:1c:1c:f2:b9:8c:4e:a6:19:12:0d:
8b:c9:35:4c:75:aa:17:16:f0:37:c3:18:38:9a:e5:
e7:a6:4b:9f:99:4b:19:3c:1f:20:0c:d3:34:a5:da:
d2:ab:95:62:4e:2f:a1:cb:41:45:96:65:64:aa:9d:
46:8d:83:4d:6a:99:a9:b7:3b:24:7a:e5:77:68:1c:
9f:91:76:bd:2d:b6:1d:70:85:d0:cc:3a:11:a9:48:
b6:4f:7d:3e:95:e1:07:c6:fb:f3:c1:d4:f2:37:3d:
ae:f0:da:d0:7d:1d:1e:c0:01:d1:d6:ff:b3:35:18:
af:f4:40:fc:66:bb:38:5a:f4:81:20:6b:29:11:9f:
6f:ea:74:ca:3a:d6:be:53:8a:8b:91:4e:41:6f:a1:
db:6c:ff:1c:2c:ce:2b:cb:bf:78:1b:92:2f:10:c4:
00:82:de:8e:c3:cd:84:63:91:f8:1c:73:ee:af:3c:
93:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:01:ED:C9:13:1B:31:9E:CC:13:99:6E:A5:61:AF:39:80:3A:B2:B4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ywHtyRMbMZ7ME5lupWGvOYA6srQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:375::/48
Signature Algorithm: sha256WithRSAEncryption
b1:ef:66:59:8b:b2:ba:42:b8:66:91:c2:fe:9f:24:c4:64:5b:
18:dc:e5:90:d9:cd:84:e9:91:2c:eb:9f:b9:c4:4b:8f:2e:22:
4e:32:41:f9:42:6f:a5:fb:ba:26:49:21:f3:82:f8:c3:3d:3d:
d0:fb:cb:f4:ee:4e:8f:d1:e9:0d:1d:09:d3:8d:de:72:f0:65:
a9:d7:a2:d0:63:dc:e7:aa:03:90:4d:b0:37:fb:9c:bd:40:c1:
a2:81:1f:13:64:90:47:21:61:a4:e6:d9:7b:30:c6:ff:20:47:
88:fd:a3:17:98:2b:c5:1f:ba:ed:b2:69:b7:cc:eb:62:47:a4:
d7:2f:b1:f0:13:89:ce:51:89:90:2e:14:91:eb:31:cd:3d:af:
97:ca:61:6f:77:5c:a2:e8:0b:5b:63:9f:74:e6:bf:50:7b:c0:
4d:ab:4e:d9:76:32:8f:6a:13:73:04:aa:0e:fe:2b:97:36:bc:
34:c3:3d:08:89:09:87:ff:37:70:86:f3:e0:32:5e:d6:b3:67:
07:92:e7:72:79:4c:2d:8c:c2:8e:e4:7c:2c:24:a1:f5:e2:3a:
20:c9:f2:99:73:fb:d1:27:74:af:0e:a9:af:4d:24:22:72:87:
b2:84:e1:ff:77:8b:4e:77:54:18:ff:12:2e:e9:01:22:5d:5c:
f9:6e:86:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:05 2023 by rpki-client on console-ams.rpki-client.org