Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/ygeR7-TC_vsqEcriPUTcz_Bl0ww.roa
File: ygeR7-TC_vsqEcriPUTcz_Bl0ww.roa (raw, json)
Hash identifier: hZvn9DEokCLaxtdCxHHB0sdUJJ5EEVT8hedTKpk1Q+o=
Subject key identifier: CA:07:91:EF:E4:C2:FE:FB:2A:11:CA:E2:3D:44:DC:CF:F0:65:D3:0C
Certificate issuer: /CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Certificate serial: 5EF5
Authority key identifier: 82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/ygeR7-TC_vsqEcriPUTcz_Bl0ww.roa
Signing time: Wed 04 May 2022 17:44:22 +0000
ROA not before: Wed 04 May 2022 17:44:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205227
IP address blocks: 2a12:8440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24309 (0x5ef5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Validity
Not Before: May 4 17:44:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca0791efe4c2fefb2a11cae23d44dccff065d30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ea:9f:7a:c7:3e:b4:19:00:c6:4a:34:8e:39:
98:2a:8d:3d:ed:d6:d0:14:28:ef:28:a0:a5:fc:4b:
80:c9:d1:9b:e5:10:cf:e5:9d:94:70:a2:b8:5d:76:
19:64:e5:6b:eb:02:a1:b6:eb:38:57:d2:7d:f3:28:
25:6f:47:6f:ab:11:82:17:15:f9:5e:96:50:ed:ca:
97:19:5d:b7:58:e0:e7:ff:d1:eb:50:d9:40:18:39:
bc:76:9f:28:be:b3:52:d0:fc:f2:53:62:4d:8c:56:
d6:6e:b4:fc:82:48:ae:fd:f9:e0:94:99:af:c9:5a:
05:8a:6a:44:43:c5:f7:2c:79:74:30:71:91:a0:2f:
56:f9:0e:04:3e:5f:32:1d:5b:25:bf:06:7a:cc:4a:
b3:82:a3:6c:ac:cd:87:77:64:9e:eb:07:1b:72:95:
4a:43:81:34:37:f7:42:06:34:45:15:ca:f0:27:b6:
bb:71:74:cd:ed:09:4f:33:d8:bc:cf:09:bf:f0:72:
50:09:53:45:0b:79:94:ff:7a:9f:39:27:41:5c:4e:
a7:80:f3:a2:06:74:b3:1f:28:9e:e7:9a:02:05:ef:
08:5c:78:e8:68:12:45:9b:fe:cb:ec:cf:81:39:8c:
9b:e0:65:31:10:fd:60:c5:ee:aa:ca:9c:8f:5a:c9:
36:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:07:91:EF:E4:C2:FE:FB:2A:11:CA:E2:3D:44:DC:CF:F0:65:D3:0C
X509v3 Authority Key Identifier:
keyid:82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/ygeR7-TC_vsqEcriPUTcz_Bl0ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/gjtvO3r4e7jvbdhDvr1tgbBVkhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8440::/29
Signature Algorithm: sha256WithRSAEncryption
5f:ca:4c:fd:cb:a7:45:4a:b3:ca:5c:04:ac:66:d4:dd:8c:26:
0f:aa:e2:85:a3:10:2c:0e:21:59:fd:29:93:44:3e:8c:7c:09:
07:f6:5e:94:e5:37:8d:77:b9:4d:37:37:0b:f4:84:1d:e3:86:
a2:f4:1c:9b:91:16:48:d4:7a:18:2c:c8:ec:de:2c:7c:3d:36:
94:7f:06:06:ca:a6:6e:39:11:ab:62:97:50:58:ba:ed:d2:d5:
98:67:f9:1d:5f:11:1c:5e:23:00:d0:a2:92:3b:49:d6:5e:87:
52:a8:ff:a4:e5:4e:f4:95:0a:2a:d3:a8:27:94:7c:d2:f9:f3:
d0:c2:b1:e6:d2:99:83:60:05:71:e4:b2:73:d5:4b:bd:1c:ac:
cb:ac:c1:19:66:82:7c:b0:15:30:11:34:6b:32:a1:e5:2a:fb:
4e:20:1c:64:cb:b7:65:4c:29:af:a6:29:21:2e:a1:2e:0b:34:
ea:32:9f:dc:07:a1:0e:23:54:c2:3f:7e:27:2c:47:e8:0e:36:
10:10:f3:49:68:b5:1d:30:04:e8:1b:f6:68:cd:2c:95:50:eb:
03:4d:e9:a0:ec:c6:e0:b9:82:b8:1a:a9:70:2e:7d:e3:71:5f:
67:47:89:9d:be:ce:51:f0:12:24:dd:2b:51:4a:ec:15:e6:55:
4c:f8:09:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:26 2024 by rpki-client on console-ams.rpki-client.org