Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Yo-qz0i6BDuVnottkIfjZPWhFkE.roa
File: Yo-qz0i6BDuVnottkIfjZPWhFkE.roa (raw, json)
Hash identifier: K5ZBEOblSpDnhPuFMTdpqxgHTxOduLEzEY40Gw2qXL0=
Subject key identifier: 62:8F:AA:CF:48:BA:04:3B:95:9E:8B:6D:90:87:E3:64:F5:A1:16:41
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 011EB6
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Yo-qz0i6BDuVnottkIfjZPWhFkE.roa
Signing time: Mon 24 Jan 2022 19:47:10 +0000
ROA not before: Mon 24 Jan 2022 19:47:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210619
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73398 (0x11eb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Jan 24 19:47:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=628faacf48ba043b959e8b6d9087e364f5a11641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:65:9e:cc:ec:b4:5a:c7:29:ed:9b:8c:2a:1c:
4b:77:c3:f1:0d:b5:82:93:04:66:f6:12:23:2a:a0:
25:7a:b8:8d:b0:d3:2f:48:df:86:d3:23:6f:ba:b2:
ac:3a:14:54:6c:fe:7f:1e:fc:6d:9b:65:7c:f0:c9:
31:11:24:aa:1c:a4:48:2a:3b:9e:54:22:f4:95:2b:
65:75:0d:e5:c8:16:db:a4:55:d3:fb:4b:3f:af:0f:
84:f3:05:01:65:24:b5:75:3e:31:2e:44:ef:3b:9c:
85:20:34:11:fb:86:8d:1f:43:78:70:6e:d2:ea:33:
9e:d1:3a:4b:28:cb:7e:58:1f:d1:78:ce:ed:f0:86:
e2:50:50:78:9b:d8:d2:0c:dd:98:69:50:df:c1:a4:
b2:5d:22:5e:c6:c3:1a:ab:c6:72:e6:b7:38:d4:ba:
02:fd:74:55:b8:72:81:21:51:9e:5e:06:42:65:94:
2b:b7:ae:06:90:8e:55:bf:f9:2f:1f:0b:46:9d:22:
c7:50:41:bf:b0:70:dc:b7:9d:2d:73:08:06:7e:9f:
59:c9:87:77:d0:7b:09:39:81:c2:3c:4f:7f:86:cd:
b6:38:8b:ad:9f:2f:10:f2:76:a9:a2:96:ab:5e:c6:
fe:85:be:f3:4c:ca:c7:44:18:6a:ff:ca:4b:0b:65:
f4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8F:AA:CF:48:BA:04:3B:95:9E:8B:6D:90:87:E3:64:F5:A1:16:41
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Yo-qz0i6BDuVnottkIfjZPWhFkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
77:2b:97:9b:39:17:cc:1b:85:3a:f9:e2:3d:ad:64:05:24:8b:
5d:03:7e:c3:5f:3e:d1:3d:f8:e9:69:e8:f2:86:bf:79:9c:d1:
a1:db:73:80:fe:64:7e:c0:1c:9d:35:b8:57:4e:de:75:d4:b3:
0d:cd:0d:0b:e5:60:63:dc:84:01:d8:0f:ad:d1:32:8c:56:c5:
e2:b3:1c:4c:74:da:f8:36:78:04:c5:10:08:8e:f2:9b:95:e3:
c7:8f:df:f4:f0:7b:45:52:22:3f:c8:05:bd:42:89:58:c3:bb:
64:39:14:d4:f8:24:1e:05:32:4b:4f:c0:66:5d:ec:8c:26:47:
55:b7:2a:6c:16:01:2f:96:94:30:f2:81:61:c8:33:70:46:3c:
00:d7:29:a9:a6:97:6d:ea:81:df:0f:b7:82:d5:1d:9c:12:92:
cb:b9:05:19:66:d2:d9:56:96:74:02:aa:5a:c1:04:fa:c6:ae:
ec:b9:b6:31:97:ac:74:0b:8d:a7:2c:87:02:26:a0:39:0a:f0:
da:46:73:f1:f6:d7:c1:13:cb:3c:db:e5:10:99:2f:54:14:9a:
d9:ac:1f:21:bd:56:f4:be:56:2c:1e:ac:6d:fb:89:5c:56:87:
76:33:3b:f9:04:6a:4c:db:23:27:50:e9:17:83:32:bf:01:02:
72:e5:43:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:33 2023 by rpki-client on console-fra.rpki-client.org