Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/YbazKNZZT1_a3xMuZILEeII8VL8.roa
File: YbazKNZZT1_a3xMuZILEeII8VL8.roa (raw, json)
Hash identifier: XM0XpN4cdnHCB3DSD1KN+dxH7RFxAmCTJbHnWt6SqvM=
Subject key identifier: 61:B6:B3:28:D6:59:4F:5F:DA:DF:13:2E:64:82:C4:78:82:3C:54:BF
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 082D81C3
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/YbazKNZZT1_a3xMuZILEeII8VL8.roa
Signing time: Thu 06 Jan 2022 08:03:46 +0000
ROA not before: Thu 06 Jan 2022 08:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210023
IP address blocks: 2a0f:5707:29::/48 maxlen: 48
2a0f:5707:b140::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137200067 (0x82d81c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 6 08:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61b6b328d6594f5fdadf132e6482c478823c54bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:51:05:9b:6b:c9:7c:31:5c:5a:e0:ae:34:87:
e2:e3:27:2d:5d:be:0a:b0:48:40:0f:76:ae:14:e8:
56:fc:d3:86:26:c7:04:4b:d4:e5:a4:e4:e1:94:a5:
47:15:11:a8:82:e8:24:31:a1:a7:45:ff:42:37:a7:
e0:6f:1c:82:61:12:46:10:bd:c2:c0:e4:90:8f:28:
5a:23:47:67:9d:ac:0e:48:26:58:37:13:aa:29:d7:
35:c6:0e:3d:8e:5d:c9:06:bc:d3:8e:35:30:78:5f:
7a:e1:97:15:63:23:4f:4d:60:3c:e8:e5:b3:64:bd:
f3:b6:3f:2d:af:05:38:bf:e7:cc:0f:0d:5f:ad:2a:
aa:7f:98:16:1e:d4:ad:02:bd:41:e3:aa:10:9a:5c:
22:97:32:22:a8:d1:42:b4:60:33:94:e2:4f:3c:f9:
2a:ba:7d:1c:0d:af:d6:24:dd:7f:0a:f4:d4:37:db:
23:d1:3a:2f:6d:bc:72:1c:37:b3:9e:22:6f:3a:b4:
71:8c:91:e2:eb:5e:18:6c:8c:2d:8f:e8:0f:f2:b9:
44:41:3e:30:56:62:dd:f8:4c:00:03:fb:08:17:3e:
3f:56:39:d6:32:7a:26:4a:23:2a:ed:0f:9f:f4:41:
1d:1f:90:58:13:0a:4a:68:a2:e3:4f:a9:75:de:66:
70:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B6:B3:28:D6:59:4F:5F:DA:DF:13:2E:64:82:C4:78:82:3C:54:BF
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/YbazKNZZT1_a3xMuZILEeII8VL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:29::/48
2a0f:5707:b140::/44
Signature Algorithm: sha256WithRSAEncryption
2d:a2:22:59:7e:bf:b9:ba:21:1e:c9:14:2b:e9:9e:a4:68:f3:
bd:e5:22:ec:45:9d:4e:45:72:7b:6a:dc:5f:bf:53:60:93:51:
70:75:9d:4e:ea:66:66:ba:0a:de:36:a7:c5:f4:91:5b:02:52:
64:a8:dc:7f:fd:75:dc:a5:37:ac:47:10:2e:27:65:fa:f0:22:
dc:f2:de:40:4d:40:0e:a0:9a:b6:f6:72:73:be:d0:72:e3:41:
2d:07:43:1a:e9:2b:3e:21:4a:84:c1:bb:ea:8f:dd:eb:5d:31:
3b:7b:02:c7:fd:ad:2d:b0:66:86:ae:f8:94:0c:67:1f:d5:b5:
f8:69:2b:44:a8:f6:ce:ce:02:3d:d9:10:ef:e7:cf:c8:a3:50:
69:a2:59:24:42:24:62:c2:4e:8b:8a:ac:7a:4a:38:eb:06:25:
0f:21:e5:b8:ec:df:bf:b8:bc:e5:42:6d:0f:ac:9e:3d:69:c6:
4d:f2:a8:a2:c3:4c:c6:f0:60:bb:3c:61:78:88:a7:7e:67:03:
fe:8d:fc:5b:e7:36:0d:dc:c4:b6:e5:ee:51:7f:df:20:f0:1b:
42:2c:11:a0:ab:13:c4:2f:64:89:eb:11:b5:f8:c6:81:a9:fe:
87:91:ca:2e:31:48:de:87:67:d3:77:a9:47:47:d7:ef:cb:b4:
23:73:ca:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org