Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bfb27a-f005-48cb-9473-ffb2ef4bfe25/1/UagpDiuORDzgRo_ycE61fU3gI00.roa
File: UagpDiuORDzgRo_ycE61fU3gI00.roa (raw, json)
Hash identifier: txM+O4fbzfW5IBUggG2eP80LbGgncNH+SiGk3pY2OXY=
Subject key identifier: 51:A8:29:0E:2B:8E:44:3C:E0:46:8F:F2:70:4E:B5:7D:4D:E0:23:4D
Certificate issuer: /CN=ff597b40c6d4469f9b914a78dc8ec439323b0fb8
Certificate serial: 010A7267
Authority key identifier: FF:59:7B:40:C6:D4:46:9F:9B:91:4A:78:DC:8E:C4:39:32:3B:0F:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_1l7QMbURp-bkUp43I7EOTI7D7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bfb27a-f005-48cb-9473-ffb2ef4bfe25/1/UagpDiuORDzgRo_ycE61fU3gI00.roa
Signing time: Sat 01 Jan 2022 02:53:13 +0000
ROA not before: Sat 01 Jan 2022 02:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0b:4581::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17461863 (0x10a7267)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff597b40c6d4469f9b914a78dc8ec439323b0fb8
Validity
Not Before: Jan 1 02:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51a8290e2b8e443ce0468ff2704eb57d4de0234d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0b:9a:2d:73:d4:e3:65:eb:77:76:8c:6b:21:
99:5b:30:13:fb:01:d5:a0:ba:71:b9:6b:e6:7e:15:
99:6d:16:b4:70:9f:4e:be:60:e4:7b:87:3a:0d:02:
21:80:a1:94:68:c3:ba:06:a2:89:87:54:a2:67:1c:
27:f7:e2:d3:3f:50:74:c1:f8:8f:80:a9:7c:fb:5f:
a4:f7:70:20:b1:33:29:e5:ef:ba:31:7d:3d:eb:8f:
ab:af:d7:c8:32:06:ab:27:f9:89:90:bd:95:c8:cc:
96:f5:a1:59:44:b7:5f:3a:21:84:97:00:8d:84:71:
49:3a:5a:6a:e3:09:d1:db:01:d6:d7:cc:a7:7c:38:
26:18:50:c9:b5:2f:a9:ca:0a:f9:5b:9f:8f:d9:78:
1d:eb:12:e2:2d:1d:f4:c3:d1:51:44:5f:41:98:85:
ce:be:05:5b:2d:0d:b2:dc:09:9c:44:d4:2e:7a:95:
8d:73:69:7d:73:15:c3:13:f2:13:9a:c5:0d:b8:37:
ef:f4:36:df:58:ef:47:2a:d8:db:10:f7:8a:d6:92:
05:9c:82:86:48:23:15:d4:be:3e:2e:04:65:fa:04:
18:59:48:70:ba:ee:55:c1:eb:f9:a5:12:e4:39:ba:
60:6b:3b:3a:59:86:3d:87:89:f5:0a:83:31:e5:05:
0b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A8:29:0E:2B:8E:44:3C:E0:46:8F:F2:70:4E:B5:7D:4D:E0:23:4D
X509v3 Authority Key Identifier:
keyid:FF:59:7B:40:C6:D4:46:9F:9B:91:4A:78:DC:8E:C4:39:32:3B:0F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_1l7QMbURp-bkUp43I7EOTI7D7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bfb27a-f005-48cb-9473-ffb2ef4bfe25/1/UagpDiuORDzgRo_ycE61fU3gI00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bfb27a-f005-48cb-9473-ffb2ef4bfe25/1/_1l7QMbURp-bkUp43I7EOTI7D7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4581::/48
Signature Algorithm: sha256WithRSAEncryption
0f:29:9b:37:65:c5:fb:c9:8f:86:a1:2e:63:56:77:3b:6e:6a:
c6:76:2b:94:06:81:55:3d:c6:3f:51:58:f4:3d:0f:01:4d:37:
7c:bc:70:5e:a6:39:2c:e1:6f:8c:7c:08:89:21:2f:49:47:32:
f2:e3:bd:0c:1b:d7:c7:1f:e8:0f:6d:d1:ee:ff:12:ba:32:ea:
97:17:d5:91:7f:ec:00:71:c5:24:3a:04:c0:9f:80:72:2e:69:
ac:00:0b:8a:e9:7e:c9:c3:49:f6:27:d7:26:29:5c:3d:9b:d3:
02:5d:3a:9d:42:82:3d:a0:b7:20:f9:d9:2d:31:d4:68:71:10:
7c:d5:8d:d4:37:05:6e:12:d4:6d:24:c1:c8:fa:01:6e:98:6d:
a0:ac:28:7f:99:06:91:a7:15:02:43:9c:da:44:14:29:69:63:
60:75:c9:7a:30:3f:46:dd:d6:42:e9:27:ce:2d:c2:12:fb:59:
3a:6c:01:29:7e:38:f6:74:52:9c:d3:af:7d:92:b1:6c:e8:4e:
ec:51:e1:1b:8e:21:eb:53:3f:45:b8:c9:72:f5:17:35:ac:5d:
19:c3:99:ff:e9:ab:5e:fb:55:f5:2b:fb:40:84:78:8e:7a:62:
2c:8e:93:f0:d8:36:ad:ce:d3:06:d9:ae:1d:92:66:df:3f:c6:
e3:85:65:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:11 2024 by rpki-client on console-ams.rpki-client.org