Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/YpK7qlveYfOMOBML4RFHEr3Mmjw.roa
File: YpK7qlveYfOMOBML4RFHEr3Mmjw.roa (raw, json)
Hash identifier: OhD+695NhnwO8dchzxCyWatDgQeAqZfisS3mGSurBfk=
Subject key identifier: 62:92:BB:AA:5B:DE:61:F3:8C:38:13:0B:E1:11:47:12:BD:CC:9A:3C
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 080548FC
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/YpK7qlveYfOMOBML4RFHEr3Mmjw.roa
Signing time: Sat 01 Jan 2022 06:58:26 +0000
ROA not before: Sat 01 Jan 2022 06:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 135330
IP address blocks: 2a09:7c45::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134564092 (0x80548fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jan 1 06:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6292bbaa5bde61f38c38130be1114712bdcc9a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3f:82:b0:04:f6:d0:fe:21:27:d0:a7:01:c6:
08:66:94:8b:71:5f:1c:a9:54:68:60:40:d7:92:14:
c7:c7:1b:20:96:ef:03:d8:91:14:e8:1d:c2:c8:99:
d1:66:bd:2f:62:25:25:e8:46:9a:49:d7:63:7e:64:
98:78:f2:4b:e6:5c:fe:72:a0:69:b6:94:a3:ed:bf:
5f:a8:c5:aa:7e:7c:22:b6:2a:12:90:b3:5b:2e:ee:
4f:6a:ef:6c:c3:91:3f:25:e7:c4:7e:03:53:cf:4e:
f9:c6:65:b9:69:7b:01:07:c9:ab:71:73:4c:18:5e:
28:7f:3a:74:53:2b:6b:dc:b4:47:e1:61:43:bb:d2:
f2:e9:18:29:f8:01:c2:33:12:dc:c0:00:37:9a:64:
c6:c8:f9:8c:5e:a2:cc:c5:d8:d3:e5:5c:92:83:6f:
f3:bf:ad:96:91:0b:c0:fa:84:35:f4:72:33:6e:16:
b1:f2:f0:f6:32:3e:ef:bc:5e:0a:4c:b7:78:6f:4c:
96:17:9d:68:7d:ae:f2:76:8c:6d:7d:b1:3e:cc:f8:
3f:ec:8b:9f:d4:68:1b:a6:35:27:e9:69:88:8a:72:
39:ef:36:70:1c:aa:73:e1:10:c2:6b:22:4a:63:13:
9b:8e:f5:12:ad:49:33:db:6e:5a:94:34:6d:b2:cd:
5b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:92:BB:AA:5B:DE:61:F3:8C:38:13:0B:E1:11:47:12:BD:CC:9A:3C
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/YpK7qlveYfOMOBML4RFHEr3Mmjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7c45::/32
Signature Algorithm: sha256WithRSAEncryption
33:88:e1:f9:d5:5e:51:a3:d9:41:0f:60:20:1c:9b:dd:aa:36:
57:49:e4:ed:f2:f3:0f:8a:01:73:4b:be:1f:a6:ab:1d:95:2e:
a6:7c:3b:29:55:e9:fb:9c:a0:15:ad:5f:6e:50:ec:32:20:86:
23:9a:b2:df:ed:45:13:9b:8a:8c:a8:c9:77:ee:76:d5:ec:1c:
7f:74:9e:32:47:e6:dd:81:b5:65:7a:78:33:d9:44:ff:52:70:
b7:76:50:35:8d:65:fd:85:fb:7a:3e:cc:78:d5:39:bf:c8:34:
d3:cb:f1:cb:71:60:1a:0d:5a:10:77:dd:fb:54:5c:47:bd:02:
4a:94:89:17:2e:64:d6:4e:8d:0c:19:6a:f6:04:03:10:1e:10:
f1:9f:ef:31:cb:9c:70:29:82:38:8e:79:e5:09:3d:e6:81:07:
c0:06:36:e0:c1:ce:9d:da:a3:db:93:75:1b:b5:4f:17:a2:25:
f3:52:f6:51:2a:dd:58:98:9b:05:6d:3b:7d:9c:19:ba:bd:90:
67:15:5d:0e:f7:c9:f9:ca:8a:11:f4:4a:6a:77:b8:b2:2f:3d:
2d:82:0d:95:06:ac:81:2b:b6:92:a2:ba:6e:1b:e9:5a:33:89:
a6:e2:af:32:a5:16:a1:e9:6b:1d:ee:44:d4:b5:2a:5d:76:1e:
70:72:65:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org