Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/YwdvcIt5DdoYn2IRx32XK-uvmyM.roa
File: YwdvcIt5DdoYn2IRx32XK-uvmyM.roa (raw, json)
Hash identifier: zdCfmgH0VHR/Zbnp2tXgaFF6DzyI5oEIL7uuRKY7G1E=
Subject key identifier: 63:07:6F:70:8B:79:0D:DA:18:9F:62:11:C7:7D:97:2B:EB:AF:9B:23
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 081208C9
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/YwdvcIt5DdoYn2IRx32XK-uvmyM.roa
Signing time: Sat 01 Jan 2022 06:55:54 +0000
ROA not before: Sat 01 Jan 2022 06:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210633
IP address blocks: 2a0f:5707:b130::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135399625 (0x81208c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63076f708b790dda189f6211c77d972bebaf9b23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:e6:de:9b:a5:70:5b:b6:20:8e:32:dd:9b:
25:aa:18:3e:e8:c8:bc:a4:6e:95:30:70:cb:84:da:
7d:1a:4d:f5:53:7a:12:ff:24:a6:08:ee:e4:2b:5d:
68:90:40:09:78:7b:6f:d7:85:ba:3c:cb:c9:a8:53:
f8:ed:fe:a3:fd:b4:70:09:ad:36:0a:96:08:20:18:
6a:0a:0a:6b:7d:6d:f6:48:6b:70:cc:63:73:39:2e:
79:57:a1:e5:1c:05:95:95:5a:9a:f7:5a:00:df:77:
63:07:85:ce:ab:de:2d:3f:b0:49:07:72:95:44:03:
aa:73:5e:13:a3:57:5b:2e:c9:04:45:c1:73:4e:bc:
9d:d9:66:6e:dc:2b:55:0a:24:a4:86:b9:de:c3:74:
b6:ef:80:f1:38:7b:7e:53:66:d8:07:be:38:72:6a:
64:9f:59:a8:33:02:0d:d9:00:87:c1:10:4a:81:ef:
f4:8d:8b:e2:70:2e:5f:40:2a:c0:ca:09:63:2c:19:
78:ca:81:f3:93:9e:6a:b3:91:7e:b0:3a:d4:b2:da:
59:11:7d:7f:1c:4f:74:01:de:86:47:8a:34:49:7d:
76:32:23:4d:a8:d4:5c:91:12:7a:95:48:58:14:ab:
4b:7f:b8:22:a6:43:83:dd:94:d5:89:1f:7d:40:af:
6a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:07:6F:70:8B:79:0D:DA:18:9F:62:11:C7:7D:97:2B:EB:AF:9B:23
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/YwdvcIt5DdoYn2IRx32XK-uvmyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:b130::/44
Signature Algorithm: sha256WithRSAEncryption
59:e7:11:eb:63:86:db:24:11:90:e2:c4:ba:ab:37:f2:2c:de:
a6:2e:98:54:de:68:66:80:60:b9:5d:3c:24:4f:93:8c:01:01:
83:a5:34:72:39:a3:c5:9b:c9:ba:b9:54:56:dc:6b:72:fe:69:
af:64:0f:23:03:91:b8:32:6d:ef:53:0f:13:6f:b1:77:41:63:
5e:8e:81:16:e6:83:4a:71:1a:68:fb:c1:9c:95:f0:e5:6e:d3:
1c:80:0a:c6:85:eb:f2:e0:82:ce:8d:1a:47:7e:65:e1:54:c5:
bc:cf:ce:a6:83:ef:20:9e:75:4c:23:d1:ed:57:86:fb:7e:2f:
03:90:4a:ad:3b:7d:9f:62:01:44:45:21:b5:a6:11:fb:7e:db:
ad:f8:d8:3f:21:ac:4b:6d:a6:be:37:71:ba:76:e9:ea:e6:6a:
e4:f8:1d:ae:fa:4d:bf:2c:97:5d:4e:2e:08:93:bd:93:a6:0a:
4e:9a:a1:13:a3:12:59:e7:41:63:26:75:73:07:ac:52:26:6e:
01:5c:b5:dc:39:79:8c:02:ca:b2:0d:b6:4a:8d:d0:26:26:05:
4b:33:16:9b:d4:ab:c0:2c:e1:fa:6c:fa:4b:88:7b:e3:be:8f:
e9:20:86:65:ee:9a:ba:a7:c3:01:c9:0b:e1:ef:8d:6a:4b:98:
b4:e1:02:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org