Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/yYpt1TOeahCtPRiTYT140LaB2aQ.roa
File: yYpt1TOeahCtPRiTYT140LaB2aQ.roa (raw, json)
Hash identifier: gzEX0yxF0uV5iOLwWC6E6LojWNByP3jpII4yyvmyAjc=
Subject key identifier: C9:8A:6D:D5:33:9E:6A:10:AD:3D:18:93:61:3D:78:D0:B6:81:D9:A4
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 2FB34811
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/yYpt1TOeahCtPRiTYT140LaB2aQ.roa
Signing time: Sat 01 Jan 2022 10:04:46 +0000
ROA not before: Sat 01 Jan 2022 10:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2043
IP address blocks: 2001:67c:1d4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 800278545 (0x2fb34811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 1 10:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c98a6dd5339e6a10ad3d1893613d78d0b681d9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:69:33:9e:73:0b:52:37:27:e2:99:a2:1a:88:
c2:16:ca:8f:50:c5:27:1a:53:57:11:8f:37:e5:3c:
84:53:c3:4a:60:31:f9:11:5b:e8:ce:13:6b:95:52:
e6:59:ca:d8:4b:4b:eb:fe:34:15:d7:a1:07:24:31:
25:85:24:e2:4e:0d:39:3a:8b:26:4b:d9:10:8b:1a:
1d:a2:f0:95:bc:3f:b6:3f:cd:2a:39:99:a5:ee:42:
2e:93:ac:ed:25:0f:1f:61:6d:70:2c:3c:96:e2:44:
af:7d:08:e5:1d:3c:c2:e5:bd:1e:92:9f:2c:86:2e:
6e:76:39:49:ee:a1:00:ca:24:01:c7:ad:ae:fc:1d:
3c:7e:14:91:8b:10:d8:31:99:49:cf:fa:bd:eb:0c:
7a:c8:31:d6:ee:c1:91:71:0c:6a:d7:b3:be:83:f8:
6a:88:43:3f:e5:d3:0b:28:30:97:69:f8:94:1f:8d:
31:65:ee:87:74:2d:8d:e7:da:04:2f:bc:ba:86:20:
8b:55:05:3a:04:1d:d4:73:e8:ba:e7:8b:84:33:75:
77:0f:ae:ed:99:09:6d:c1:da:46:e7:41:3a:ac:6c:
f8:49:dc:a3:df:85:23:a5:ca:01:bb:97:3e:fb:6d:
e9:b9:49:c7:15:38:4a:b4:d2:71:c2:32:e2:18:32:
1c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8A:6D:D5:33:9E:6A:10:AD:3D:18:93:61:3D:78:D0:B6:81:D9:A4
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/yYpt1TOeahCtPRiTYT140LaB2aQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1d4::/48
Signature Algorithm: sha256WithRSAEncryption
05:a0:6a:a2:5e:d0:9c:2b:12:ca:e7:97:d2:4a:0a:6e:60:1a:
da:65:53:bb:f9:80:b8:26:ad:44:69:bc:ae:0e:c0:c3:9f:89:
be:85:81:d3:09:b6:d2:11:e9:be:43:bc:cd:58:0a:a6:3b:ff:
4e:5d:1d:e0:2f:38:e4:7c:87:40:b6:30:fb:e6:1a:6d:5b:91:
3c:56:42:98:78:c2:56:af:44:18:f8:31:8e:a1:b8:73:ce:cd:
a1:0b:91:44:f2:9d:6b:96:e9:e7:eb:f8:14:ef:7d:ad:6d:b0:
2f:a0:15:20:84:dd:30:ac:85:3c:a1:4e:77:8c:95:53:32:70:
d0:9d:a5:d4:e6:4f:12:10:2d:99:42:3a:16:38:df:7d:0a:17:
0c:3e:f8:92:9a:7f:96:6f:79:03:28:16:28:cd:a5:ff:8f:3e:
9d:ac:91:54:09:72:38:a2:c7:64:40:dc:bc:61:95:54:a8:ea:
d8:41:be:12:b0:7a:b0:c2:2e:31:19:a5:2c:5b:3d:fa:76:cd:
e8:46:3c:6b:ed:40:e5:09:e6:c5:10:09:ab:da:87:fa:9f:e3:
e9:37:f5:6d:93:ab:68:58:53:cb:5c:16:6b:3f:b1:68:b4:3d:
10:ab:11:73:9a:5d:88:7a:8d:46:98:44:76:43:4e:11:48:71:
a5:7f:81:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org