Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/YeDjIX4HMGoyLcsDg4r8EPHxeZI.roa
File: YeDjIX4HMGoyLcsDg4r8EPHxeZI.roa (raw, json)
Hash identifier: hqpQAq7UzSPitw3raHAu0UvPwD3fV74NScObPTfl+8I=
Subject key identifier: 61:E0:E3:21:7E:07:30:6A:32:2D:CB:03:83:8A:FC:10:F1:F1:79:92
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 01849E357B7866E829FBC72B59104BE7EC7A
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/YeDjIX4HMGoyLcsDg4r8EPHxeZI.roa
Signing time: Tue 22 Nov 2022 07:20:15 +0000
ROA not before: Tue 22 Nov 2022 07:20:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a13:1c46::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:35:7b:78:66:e8:29:fb:c7:2b:59:10:4b:e7:ec:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Nov 22 07:20:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61e0e3217e07306a322dcb03838afc10f1f17992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:90:63:eb:a0:6b:ce:60:ff:2c:69:d3:88:5d:
64:1c:0d:8c:7e:df:3e:3c:e4:5b:54:31:97:c9:3f:
82:44:04:bc:04:7f:2b:02:77:6e:1d:33:92:1d:15:
b3:fd:27:44:bf:2f:a6:1e:fd:ad:b1:e6:14:93:5d:
85:4b:7c:de:23:df:18:38:76:20:e2:49:a8:1a:59:
df:0c:f2:6c:fb:e7:2f:c9:71:ca:03:91:a6:5b:33:
5c:1d:ae:12:00:fd:b6:75:d3:d3:e4:a8:04:83:9a:
4f:f8:06:84:4c:7d:da:5e:84:11:c4:d5:de:cf:86:
74:1b:a4:c9:92:b7:bc:e3:c0:92:43:a5:61:a4:8d:
82:a1:36:a7:2a:b7:df:ac:d8:3d:1a:c5:fb:d2:cc:
cf:5b:67:3c:58:15:cc:a0:97:0c:06:c4:30:6a:e2:
32:d6:fe:8e:1b:22:c7:ee:57:59:a6:34:74:82:b2:
f0:3b:4f:35:d9:10:29:25:f9:87:f5:9f:f0:2d:cc:
3e:44:fd:3f:b0:fa:d5:51:26:c4:4a:ff:13:ee:06:
a9:33:e3:19:70:3c:46:d8:c1:c1:d5:c0:d7:0b:1f:
ad:6f:01:e5:de:05:88:ae:ac:b0:e6:5c:4d:56:1b:
6b:8d:ea:56:26:76:f6:d5:c0:f4:86:c2:7f:67:73:
37:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E0:E3:21:7E:07:30:6A:32:2D:CB:03:83:8A:FC:10:F1:F1:79:92
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/YeDjIX4HMGoyLcsDg4r8EPHxeZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c46::/32
Signature Algorithm: sha256WithRSAEncryption
6f:dc:40:e2:2d:d7:c2:d7:29:2f:07:7c:59:e3:b4:38:60:fc:
0d:77:2a:e3:03:27:f6:79:47:5b:65:07:34:bd:27:a5:ae:32:
66:39:33:f7:81:53:c6:0c:73:25:47:8f:10:35:61:fd:30:c1:
bf:f9:83:0d:0c:4a:7d:f9:9b:1b:91:79:79:07:4a:96:0b:a7:
e0:f3:be:be:fc:ce:88:96:d3:c7:f8:a6:0b:37:21:70:f4:48:
d3:a4:00:b9:92:3e:0b:fc:53:77:8e:0d:03:10:f0:c2:8a:9f:
a0:b3:97:03:28:22:4c:d7:a1:c2:26:35:87:6c:18:75:d7:f2:
93:b8:d4:80:68:72:50:91:53:42:a7:81:80:69:3c:01:64:9e:
7d:27:3c:61:17:ee:80:1d:28:4d:9d:45:37:82:b4:73:e0:fc:
cf:fa:e4:3f:c2:10:9e:7b:9a:67:b3:e8:cd:2a:31:32:14:10:
32:9f:d5:68:13:0e:cd:8e:40:d8:40:2e:a8:f6:9a:fa:bc:65:
48:ae:fd:83:a3:56:28:eb:ba:b9:13:9b:4a:2c:24:f7:d4:29:
92:57:fe:a6:0d:a5:5f:9f:b7:db:1e:2f:64:5a:72:d3:e6:e7:
5e:fe:35:fe:c0:48:dc:f3:e9:77:a1:6b:12:ef:c8:15:53:fa:
0c:22:7c:70
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYSeNXt4Zugp+8crWRBL5+x6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3Y2UxNzljYmUxM2RkYjE0MDEyOTg1YTA2NzEwMGVmOThh
NTU2MDEwHhcNMjIxMTIyMDcyMDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWUwZTMyMTdlMDczMDZhMzIyZGNiMDM4MzhhZmMxMGYxZjE3OTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgJBj66BrzmD/LGnTiF1kHA2Mft8+
PORbVDGXyT+CRAS8BH8rAnduHTOSHRWz/SdEvy+mHv2tseYUk12FS3zeI98YOHYg
4kmoGlnfDPJs++cvyXHKA5GmWzNcHa4SAP22ddPT5KgEg5pP+AaETH3aXoQRxNXe
z4Z0G6TJkre848CSQ6VhpI2CoTanKrffrNg9GsX70szPW2c8WBXMoJcMBsQwauIy
1v6OGyLH7ldZpjR0grLwO0812RApJfmH9Z/wLcw+RP0/sPrVUSbESv8T7gapM+MZ
cDxG2MHB1cDXCx+tbwHl3gWIrqyw5lxNVhtrjepWJnb21cD0hsJ/Z3M36QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGHg4yF+BzBqMi3LA4OK/BDx8XmSMB8GA1UdIwQY
MBaAFGfOF5y+E92xQBKYWgZxAO+YpVYBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjg0WG5MNFQzYkZBRXBoYUJuRUE3NWlsVmdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81ZDcxOTItYTcxOS00Y2Q3LTk5NGEt
NjJjMDFkYzY5Y2NhLzEvWWVEaklYNEhNR295TGNzRGc0cjhFUEh4ZVpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81ZDcxOTItYTcxOS00Y2Q3LTk5NGEtNjJjMDFkYzY5Y2Nh
LzEvWjg0WG5MNFQzYkZBRXBoYUJuRUE3NWlsVmdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhMcRjAN
BgkqhkiG9w0BAQsFAAOCAQEAb9xA4i3XwtcpLwd8WeO0OGD8DXcq4wMn9nlHW2UH
NL0npa4yZjkz94FTxgxzJUePEDVh/TDBv/mDDQxKffmbG5F5eQdKlgun4PO+vvzO
iJbTx/imCzchcPRI06QAuZI+C/xTd44NAxDwwoqfoLOXAygiTNehwiY1h2wYddfy
k7jUgGhyUJFTQqeBgGk8AWSefSc8YRfugB0oTZ1FN4K0c+D8z/rkP8IQnnuaZ7Po
zSoxMhQQMp/VaBMOzY5A2EAuqPaa+rxlSK79g6NWKOu6uRObSiwk99Qpklf+pg2l
X5+32x4vZFpy0+bnXv41/sBI3PPpd6FrEu/IFVP6DCJ8cA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org