Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7f2c07-cef5-42f4-8f32-8631fbf5c620/1/IG3j8vTys4TN02mRuvSIOIjHxuA.roa
File: IG3j8vTys4TN02mRuvSIOIjHxuA.roa (raw, json)
Hash identifier: XW/rkSuqWqayBoU8KRK0HnB0TE/T4023Gl0Egn/RuLs=
Subject key identifier: 20:6D:E3:F2:F4:F2:B3:84:CD:D3:69:91:BA:F4:88:38:88:C7:C6:E0
Certificate issuer: /CN=61b05789a4e824be8103de770dc25c593ef3fdca
Certificate serial: 02AC63FF
Authority key identifier: 61:B0:57:89:A4:E8:24:BE:81:03:DE:77:0D:C2:5C:59:3E:F3:FD:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbBXiaToJL6BA953DcJcWT7z_co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7f2c07-cef5-42f4-8f32-8631fbf5c620/1/IG3j8vTys4TN02mRuvSIOIjHxuA.roa
Signing time: Sat 01 Jan 2022 05:56:56 +0000
ROA not before: Sat 01 Jan 2022 05:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211671
IP address blocks: 2001:67c:2978::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44852223 (0x2ac63ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b05789a4e824be8103de770dc25c593ef3fdca
Validity
Not Before: Jan 1 05:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=206de3f2f4f2b384cdd36991baf4883888c7c6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c3:c0:c6:72:23:bb:bb:63:7e:56:42:26:4c:
bb:ea:5f:f4:41:6f:be:bb:97:de:62:6d:c1:85:e5:
74:71:d3:05:48:5a:0f:d6:0d:aa:b9:5c:06:73:79:
89:35:53:36:c9:1f:18:4b:37:67:ea:35:78:72:66:
ce:4b:10:ff:3d:64:a7:37:d7:6b:af:72:b4:d9:c9:
99:9c:74:1b:74:e7:15:93:7b:35:03:a3:86:d5:eb:
57:ff:7a:0c:d2:2c:9b:1c:1c:8f:19:a1:a3:e1:fd:
06:76:f2:fb:27:90:6c:03:fe:48:7c:a1:67:66:09:
b9:bd:d1:00:f9:ff:ef:54:d1:0a:18:ea:18:52:ab:
e2:27:de:65:e8:2d:5c:fa:43:d5:5a:99:4f:8a:14:
16:a2:6b:96:ec:5d:22:66:de:01:e2:b4:5c:8c:c6:
42:2c:3f:4b:21:e3:9d:09:9f:95:a7:b0:6d:cd:7d:
8b:cc:81:99:9d:ba:5f:13:bb:30:60:7d:57:85:ca:
d3:0b:16:64:57:90:58:77:68:c4:5e:f8:ca:7d:22:
39:74:a1:d6:a4:88:19:d8:e9:6e:8a:d2:57:ea:a0:
f3:d0:95:47:14:dd:10:66:50:39:8c:c4:98:1e:6a:
29:c0:46:59:f8:00:58:b2:e1:c5:93:be:5d:1e:9c:
d6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6D:E3:F2:F4:F2:B3:84:CD:D3:69:91:BA:F4:88:38:88:C7:C6:E0
X509v3 Authority Key Identifier:
keyid:61:B0:57:89:A4:E8:24:BE:81:03:DE:77:0D:C2:5C:59:3E:F3:FD:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbBXiaToJL6BA953DcJcWT7z_co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7f2c07-cef5-42f4-8f32-8631fbf5c620/1/IG3j8vTys4TN02mRuvSIOIjHxuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7f2c07-cef5-42f4-8f32-8631fbf5c620/1/YbBXiaToJL6BA953DcJcWT7z_co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2978::/48
Signature Algorithm: sha256WithRSAEncryption
58:98:ec:b3:2e:f3:8e:93:74:f3:d3:2a:29:d6:30:2c:96:d4:
e1:3d:9e:34:15:80:ea:1c:e8:f7:0b:33:68:90:f3:e0:6a:50:
c7:e0:bd:f3:67:92:45:aa:91:0c:f1:a0:ab:b1:c5:5c:ed:c1:
2a:c1:3c:23:71:09:0a:83:c2:9c:32:26:ec:7d:6a:22:fa:fb:
77:d1:8b:e4:0f:ba:ba:bb:0d:9c:cd:aa:ab:15:75:55:de:e1:
48:61:b2:28:07:25:ad:fc:f5:b9:64:00:b9:7e:c1:7b:32:ff:
a0:a7:e3:11:78:cd:1e:01:29:9f:f6:6e:ad:f2:d7:28:c7:27:
1e:3a:f9:f8:cf:9d:c4:d6:48:ed:d6:4f:7c:d9:e5:c3:08:e7:
02:43:e8:dc:3b:0f:47:ab:eb:ea:d0:62:a6:86:66:7e:02:b8:
61:51:f4:c7:da:56:e5:42:a9:a9:4e:c0:94:20:e5:f2:a1:f6:
19:f4:04:54:5c:76:2a:ef:be:5f:50:08:1a:bf:81:ff:f3:9d:
d3:2b:df:e0:98:84:7d:e3:1b:21:75:6c:d0:c2:22:c3:4e:99:
1c:98:46:91:0a:b5:fe:28:ec:d6:bb:dc:5b:e3:79:fa:28:0e:
4e:a9:6f:fe:72:55:b2:50:48:4b:7b:72:01:54:0d:10:40:65:
5f:52:db:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:14 2024 by rpki-client on console-ams.rpki-client.org