Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/lYPKgx2D_OktKsnx8vc6ILrwbuw.roa
File: lYPKgx2D_OktKsnx8vc6ILrwbuw.roa (raw, json)
Hash identifier: yITuziI7v7ThFMW7pXct/WkfNbYrdnKxnMki7UHtyRI=
Subject key identifier: 95:83:CA:83:1D:83:FC:E9:2D:2A:C9:F1:F2:F7:3A:20:BA:F0:6E:EC
Certificate issuer: /CN=f1bbf9bee531f3dee2d03bbf4e69ef82eedb99af
Certificate serial: 02B7D466
Authority key identifier: F1:BB:F9:BE:E5:31:F3:DE:E2:D0:3B:BF:4E:69:EF:82:EE:DB:99:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bv5vuUx897i0Du_Tmnvgu7bma8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/lYPKgx2D_OktKsnx8vc6ILrwbuw.roa
Signing time: Thu 06 Jan 2022 16:48:32 +0000
ROA not before: Thu 06 Jan 2022 16:48:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 2a01:46c0:8000::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45601894 (0x2b7d466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1bbf9bee531f3dee2d03bbf4e69ef82eedb99af
Validity
Not Before: Jan 6 16:48:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9583ca831d83fce92d2ac9f1f2f73a20baf06eec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e4:2c:5f:8f:ea:50:24:1c:5a:c9:22:5c:44:
5f:14:82:31:b2:f6:bf:0e:2f:a4:52:15:19:79:dd:
f5:fa:72:0a:28:7d:bc:45:b1:bd:0c:0f:42:19:8b:
64:6f:27:f3:ac:35:76:ce:79:4e:83:86:bf:82:09:
1c:2f:c6:8e:b0:1a:53:a8:24:e7:8f:0d:27:63:b5:
7c:47:1f:07:1c:69:7b:52:c5:3f:0d:5a:1b:c1:29:
f5:58:a5:3b:88:07:59:44:75:62:ba:5e:fd:37:20:
bb:27:cd:c0:d2:f5:a5:39:ea:93:a8:53:86:05:a2:
9f:c8:af:6b:9d:83:d9:c1:4e:8d:ac:66:27:dd:eb:
f9:d0:96:ad:e5:ac:38:1d:69:10:11:f0:db:b4:ef:
22:f7:36:08:80:6e:9e:f4:17:bb:58:4d:25:ef:95:
88:c4:64:35:be:31:53:5f:d2:7a:44:ab:75:f3:d6:
df:c3:4d:a3:0d:85:6d:03:0b:7d:22:d6:82:4f:e8:
77:66:a8:54:16:e1:c9:e3:f6:cc:6a:7c:cf:9a:70:
d5:ef:f3:f5:72:0d:7e:c9:d5:e8:10:24:4c:44:a9:
de:0a:de:02:b8:72:72:d7:34:85:dd:b5:fd:e8:16:
7a:1f:cd:64:28:04:08:7c:da:ca:39:42:a3:87:bd:
37:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:83:CA:83:1D:83:FC:E9:2D:2A:C9:F1:F2:F7:3A:20:BA:F0:6E:EC
X509v3 Authority Key Identifier:
keyid:F1:BB:F9:BE:E5:31:F3:DE:E2:D0:3B:BF:4E:69:EF:82:EE:DB:99:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bv5vuUx897i0Du_Tmnvgu7bma8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/lYPKgx2D_OktKsnx8vc6ILrwbuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/8bv5vuUx897i0Du_Tmnvgu7bma8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:46c0:8000::/33
Signature Algorithm: sha256WithRSAEncryption
8b:2b:6b:5e:4b:92:01:e7:92:95:9b:3a:48:7f:68:6c:3c:17:
a0:60:3f:15:01:e9:bd:91:0d:f0:20:f1:c9:47:dc:5a:c7:31:
8e:c6:ea:3a:a4:32:40:a4:5b:f5:92:e2:f5:5f:9f:7b:a3:57:
17:1a:7c:97:68:e2:7d:29:90:48:10:71:cd:ea:d1:ac:42:3a:
9e:b0:3b:de:12:6f:5c:e1:2f:8a:20:3c:a4:e0:be:08:cd:3f:
b3:ed:0a:d0:c5:14:a9:5e:b7:50:8e:52:43:0c:36:f4:ed:82:
1b:5b:23:33:50:3a:53:6e:f2:29:72:18:40:d5:1c:9c:13:33:
bb:e3:29:06:56:16:d4:3f:d8:00:74:15:91:92:f2:66:79:c8:
15:00:7a:6d:f9:77:6c:45:e2:e8:80:80:c9:d7:6b:e2:fc:8f:
60:cb:e3:05:13:3b:47:82:85:82:f6:17:e3:24:9e:37:0a:81:
74:ba:15:ab:f4:08:91:64:a2:cf:8c:aa:8d:32:b9:89:3f:c1:
85:fc:57:89:94:6e:f1:57:0c:51:c4:0c:65:82:3c:7d:2b:f6:
a9:d2:f0:75:8a:91:ea:d8:d8:02:f6:cd:01:6b:e1:7e:a4:9a:
fd:5e:71:51:6c:0c:79:99:18:6a:f9:ae:a6:5c:47:4a:bc:16:
1f:ae:8f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:27 2023 by rpki-client on console-fra.rpki-client.org