Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/yeDIiDO4lz1wyss3Hp2IjceZHkU.roa
File: yeDIiDO4lz1wyss3Hp2IjceZHkU.roa (raw, json)
Hash identifier: sVcA6iu4AKK3llEXLZpqI/QTFcVcHMdiiHIQfoQBfg8=
Subject key identifier: C9:E0:C8:88:33:B8:97:3D:70:CA:CB:37:1E:9D:88:8D:C7:99:1E:45
Certificate issuer: /CN=f07d10e2f67bd207ef5e57d0531446ba74ca1b35
Certificate serial: 018486C06789450C676540277AC9D0509BAE
Authority key identifier: F0:7D:10:E2:F6:7B:D2:07:EF:5E:57:D0:53:14:46:BA:74:CA:1B:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8H0Q4vZ70gfvXlfQUxRGunTKGzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/yeDIiDO4lz1wyss3Hp2IjceZHkU.roa
Signing time: Thu 17 Nov 2022 18:01:07 +0000
ROA not before: Thu 17 Nov 2022 18:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:fb00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:c0:67:89:45:0c:67:65:40:27:7a:c9:d0:50:9b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f07d10e2f67bd207ef5e57d0531446ba74ca1b35
Validity
Not Before: Nov 17 18:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9e0c88833b8973d70cacb371e9d888dc7991e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:98:fe:31:49:81:8d:41:d9:d7:84:fa:6e:b1:
e1:f9:2f:a4:48:1c:ff:24:6c:b1:30:c1:a1:5b:aa:
31:07:5f:c9:97:d2:39:c6:65:c1:47:f1:61:d4:91:
3a:85:92:40:28:7f:05:1a:b0:2e:55:82:8e:79:73:
df:94:d2:b6:54:45:ea:fc:38:54:c4:ee:74:a0:61:
b6:b9:0f:cb:a5:b8:41:10:f5:63:78:62:57:49:e3:
f0:65:3e:3a:37:48:57:a0:e2:7a:a1:ad:a5:5f:4f:
a3:fe:11:ee:e1:06:5b:be:14:7d:32:14:f4:0e:23:
66:52:ac:b8:94:69:63:b6:b3:39:bd:2c:d6:28:69:
c5:08:0d:8c:1a:da:f2:06:28:fc:ea:98:e6:38:8a:
32:08:63:e7:01:20:25:fc:a2:d2:ba:76:5c:cf:0f:
af:55:eb:5f:a0:e8:66:26:97:83:4d:1e:ce:94:10:
e2:12:d9:75:2a:63:67:81:8e:91:d5:53:e4:79:78:
d1:af:1e:d5:1b:ea:0d:af:55:b6:64:7b:1f:6f:50:
54:ab:ab:60:ee:1e:8a:03:e6:c3:06:11:5b:d6:de:
c9:b7:d5:3a:c8:ed:ef:f1:2a:34:3d:6a:cb:f9:7f:
9b:3a:58:16:20:6b:d6:68:49:b5:2a:e4:7b:a4:40:
24:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E0:C8:88:33:B8:97:3D:70:CA:CB:37:1E:9D:88:8D:C7:99:1E:45
X509v3 Authority Key Identifier:
keyid:F0:7D:10:E2:F6:7B:D2:07:EF:5E:57:D0:53:14:46:BA:74:CA:1B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8H0Q4vZ70gfvXlfQUxRGunTKGzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/yeDIiDO4lz1wyss3Hp2IjceZHkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/8H0Q4vZ70gfvXlfQUxRGunTKGzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
89:8a:0d:5b:46:be:a4:82:9a:ad:0d:ff:d7:70:5f:18:6a:34:
b3:35:8e:d1:0e:1a:a6:fe:75:d0:ba:2f:24:04:80:ca:f7:9b:
0e:99:2b:36:02:d1:a0:8a:68:64:41:ae:f2:17:c5:16:43:c5:
43:3d:ec:de:89:c2:ce:86:78:df:b3:d9:5b:b3:e9:91:c8:83:
a6:e1:7a:35:91:ac:e9:c2:a4:3c:54:9c:b5:fd:fc:c7:27:fb:
d0:b3:d3:60:0c:12:f4:ea:e7:7c:85:bc:a2:c5:83:17:0f:ca:
bc:62:4f:59:70:6c:c4:4c:c8:78:7e:ae:06:c9:08:52:aa:7f:
04:f6:40:4d:9b:68:cd:3f:af:34:e9:96:8e:70:9b:4b:b9:70:
0d:0a:ae:45:1c:a3:6c:fc:c3:5b:7c:db:a7:e3:10:eb:40:89:
3a:17:f1:eb:65:22:09:82:d4:e1:05:32:db:54:ba:fb:9c:85:
97:87:cd:d5:81:30:50:1d:61:26:bc:de:25:63:89:74:38:fb:
ce:d7:ea:64:98:c2:58:92:54:32:99:16:f3:d7:c5:cd:bb:ef:
5f:83:bf:47:39:ca:5a:95:81:88:ff:c9:a8:d8:aa:b3:46:84:
d5:f5:d3:ea:62:49:48:f8:16:89:29:2d:41:eb:a1:9d:c4:3c:
78:9e:ca:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:17 2023 by rpki-client on console-ams.rpki-client.org