Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/80a806-0970-49ac-8277-1c43d4c27d6c/1/LEQoLboYt4qM9a4t902TqwOxOes.roa
File: LEQoLboYt4qM9a4t902TqwOxOes.roa (raw, json)
Hash identifier: prHOa0tvW0CsDUTpxFp85+lR6y+nk5yQSYWU7oIf9+o=
Subject key identifier: 2C:44:28:2D:BA:18:B7:8A:8C:F5:AE:2D:F7:4D:93:AB:03:B1:39:EB
Certificate issuer: /CN=ca06ff246df411643d9de3669818112f3362283b
Certificate serial: 088E998C
Authority key identifier: CA:06:FF:24:6D:F4:11:64:3D:9D:E3:66:98:18:11:2F:33:62:28:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygb_JG30EWQ9neNmmBgRLzNiKDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/80a806-0970-49ac-8277-1c43d4c27d6c/1/LEQoLboYt4qM9a4t902TqwOxOes.roa
Signing time: Sat 01 Jan 2022 16:02:29 +0000
ROA not before: Sat 01 Jan 2022 16:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208907
IP address blocks: 2001:678:994::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143563148 (0x88e998c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca06ff246df411643d9de3669818112f3362283b
Validity
Not Before: Jan 1 16:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c44282dba18b78a8cf5ae2df74d93ab03b139eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:77:9d:c0:19:54:cb:80:de:86:c2:89:49:4e:
0a:94:8f:9e:53:5b:9c:d2:37:ec:dc:c8:55:6a:62:
49:fa:72:71:4c:fd:42:72:dd:82:01:8f:15:5c:5e:
1a:f2:7c:24:75:05:07:3a:05:34:26:0b:c0:bf:84:
18:7b:0f:4f:57:0d:6d:f2:38:3f:d7:4f:80:92:52:
ab:ca:7a:15:7d:3d:96:f4:1e:fa:35:94:9a:41:35:
68:55:e7:e4:cc:18:9b:69:68:37:10:4e:72:68:4f:
dc:64:99:c8:7f:b9:98:e2:b6:2b:c1:75:3b:04:c9:
54:e2:b4:a9:55:e0:7c:7c:7e:4b:f4:70:36:0b:ea:
80:81:d7:b7:18:4a:68:ec:5e:bb:c7:f1:13:26:e3:
53:d7:39:58:5c:bf:d7:53:98:a4:45:9f:98:ca:86:
d3:2a:5b:60:f2:37:79:54:57:36:c2:9d:7e:ce:9b:
2e:d4:e2:9a:f7:c0:03:30:11:8d:00:df:55:92:9d:
be:f2:42:7d:c5:cd:fd:47:21:45:d1:3a:36:4e:9f:
50:58:1c:e4:92:0b:b0:81:28:9e:15:38:0b:c0:f0:
e9:02:d5:fd:5c:fb:e5:87:4d:4e:4b:ce:83:93:8c:
d3:f4:37:b8:14:a3:66:90:85:fc:bb:5e:d3:68:78:
35:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:44:28:2D:BA:18:B7:8A:8C:F5:AE:2D:F7:4D:93:AB:03:B1:39:EB
X509v3 Authority Key Identifier:
keyid:CA:06:FF:24:6D:F4:11:64:3D:9D:E3:66:98:18:11:2F:33:62:28:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygb_JG30EWQ9neNmmBgRLzNiKDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/80a806-0970-49ac-8277-1c43d4c27d6c/1/LEQoLboYt4qM9a4t902TqwOxOes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/80a806-0970-49ac-8277-1c43d4c27d6c/1/ygb_JG30EWQ9neNmmBgRLzNiKDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:994::/48
Signature Algorithm: sha256WithRSAEncryption
5d:f1:84:7f:1f:f8:29:4a:db:b9:80:e0:e6:25:2b:40:dc:57:
20:84:2c:ac:14:aa:43:01:85:e3:1b:08:7f:54:12:86:07:c1:
27:4b:a5:a2:83:b9:2f:a6:22:41:ed:61:0d:0e:43:64:6d:cb:
1a:90:8a:4f:a0:25:5e:47:d8:d7:b3:94:f9:64:1d:82:82:71:
cc:66:cd:d6:a0:aa:97:7b:db:a5:7b:5e:e1:95:51:3b:41:7c:
75:2b:a6:3a:9c:77:9e:50:c5:69:c3:0d:98:31:cc:ed:0b:48:
61:4a:9e:01:04:f4:94:8f:07:e1:14:b1:6a:08:da:5d:05:e8:
5b:30:5c:c4:27:0e:61:c9:da:1a:ff:42:81:7f:e9:db:c6:60:
a8:4a:9e:af:34:d4:5c:23:ae:28:5d:34:c6:0b:26:a2:da:86:
e4:8d:bc:e3:75:7c:ca:0f:51:f4:0a:4b:d5:c7:ec:4c:8f:63:
6f:b5:aa:91:c1:a7:41:93:fb:72:75:ed:1d:69:1e:df:b7:8b:
34:e6:41:8c:91:e1:e2:c6:94:4c:17:eb:ab:89:90:5d:2f:d1:
fe:3a:87:3c:f3:af:c8:c3:88:9f:3d:1a:bc:b1:4d:8a:4a:93:
55:57:0c:cf:fe:73:96:58:3e:7f:3b:68:7f:85:84:f8:1f:80:
9f:99:5e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:21 2024 by rpki-client on console-ams.rpki-client.org