Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/lygb4249dWk-kM-HCkgF5BYP4eY.roa
File: lygb4249dWk-kM-HCkgF5BYP4eY.roa (raw, json)
Hash identifier: Ucpo7fY5iQXZhIBjbQurOynd6K5DmanWaNILWcXZMgs=
Subject key identifier: 97:28:1B:E3:6E:3D:75:69:3E:90:CF:87:0A:48:05:E4:16:0F:E1:E6
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FDBA30D
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/lygb4249dWk-kM-HCkgF5BYP4eY.roa
Signing time: Sat 01 Jan 2022 14:59:39 +0000
ROA not before: Sat 01 Jan 2022 14:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39753
IP address blocks: 2a06:e881:119::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266052365 (0xfdba30d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97281be36e3d75693e90cf870a4805e4160fe1e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:78:fc:63:e9:9a:54:f5:cb:c5:9c:5d:8e:a0:
50:18:30:53:57:61:b2:8c:d5:18:bc:c1:6b:52:a8:
cb:a4:83:05:26:7d:b4:6b:94:e7:d6:cc:bd:c8:81:
dd:00:fd:b5:c7:26:aa:b2:f6:a0:1a:8f:06:4e:1c:
97:9d:05:fe:89:ff:1d:f7:f7:20:cb:af:98:16:c8:
b9:53:91:a6:91:3c:ed:8b:fa:8c:ae:ae:91:51:36:
01:a2:cf:95:a2:f8:c7:35:92:4f:d0:d6:e7:56:15:
9f:2d:24:f9:8a:7b:4b:97:5a:8e:b6:3d:b4:42:97:
5e:8b:5f:d7:a3:0c:11:77:8b:02:9c:55:3b:64:e8:
d1:af:bb:f7:cc:a4:2a:37:31:2e:30:f9:2d:0f:8e:
74:2a:bd:41:80:16:51:54:c4:e9:d2:a1:f2:cf:25:
41:8b:ed:c8:f6:34:fd:c4:ed:0c:39:64:45:41:79:
29:f2:1e:1b:8c:e2:39:3a:6e:45:33:b1:72:8e:0e:
50:e8:87:38:60:3b:38:b2:23:c0:7c:9f:e0:3d:96:
f8:da:52:4f:4f:8a:cc:db:e3:e1:d7:70:06:b0:26:
76:42:10:01:18:35:d4:1a:e7:9c:4c:b7:80:42:63:
b8:bd:3c:45:8d:ee:12:47:8a:4d:23:23:4a:3d:29:
d5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:28:1B:E3:6E:3D:75:69:3E:90:CF:87:0A:48:05:E4:16:0F:E1:E6
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/lygb4249dWk-kM-HCkgF5BYP4eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:119::/48
Signature Algorithm: sha256WithRSAEncryption
4d:ca:04:d8:7e:af:24:02:16:69:e7:12:f4:e4:64:b5:40:a1:
05:73:e4:58:6d:ec:2a:1b:1a:d0:75:22:3c:ea:92:77:74:66:
9f:68:17:bd:8c:bb:b7:fd:b3:25:70:3d:b2:db:9a:9e:cb:73:
99:fc:ca:30:b6:6c:ca:2f:bc:bb:1a:d0:d6:ba:48:6f:18:8c:
61:04:14:78:f5:fc:3d:db:cc:07:5e:78:62:f0:ff:1f:33:9f:
23:d8:66:db:08:a3:c5:54:e5:29:4f:d2:7d:84:ba:3d:7b:64:
dc:53:3c:f7:30:10:dd:be:9a:f1:c2:e2:3d:db:eb:59:82:35:
b7:bc:07:2e:e6:67:9a:0d:4a:1a:31:48:80:59:40:1d:ac:2f:
ec:4d:1b:96:fe:fe:d3:b8:25:c2:45:b0:a3:5e:4e:04:df:17:
cd:75:5e:02:f4:27:95:f5:26:cc:df:2d:8e:2d:a3:6c:37:98:
cd:d2:98:81:5a:22:8b:0a:a6:dd:f6:fa:33:32:75:a2:c6:de:
b9:fa:72:e7:80:c4:72:f5:d4:db:c8:ec:5d:f6:1f:4f:74:40:
ac:d7:96:c9:6b:ad:1d:35:b8:62:a5:ee:18:c3:0b:9f:ea:5a:
9e:a5:90:4f:1b:7f:b8:f1:9e:fa:de:30:13:4a:5d:88:4a:ed:
2a:3d:01:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org