Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/ys7z79i89VMaCgyS3IPN8bjPDFU.roa
File: ys7z79i89VMaCgyS3IPN8bjPDFU.roa (raw, json)
Hash identifier: +aHu+gXappfPpzg0S7bkdzIq7/inFewVJhlpyxf55yw=
Subject key identifier: CA:CE:F3:EF:D8:BC:F5:53:1A:0A:0C:92:DC:83:CD:F1:B8:CF:0C:55
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 0127A2D9
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/ys7z79i89VMaCgyS3IPN8bjPDFU.roa
Signing time: Tue 17 May 2022 11:19:01 +0000
ROA not before: Tue 17 May 2022 11:19:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 2a09:be44::/30 maxlen: 48
2a09:be41::/32 maxlen: 48
2a12:49c0::/29 maxlen: 48
2a09:be42::/31 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19374809 (0x127a2d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: May 17 11:19:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cacef3efd8bcf5531a0a0c92dc83cdf1b8cf0c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:5f:a8:5c:d0:7b:92:45:aa:da:e4:d4:72:
77:92:bc:ed:ab:d8:7b:fe:57:a6:3d:33:bd:8f:d5:
86:5a:e8:e4:97:0b:8a:07:6d:b3:1a:ab:e4:95:e7:
0f:ca:33:08:6e:94:d3:15:e4:ed:b2:d8:b3:fe:cf:
6c:32:ec:fc:d2:4e:ac:b9:38:24:66:d6:14:3d:a8:
86:ff:a9:25:33:2b:71:45:7c:9a:ab:8a:db:05:32:
88:db:4b:9d:5b:b6:b7:a7:18:62:8b:bc:a3:cf:1b:
11:b6:8b:af:83:ed:00:e5:a6:e7:2f:94:82:b8:c4:
13:69:48:c4:da:2e:33:fb:b5:d3:76:d7:bf:fe:8c:
7d:ea:c6:ed:a7:09:3d:ae:c6:e1:ee:7e:a0:64:2b:
d9:a5:88:46:8e:f4:e7:5b:31:f4:68:fb:ba:b0:49:
ee:6a:f4:21:38:c4:a6:4e:56:ef:11:5a:96:98:8f:
c8:87:80:61:06:1c:2f:c8:3e:6a:35:0b:98:c9:bd:
3f:9a:1c:1c:bc:6a:48:69:0b:e5:62:0a:61:8d:57:
3a:63:c2:da:d4:99:9e:e7:3b:aa:47:d2:0d:29:bc:
2b:f3:b6:4f:da:e1:65:31:d4:ef:72:76:b9:83:41:
67:df:23:e9:51:0a:e0:0e:e4:08:3d:14:be:70:55:
79:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:CE:F3:EF:D8:BC:F5:53:1A:0A:0C:92:DC:83:CD:F1:B8:CF:0C:55
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/ys7z79i89VMaCgyS3IPN8bjPDFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be41::-2a09:be47:ffff:ffff:ffff:ffff:ffff:ffff
2a12:49c0::/29
Signature Algorithm: sha256WithRSAEncryption
35:f3:ba:61:88:22:b4:80:f5:e0:3d:86:fc:b9:67:28:fb:13:
e9:e2:dd:03:a5:ad:ad:4c:ca:76:eb:7a:c1:33:ea:46:15:09:
e6:03:4c:94:0c:87:a5:36:5e:66:61:92:5c:9b:b3:89:b7:61:
7d:4f:91:79:00:70:dc:ed:e3:59:07:2e:63:59:13:47:5a:eb:
3d:81:b3:c4:0a:13:21:82:af:f9:0c:28:97:7c:b4:a3:e1:63:
71:1b:81:3b:ca:f5:14:a2:29:bd:8d:53:9b:94:8b:6e:d5:39:
67:15:a6:10:74:89:79:a7:7c:c9:bb:23:25:a4:8e:49:17:9a:
b6:02:e5:3b:d0:ec:36:8a:4b:81:55:de:61:4d:c1:0a:bc:6d:
fe:9e:c4:0b:a2:42:72:cb:a1:7a:a6:97:d9:e7:63:ff:5d:40:
a4:73:b2:5a:96:4a:27:13:30:55:ae:38:0a:7f:a4:cc:7f:ba:
32:7b:8c:39:3f:92:4d:72:0e:6b:3f:a1:37:dc:55:a2:89:55:
51:b1:2e:45:ac:f0:1b:c3:e8:3b:50:cc:5d:ed:6e:c5:4b:00:
3f:31:10:09:c4:c4:93:98:8d:eb:25:cb:05:d1:e6:fc:37:04:
41:a7:16:e4:fa:8d:17:0d:9e:40:cb:ca:51:ed:c4:ed:df:b7:
d1:7a:b8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:50 2024 by rpki-client on console-fra.rpki-client.org