Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/YoQOVyMG6gE6IcuXFx-eRpOTMdI.roa
File: YoQOVyMG6gE6IcuXFx-eRpOTMdI.roa (raw, json)
Hash identifier: KDyJNgubLViJD+sHqxxV8gQFxmCsNiCbE0APym0MydY=
Subject key identifier: 62:84:0E:57:23:06:EA:01:3A:21:CB:97:17:1F:9E:46:93:93:31:D2
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 076B0082
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/YoQOVyMG6gE6IcuXFx-eRpOTMdI.roa
Signing time: Sat 01 Jan 2022 00:52:08 +0000
ROA not before: Sat 01 Jan 2022 00:52:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64475
IP address blocks: 2a0f:3786:80::/41 maxlen: 48
2a0f:3786:20::/44 maxlen: 44
2a0f:3786:10::/44 maxlen: 44
2a0f:3786::/40 maxlen: 40
2a0f:3785::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124452994 (0x76b0082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 1 00:52:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62840e572306ea013a21cb97171f9e46939331d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:52:30:89:a0:10:cc:a9:f0:0f:37:4d:08:af:
be:2e:63:8d:e5:8d:8a:fe:58:78:17:4b:17:d0:6a:
54:28:95:e0:ce:bd:da:7b:0f:1e:c6:6e:e7:8e:f5:
e5:86:28:6f:82:be:ed:86:10:77:15:b2:e1:94:9f:
94:fc:95:f7:46:7b:c0:18:31:23:59:31:7c:77:e9:
49:38:a4:55:bf:d6:6a:bb:47:98:11:39:0e:fc:43:
50:e2:57:81:e2:42:cc:a4:cf:87:af:51:60:66:81:
c4:c8:84:80:e7:f9:73:dc:13:bd:10:4e:a3:b4:64:
40:11:40:f9:4f:ef:04:ef:e9:82:4a:f0:ee:89:d4:
31:84:27:62:21:fd:68:15:9d:e0:f6:d6:c6:14:e2:
9d:14:e2:df:78:4b:c2:3e:bd:8c:c0:07:7c:63:cf:
ad:a6:6c:52:e0:be:3d:aa:67:89:8f:30:31:e6:57:
61:9a:15:8d:6b:27:ef:78:f3:47:fe:f6:82:27:b8:
5c:f9:86:e3:37:46:9e:96:f3:04:25:42:ed:e7:24:
fc:a9:80:c6:cb:de:53:00:2d:f5:bd:d4:e3:3d:8e:
11:42:6e:7f:76:b3:e8:2b:c6:ef:d1:40:88:26:cc:
16:59:2d:3a:74:4f:a6:ec:72:cf:1c:4e:5b:d5:ae:
41:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:84:0E:57:23:06:EA:01:3A:21:CB:97:17:1F:9E:46:93:93:31:D2
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/YoQOVyMG6gE6IcuXFx-eRpOTMdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3785::-2a0f:3786:ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
cc:60:04:29:6f:31:52:36:53:11:a1:0a:0f:13:1e:38:ee:a3:
5d:dd:34:0a:b9:37:55:91:da:5b:b9:a3:c1:1b:1d:f7:81:93:
8d:5f:7b:77:92:70:11:4c:45:54:79:4b:c0:30:40:4e:85:9b:
4d:e0:d3:be:00:ba:e4:29:5a:b5:7e:7a:8a:fd:d2:09:cf:07:
de:18:82:55:f3:8a:3b:dd:a1:c3:6e:f7:ad:96:ec:b3:4e:e3:
a0:ae:ec:41:05:f7:f5:0b:23:80:f8:ef:c0:ec:a1:4d:bb:dd:
ee:2d:c4:38:81:28:36:b3:c8:d8:df:c1:97:08:af:dc:7c:48:
a5:bb:28:19:44:bf:78:e7:10:8d:56:2d:22:36:2b:6c:7e:63:
3a:88:ea:cf:99:d4:67:fa:a1:b1:d4:ec:aa:1b:1f:75:5e:dc:
96:4c:99:81:d3:2b:bb:de:13:d4:f1:8d:60:76:73:4a:bf:af:
49:cc:d9:67:d7:fd:1c:9d:1b:f5:54:63:fa:33:63:37:1e:0b:
f6:9e:3b:00:1e:ee:93:b7:4b:4a:e3:fd:d5:7e:90:7e:0b:35:
59:83:e8:0f:10:7b:5f:bc:a6:a1:3b:eb:38:0f:2b:03:73:82:
50:90:72:7f:d4:57:55:7b:1f:87:06:d5:2a:42:4a:ad:11:31:
19:b4:c5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org