Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YW-bwBvWdAAQHng-120Is9X1cOU.roa
File: YW-bwBvWdAAQHng-120Is9X1cOU.roa (raw, json)
Hash identifier: Z6rG6ssxkPXdX30eJDXb086u1pgjVweL83/8ZAoi06I=
Subject key identifier: 61:6F:9B:C0:1B:D6:74:00:10:1E:78:3E:D7:6D:08:B3:D5:F5:70:E5
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 83069A
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YW-bwBvWdAAQHng-120Is9X1cOU.roa
Signing time: Wed 25 May 2022 18:27:43 +0000
ROA not before: Wed 25 May 2022 18:27:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209263
IP address blocks: 2a12:bec0:60::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8586906 (0x83069a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: May 25 18:27:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=616f9bc01bd67400101e783ed76d08b3d5f570e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:2d:a4:f3:aa:23:ef:11:6f:48:52:53:55:
bb:b1:22:36:4c:33:b9:67:5d:8f:3d:68:0f:ef:d3:
2d:cd:59:71:0c:51:58:b4:2f:46:1e:16:81:7d:34:
db:93:1b:67:28:af:04:ac:9f:80:74:62:8f:54:a1:
be:89:06:21:e2:cf:8c:05:0b:68:06:6f:b8:77:31:
f1:8d:7e:88:0c:9e:a0:b1:81:90:56:32:f7:09:ac:
a8:8b:7e:09:ab:7f:80:f9:b3:3d:d6:a0:61:39:de:
fa:fe:9d:a3:78:3b:de:57:fe:26:e2:c2:13:46:a5:
6f:0d:09:1e:e1:20:57:c3:64:85:68:14:0c:ee:63:
1c:20:64:e2:36:ed:fb:ec:a4:84:9b:1f:a4:7b:90:
e8:7d:6d:de:61:4f:91:bc:4c:62:88:f0:01:20:fb:
b2:97:d1:7a:f9:2a:a4:31:c8:2f:be:f6:55:40:3e:
e6:59:0f:81:e6:de:c4:a3:e7:d0:68:6e:23:5c:c3:
ed:e4:f8:52:c6:5b:6f:23:95:47:fb:df:ab:6f:28:
77:3a:2f:ee:01:b2:47:62:b3:3d:16:c8:4b:64:4e:
08:90:30:b2:15:a9:1f:b4:4f:cc:cb:95:23:37:b8:
04:38:26:f4:d3:2d:33:db:78:41:cb:63:0e:6c:86:
bb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6F:9B:C0:1B:D6:74:00:10:1E:78:3E:D7:6D:08:B3:D5:F5:70:E5
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YW-bwBvWdAAQHng-120Is9X1cOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:60::/48
Signature Algorithm: sha256WithRSAEncryption
3e:e7:a6:bd:1d:4e:c7:b5:8d:d3:42:81:79:27:21:c2:d2:ab:
6f:9f:d8:74:b3:da:cb:4e:09:f0:fe:f4:fe:8a:b7:bb:7f:8b:
15:b7:e9:ac:b4:7c:2c:41:4c:f4:be:f7:cd:4a:96:06:e9:df:
3d:c8:17:dd:47:e4:17:82:dd:11:83:30:f7:be:e9:69:4e:e9:
9f:3e:67:08:54:eb:98:00:6c:bc:da:bd:11:a3:9c:c1:9b:19:
bb:19:c4:2f:fc:75:f1:75:6f:2c:a2:db:2b:34:08:15:d6:ec:
a9:9c:48:4d:84:b4:76:4d:09:87:62:a3:e6:0d:f8:b7:c2:e3:
4a:cf:f7:23:66:b9:50:a1:78:8d:6b:17:5a:18:49:0c:ca:a4:
88:fa:95:6f:50:3e:54:40:39:de:aa:5a:40:2a:52:af:32:89:
07:c3:cc:9e:c1:64:33:25:71:0b:ef:e4:ca:9c:eb:53:f4:0d:
ea:55:a8:30:c7:78:5a:af:51:33:e8:ce:2b:76:d0:23:92:0a:
a3:96:e0:5d:1c:e5:21:8b:06:67:a3:20:ad:80:ec:22:2e:65:
93:11:74:07:a3:e7:af:bc:d2:6b:9b:ff:78:f7:1a:41:1b:da:
ba:6b:24:cd:21:f3:cd:d8:e8:b9:9b:60:98:0c:47:62:53:55:
f1:ee:c0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org