Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/yDEPoBIqQ3MBMnmAM8B5fBng6Vk.roa
File: yDEPoBIqQ3MBMnmAM8B5fBng6Vk.roa (raw, json)
Hash identifier: UqGqiHn3Hv9WaAT0pfcHUqvxACifP/SFraaaM2KRXHw=
Subject key identifier: C8:31:0F:A0:12:2A:43:73:01:32:79:80:33:C0:79:7C:19:E0:E9:59
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 05FF24E2
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/yDEPoBIqQ3MBMnmAM8B5fBng6Vk.roa
Signing time: Sat 01 Jan 2022 16:01:18 +0000
ROA not before: Sat 01 Jan 2022 16:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60742
IP address blocks: 2a0e:8100::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100607202 (0x5ff24e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8310fa0122a43730132798033c0797c19e0e959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a0:ab:02:c4:2b:a1:33:e0:9b:45:52:8b:53:
59:cc:66:a9:16:06:a1:f7:14:73:9c:bb:82:9e:bb:
35:60:07:64:9b:0e:f3:b6:bd:0c:97:05:71:de:3a:
95:87:eb:47:b7:92:bc:33:45:85:95:cc:09:1e:ae:
72:59:f8:31:6b:31:1c:d8:01:e6:89:3d:a1:0c:74:
50:4f:27:b0:05:90:ae:87:cd:4e:d9:3e:4e:41:3d:
97:3d:b7:29:2c:3e:9e:cf:a1:7c:9c:33:ef:ad:66:
6f:95:9f:2f:a6:ca:45:74:ae:c4:19:39:7d:db:11:
e8:b2:09:fb:14:37:49:e8:b3:34:b2:3b:3b:5e:ab:
c1:5b:7f:bf:47:60:a3:9d:d7:0c:fc:1e:8e:fb:9f:
51:c6:a0:1b:df:ab:dd:bb:e3:44:ec:4a:84:a4:31:
3f:f7:bd:c0:68:6c:a4:d2:4b:dc:fb:97:8e:4b:77:
2e:20:02:6c:17:0d:8d:57:6e:2d:02:f7:55:01:d9:
2e:7d:12:ad:69:5d:dc:cb:80:cf:56:d5:2c:7b:21:
c8:d8:33:4d:db:42:36:94:0d:42:16:b2:0e:3d:92:
84:22:28:88:a9:c4:aa:c5:29:ba:56:54:c4:01:9a:
8c:9b:a4:ba:e5:3b:e4:ba:49:5a:6e:fa:92:98:14:
7e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:31:0F:A0:12:2A:43:73:01:32:79:80:33:C0:79:7C:19:E0:E9:59
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/yDEPoBIqQ3MBMnmAM8B5fBng6Vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8100::/32
Signature Algorithm: sha256WithRSAEncryption
1a:94:7b:ae:1a:09:59:19:32:5a:2f:d9:37:e2:9b:c3:5d:7a:
06:c0:d8:f0:0c:a1:cf:9d:0d:5e:ba:80:37:6e:7c:10:aa:6e:
a3:1a:84:0a:19:0c:3c:18:9c:c0:a6:ae:07:8a:3d:f5:fb:98:
e0:bc:ac:87:85:02:c2:06:e7:ed:67:a5:b6:1b:0e:f9:20:51:
30:c0:12:24:38:f3:cf:c8:32:50:93:8a:a9:e0:1c:ba:fa:f2:
23:fe:c6:89:e9:a8:6b:df:a0:10:5c:ae:bf:c1:4e:41:5b:4f:
8b:3f:a8:85:75:0e:f1:03:d6:4c:cc:51:f8:3b:c7:61:a8:6c:
e0:26:5c:1b:de:33:e7:92:c3:4b:cd:42:ad:83:f6:ca:84:0f:
20:a3:af:31:0c:3f:f5:18:bf:24:b8:aa:f5:18:25:dc:63:85:
c9:12:f5:76:02:37:03:fe:33:cb:cd:cb:39:6a:ec:95:77:f7:
22:0d:ef:d0:32:7b:69:26:87:90:71:c7:ab:67:1a:7c:ef:58:
c3:0a:64:16:01:7e:36:3a:e8:ca:4a:1f:e4:62:20:8e:6e:f1:
f5:2a:16:28:e4:13:ad:95:03:e1:53:74:d3:12:97:c6:d4:37:
f8:23:e9:e3:d9:65:35:14:5d:3d:02:2b:d4:58:be:22:23:43:
44:2a:f3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org