Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/Cy6bVTFwxBfywC0ayuceoCmNvZM.roa
File: Cy6bVTFwxBfywC0ayuceoCmNvZM.roa (raw, json)
Hash identifier: X6KSdS/MpYGb8D/xj1AcF/Re8WHfYljrChV8YiZm14Y=
Subject key identifier: 0B:2E:9B:55:31:70:C4:17:F2:C0:2D:1A:CA:E7:1E:A0:29:8D:BD:93
Certificate issuer: /CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Certificate serial: 01668B8F
Authority key identifier: 80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/Cy6bVTFwxBfywC0ayuceoCmNvZM.roa
Signing time: Sat 01 Jan 2022 04:57:56 +0000
ROA not before: Sat 01 Jan 2022 04:57:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13032
IP address blocks: 2a09:c404::/30 maxlen: 30
2a09:c400::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23497615 (0x1668b8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Validity
Not Before: Jan 1 04:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b2e9b553170c417f2c02d1acae71ea0298dbd93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fb:af:4b:a9:0a:55:ba:e9:0b:3e:25:cb:de:
7b:7d:ff:73:68:b6:d5:dc:2e:d9:39:17:12:55:4d:
58:76:1b:71:f1:ba:7d:c3:93:39:37:f0:da:16:1a:
87:d5:00:7d:31:fe:89:85:27:7b:79:72:32:8f:de:
35:e9:d4:a0:be:d8:ec:f7:c7:de:b2:30:f1:ee:fc:
c2:c8:51:e2:af:56:37:fa:56:92:d8:50:39:54:a0:
97:28:de:38:93:b0:e8:4c:42:53:d2:2a:f5:d5:5e:
8b:2a:e0:4f:ca:31:23:90:17:7e:4f:8b:d2:3b:77:
e6:a9:3e:53:6e:46:83:aa:1c:8d:f2:e8:4c:98:be:
25:06:a6:d6:9c:29:af:95:c5:25:8f:04:b4:fc:f6:
fd:01:1e:55:36:f3:9b:f1:df:a7:37:1c:3d:bf:36:
9b:5c:ec:d3:1c:30:04:1e:c4:d8:b2:3c:db:f9:41:
a1:98:d6:be:96:ef:d1:2b:f6:aa:f9:46:15:d4:d1:
c3:a3:22:f3:4c:72:e1:2c:6e:4d:90:66:6e:70:98:
fe:8b:f9:ed:1a:67:f9:e0:93:a6:ff:54:d6:d3:ef:
52:b4:89:70:8a:1d:42:5f:e9:6b:49:9a:33:7e:24:
b5:17:34:e1:2b:0d:75:7c:c7:d7:14:ee:6e:b0:75:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:2E:9B:55:31:70:C4:17:F2:C0:2D:1A:CA:E7:1E:A0:29:8D:BD:93
X509v3 Authority Key Identifier:
keyid:80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/Cy6bVTFwxBfywC0ayuceoCmNvZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/gOSEhc6bDkJWQIBO3A7SumuPS48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:c400::/29
Signature Algorithm: sha256WithRSAEncryption
94:1b:84:14:93:6a:b9:4d:f2:d1:db:21:bc:94:90:c0:96:0e:
c4:2d:c1:44:e3:6d:97:6c:7a:1f:2f:b2:50:78:2b:14:1d:03:
6e:22:a3:48:a1:3e:af:f7:a9:47:63:c0:2c:ae:e9:8c:13:f1:
a6:03:ba:3d:49:56:f7:20:4d:a9:06:64:9e:10:15:8d:20:a3:
a4:65:d9:df:95:7f:4e:fa:95:16:20:41:66:27:3a:43:5c:f0:
40:67:10:00:d2:9c:18:1b:c1:a7:17:f3:30:16:c6:72:cb:0e:
b6:57:af:76:44:c8:94:33:dc:31:b1:94:12:8a:3b:b9:81:c3:
4b:4d:12:b6:19:dd:db:42:74:5b:3a:dc:5d:22:d3:e7:a6:e4:
ea:07:ae:ee:3b:c1:ef:79:84:9c:7a:ab:dd:0e:c4:97:15:8f:
16:1a:4a:78:05:b8:81:72:da:b1:c0:16:25:48:af:a3:3a:dd:
42:bf:54:e9:fa:3d:1d:22:16:d6:94:a9:27:b2:64:b7:92:bc:
51:f1:44:2d:4b:e4:e5:06:7c:1b:a3:35:a1:ca:cd:d0:d4:b5:
91:a1:0b:74:d2:f0:e1:7b:f1:dd:2a:85:a2:27:8e:3b:c3:91:
41:22:de:0a:3d:6e:0e:51:92:bc:12:77:41:a3:8d:0e:34:45:
8e:f9:fa:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-ams.rpki-client.org