Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/yD_4j_BboUjFGGZ8-JNsrJSsF-8.roa
File: yD_4j_BboUjFGGZ8-JNsrJSsF-8.roa (raw, json)
Hash identifier: 8zW/+y/Ki5eN6jwWmf1epeWLg8/Plq7wRZgE3NTFNEU=
Subject key identifier: C8:3F:F8:8F:F0:5B:A1:48:C5:18:66:7C:F8:93:6C:AC:94:AC:17:EF
Certificate issuer: /CN=68c0f2d0776f7e1d349075881c35e9d387463405
Certificate serial: 018A2B9739DEC1886D5BEE477F15AF5A3EA5
Authority key identifier: 68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/yD_4j_BboUjFGGZ8-JNsrJSsF-8.roa
Signing time: Fri 25 Aug 2023 07:27:25 +0000
ROA not before: Fri 25 Aug 2023 07:27:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 2a13:9600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2b:97:39:de:c1:88:6d:5b:ee:47:7f:15:af:5a:3e:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c0f2d0776f7e1d349075881c35e9d387463405
Validity
Not Before: Aug 25 07:27:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c83ff88ff05ba148c518667cf8936cac94ac17ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:8f:61:8e:b8:65:4d:8a:93:b7:e2:27:da:
1d:ea:11:29:0c:16:4e:22:98:c9:57:17:ec:2d:b0:
53:06:af:01:38:49:76:2b:8a:04:2f:12:29:1a:3f:
94:9d:a0:f6:71:1c:7e:2c:cd:5f:de:7d:dd:f1:42:
54:f4:43:d5:58:20:01:5b:e2:ab:3c:18:96:89:54:
7e:80:62:b2:e1:9c:f6:58:7b:e1:35:91:ee:7a:32:
82:d4:c4:d0:fa:22:bc:21:5a:db:0b:c2:24:ee:cd:
b7:94:3a:04:21:23:ee:29:b5:30:a1:49:8d:00:12:
e7:25:58:ca:e6:66:2d:5f:a1:72:14:58:a5:29:a4:
a6:c6:6a:84:c2:c8:2e:01:62:91:3e:f5:f7:73:b6:
32:bb:53:a4:f6:be:0a:77:8b:6e:de:1d:2f:46:e2:
0c:4f:9c:2a:b6:84:25:37:c0:6e:40:52:1c:f1:1a:
ab:25:68:eb:0e:5a:b3:e5:bb:eb:ae:2c:d6:c8:9c:
a9:e8:a3:75:4a:71:d8:0a:01:1a:81:b0:df:8e:82:
3b:0f:de:a8:ee:f5:94:81:98:3d:dd:ec:dc:f0:cf:
66:cc:53:81:ec:66:36:7c:45:68:b5:d7:98:60:3f:
c8:c7:c9:6d:9c:fb:f4:05:dc:f7:75:09:50:30:9e:
10:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3F:F8:8F:F0:5B:A1:48:C5:18:66:7C:F8:93:6C:AC:94:AC:17:EF
X509v3 Authority Key Identifier:
keyid:68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/yD_4j_BboUjFGGZ8-JNsrJSsF-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9600::/29
Signature Algorithm: sha256WithRSAEncryption
4c:f1:73:26:98:d7:0f:e8:73:f4:d7:e0:00:0c:62:12:7f:46:
b4:db:12:9d:35:a5:e2:e1:e9:7c:3a:cd:66:f2:31:0b:96:3f:
fb:0a:53:4c:89:8d:f4:d1:d8:1e:1c:20:54:00:62:96:cb:46:
