Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/Ydl4CIiUUzL6VfKgzizu1OVlaSw.roa
File: Ydl4CIiUUzL6VfKgzizu1OVlaSw.roa (raw, json)
Hash identifier: +jdG4GbJqdWFztbDu7KLECY/wRyks5Qi8KNi2enIzBo=
Subject key identifier: 61:D9:78:08:88:94:53:32:FA:55:F2:A0:CE:2C:EE:D4:E5:65:69:2C
Certificate issuer: /CN=93a229e266b2558899f3547ee63d84ed6594768b
Certificate serial: 0181DB1434CD58CCD47D0FD38DBE94D865C9
Authority key identifier: 93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/Ydl4CIiUUzL6VfKgzizu1OVlaSw.roa
Signing time: Thu 07 Jul 2022 23:52:23 +0000
ROA not before: Thu 07 Jul 2022 23:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48357
IP address blocks: 2a0c:2c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:db:14:34:cd:58:cc:d4:7d:0f:d3:8d:be:94:d8:65:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93a229e266b2558899f3547ee63d84ed6594768b
Validity
Not Before: Jul 7 23:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61d9780888945332fa55f2a0ce2ceed4e565692c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c4:b0:9b:f9:da:16:88:ae:09:58:23:0b:0e:
53:2d:b4:f6:1b:74:bd:17:b1:81:80:b8:0f:94:83:
1a:3d:74:a3:2a:46:5f:01:50:0d:9a:fc:76:0a:9c:
2e:5e:af:05:3a:fb:46:aa:50:9d:cb:d6:69:bc:e5:
f4:64:fd:c4:10:9e:6c:7a:0f:c0:84:01:20:45:4c:
50:8d:6b:00:a3:e2:c6:fa:0c:69:7d:5a:15:12:aa:
41:f2:43:d9:69:84:2e:81:d2:09:7d:cf:a7:28:bf:
d4:02:90:cf:6a:08:30:7d:f8:c9:24:86:2d:2a:a5:
77:32:e0:8a:7b:07:b1:97:41:16:bb:c9:25:d5:14:
99:09:60:74:b9:01:bb:79:97:68:9a:91:55:79:39:
cf:97:e6:b1:e6:ab:89:34:f8:b4:a8:c3:69:4a:a4:
e8:64:b8:ce:87:71:7e:f2:18:c9:da:44:8b:fb:11:
72:3e:ce:c7:65:d5:f6:c6:03:eb:53:4b:a4:ed:91:
a8:ca:94:6c:3a:ca:39:cf:02:60:fb:e8:cc:22:44:
4a:25:4c:dd:36:6a:92:ec:9c:c5:9d:34:25:a0:4d:
c0:97:62:73:59:e1:db:6c:b0:ba:aa:19:9b:d2:ad:
96:69:f9:2d:33:6a:73:b5:6d:5f:8f:a2:b3:61:92:
9e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D9:78:08:88:94:53:32:FA:55:F2:A0:CE:2C:EE:D4:E5:65:69:2C
X509v3 Authority Key Identifier:
keyid:93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/Ydl4CIiUUzL6VfKgzizu1OVlaSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/k6Ip4mayVYiZ81R-5j2E7WWUdos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:2c40::/32
Signature Algorithm: sha256WithRSAEncryption
66:43:17:af:53:9a:18:f7:71:bc:f7:ba:a0:03:ee:e6:79:20:
94:f7:bb:20:0e:5a:02:5d:e7:8f:c9:69:33:c6:b7:40:26:dd:
e7:d0:ec:5d:98:99:53:2e:bf:45:e6:f1:d0:c6:1f:3f:55:75:
c7:9c:59:7e:ac:4e:da:6b:64:b0:13:81:1f:b6:a6:60:d2:9b:
bd:5a:21:a0:f3:14:ad:9b:75:e9:36:f6:6f:ab:9b:ba:20:74:
d4:53:10:a1:29:0e:50:0d:58:00:c9:09:b7:92:08:aa:51:71:
b2:cd:00:d8:50:5e:2c:0a:bc:46:1f:75:19:18:c3:c7:1c:43:
42:19:9f:4b:fc:d5:d4:c4:ac:28:9e:e2:a4:cf:57:c1:e5:9a:
37:d6:f5:4f:75:00:48:d1:51:7c:38:f6:bf:e9:b1:c5:9d:76:
e1:b4:39:c9:5e:8b:a0:e9:d6:05:f7:e6:af:08:7a:b1:b8:ed:
ca:dd:00:16:1a:09:14:f2:16:4c:0e:11:3c:96:1d:ab:31:88:
09:47:6d:f7:6f:bb:fa:78:47:23:c7:e7:49:42:9d:59:7d:e9:
e1:5f:55:8d:9e:c6:2e:41:32:ca:ad:c5:cf:12:22:0d:13:b6:
37:5b:05:39:88:c2:22:ce:01:01:2d:b6:1a:8a:ed:94:8c:0d:
61:f9:78:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:21 2024 by rpki-client on console-fra.rpki-client.org