Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/YPhLhKY68qriESdiN-fe6Fkr-tw.roa
File: YPhLhKY68qriESdiN-fe6Fkr-tw.roa (raw, json)
Hash identifier: 5K2UT1iuAjMk+iec5VOqf/475TKIZGz9+7G+u/8K/pE=
Subject key identifier: 60:F8:4B:84:A6:3A:F2:AA:E2:11:27:62:37:E7:DE:E8:59:2B:FA:DC
Certificate issuer: /CN=a9f2fdea263b79fce11389052b0cd940995c6dfe
Certificate serial: 0181D3152A4670AE1BCB78BDD4F3AB516557
Authority key identifier: A9:F2:FD:EA:26:3B:79:FC:E1:13:89:05:2B:0C:D9:40:99:5C:6D:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qfL96iY7efzhE4kFKwzZQJlcbf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/YPhLhKY68qriESdiN-fe6Fkr-tw.roa
Signing time: Wed 06 Jul 2022 10:36:28 +0000
ROA not before: Wed 06 Jul 2022 10:36:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204471
IP address blocks: 2a12:d8c0::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d3:15:2a:46:70:ae:1b:cb:78:bd:d4:f3:ab:51:65:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9f2fdea263b79fce11389052b0cd940995c6dfe
Validity
Not Before: Jul 6 10:36:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60f84b84a63af2aae211276237e7dee8592bfadc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e6:50:56:93:a7:73:e4:dd:89:b0:bd:c7:29:
ed:08:bd:ad:ea:fb:57:fb:c5:29:b2:01:a6:02:65:
07:f9:b1:fd:01:7a:83:b3:8c:a8:16:9b:e9:f2:dc:
ec:51:b3:8a:bd:f6:39:7f:f5:42:77:bc:03:79:2a:
ea:69:11:9b:c3:71:ac:e4:bd:5b:b4:3f:c3:dc:f4:
9e:3c:26:92:96:e1:96:20:cb:5c:13:dd:d9:cd:36:
52:d4:9c:a1:6f:46:63:23:c5:c3:15:db:4c:56:83:
a9:80:3a:74:ad:c9:4d:d0:82:e3:a9:65:49:3f:d4:
6c:fe:1a:7e:7e:1f:83:b5:ee:b4:f5:f5:26:04:3d:
a7:b6:7d:54:ef:4b:35:e6:fd:c4:ae:43:3a:73:d9:
45:03:0b:9e:aa:fe:be:d1:1f:0a:39:4e:97:3d:35:
db:4f:65:8f:62:4b:54:91:f1:ff:60:b7:16:49:85:
21:6a:c5:c6:e9:1e:9a:4e:1c:c6:e7:b2:09:de:97:
95:7d:ea:26:f9:ee:0a:64:bc:ba:47:90:0c:e8:31:
8a:ca:c4:e7:31:df:39:6e:23:b8:c2:c0:73:94:7d:
7c:4c:e5:c5:b3:6e:f9:5c:30:3d:b2:da:63:18:3f:
62:45:ae:d6:22:9c:7a:6e:18:2d:4e:0c:f5:72:31:
c7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F8:4B:84:A6:3A:F2:AA:E2:11:27:62:37:E7:DE:E8:59:2B:FA:DC
X509v3 Authority Key Identifier:
keyid:A9:F2:FD:EA:26:3B:79:FC:E1:13:89:05:2B:0C:D9:40:99:5C:6D:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qfL96iY7efzhE4kFKwzZQJlcbf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/YPhLhKY68qriESdiN-fe6Fkr-tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/qfL96iY7efzhE4kFKwzZQJlcbf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d8c0::/40
Signature Algorithm: sha256WithRSAEncryption
28:9e:89:91:81:0c:1e:a3:aa:08:fa:14:00:40:02:f7:77:f5:
33:8f:9b:c6:eb:d0:46:c2:f6:db:7e:f1:b4:13:38:2a:cb:ea:
d7:84:31:c2:00:1e:ab:92:dc:33:50:8f:d6:49:71:e7:56:f3:
72:9d:53:d9:80:16:47:65:ec:27:47:2d:d4:e6:5c:f5:b2:a9:
ad:51:f5:6e:6b:5e:3b:32:6e:0a:80:66:7d:27:4c:83:7c:65:
ba:be:4b:a5:92:ef:bd:4c:fa:92:fe:0f:91:0a:04:b7:74:35:
f4:4c:55:89:fd:3b:3d:64:36:1a:9b:c9:ce:11:26:e3:1e:ab:
bf:a2:f8:74:07:16:9f:54:e0:9c:1b:91:20:a2:4a:d2:f1:cf:
bf:5d:c4:75:53:2a:2b:63:42:34:42:80:92:b7:4b:b7:52:ff:
60:e8:fb:94:04:8d:0b:c5:80:a8:7e:c2:29:dc:be:4c:0e:a4:
ca:08:f0:55:51:60:42:f6:7a:31:66:ce:73:f0:85:e0:f3:f3:
c8:66:8e:99:39:ef:e5:14:99:b9:8f:fc:2a:a9:ad:c7:eb:d8:
13:bc:16:69:48:fc:44:71:6b:72:9a:87:72:60:73:6c:73:a1:
17:91:d0:3e:0a:25:a8:74:f6:b8:84:87:a0:31:c9:b4:58:74:
3f:14:2c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:16 2024 by rpki-client on console-fra.rpki-client.org