a3:53:d1:41:aa:9a:12:e9:ed:e9:8c:7a:12:6b:f8:bc:22:aa:
62:da:8c:1b:ed:f7:a7:21:40:e9:5e:97:b9:1c:63:0f:59:45:
b0:a6:54:ee:f9:ba:d1:2e:3c:ec:7d:56:7f:fe:03:05:1b:7a:
1e:6d:aa:12:94:2a:be:a2:c6:6a:0e:c1:c4:cb:89:18:8b:1b:
62:66:e9:47:9f:90:54:c3:ac:f0:ca:de:01:6e:13:e2:c2:1f:
7d:36:e5:3d:f1:8b:c9:80:5e:1d:bb:d4:b9:a0:44:ff:99:c6:
06:2c:88:91:ee:0b:2d:23:ea:2d:4f:d6:a3:7b:0e:4a:e0:2a:
70:ff:6d:18:41:01:1e:92:75:f8:d5:66:89:a7:a1:bb:51:32:
7b:cd:47:40:2e:1d:4f:d8:5a:8b:c2:b9:62:e8:a6:38:d2:f5:
d0:df:6b:25:1e:fc:45:de:a7:60:ac:f1:ea:43:0b:cd:9d:56:
9e:b7:63:bb:27:cd:f7:84:58:e9:2d:82:81:ed:8d:4b:aa:d4:
ae:54:e0:16
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYorlznewYhtW+5HfxWvWj6lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YzBmMmQwNzc2ZjdlMWQzNDkwNzU4ODFjMzVlOWQzODc0
NjM0MDUwHhcNMjMwODI1MDcyNzI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODNmZjg4ZmYwNWJhMTQ4YzUxODY2N2NmODkzNmNhYzk0YWMxN2VmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyyPYY64ZU2Kk7fiJ9od6hEpDBZO
IpjJVxfsLbBTBq8BOEl2K4oELxIpGj+UnaD2cRx+LM1f3n3d8UJU9EPVWCABW+Kr
PBiWiVR+gGKy4Zz2WHvhNZHuejKC1MTQ+iK8IVrbC8Ik7s23lDoEISPuKbUwoUmN
ABLnJVjK5mYtX6FyFFilKaSmxmqEwsguAWKRPvX3c7Yyu1Ok9r4Kd4tu3h0vRuIM
T5wqtoQlN8BuQFIc8RqrJWjrDlqz5bvrrizWyJyp6KN1SnHYCgEagbDfjoI7D96o
7vWUgZg93ezc8M9mzFOB7GY2fEVotdeYYD/Ix8ltnPv0Bdz3dQlQMJ4QUQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFMg/+I/wW6FIxRhmfPiTbKyUrBfvMB8GA1UdIwQY
MBaAFGjA8tB3b34dNJB1iBw16dOHRjQFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1EeTBIZHZmaDAwa0hXSUhEWHAwNGRHTkFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS84NGVlZGMtYTJmNi00YTM5LWE5MTgt
ZjlkOWMwM2Q0YjRjLzEveURfNGpfQmJvVWpGR0daOC1KTnNySlNzRi04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS84NGVlZGMtYTJmNi00YTM5LWE5MTgtZjlkOWMwM2Q0YjRj
LzEvYU1EeTBIZHZmaDAwa0hXSUhEWHAwNGRHTkFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhOWADAN
BgkqhkiG9w0BAQsFAAOCAQEATPFzJpjXD+hz9NfgAAxiEn9GtNsSnTWl4uHpfDrN
ZvIxC5Y/+wpTTImN9NHYHhwgVABilstGo1PRQaqaEunt6Yx6Emv4vCKqYtqMG+33
pyFA6V6XuRxjD1lFsKZU7vm60S487H1Wf/4DBRt6Hm2qEpQqvqLGag7BxMuJGIsb
YmbpR5+QVMOs8MreAW4T4sIffTblPfGLyYBeHbvUuaBE/5nGBiyIke4LLSPqLU/W
o3sOSuAqcP9tGEEBHpJ1+NVmiaehu1Eye81HQC4dT9hai8K5YuimONL10N9rJR78
Rd6nYKzx6kMLzZ1WnrdjuyfN94RY6S2Cge2NS6rUrlTgFg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:03 2025 by rpki-client