Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/YuC90HJ_1T_ZwPfk9QjB7hKjQ4c.roa
File: YuC90HJ_1T_ZwPfk9QjB7hKjQ4c.roa (raw, json)
Hash identifier: wE3N/zG7rmUjEx2LIxtU/8fqCX1uDf+SICn5WctPizw=
Subject key identifier: 62:E0:BD:D0:72:7F:D5:3F:D9:C0:F7:E4:F5:08:C1:EE:12:A3:43:87
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 07DB94B9
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/YuC90HJ_1T_ZwPfk9QjB7hKjQ4c.roa
Signing time: Sat 01 Jan 2022 10:57:02 +0000
ROA not before: Sat 01 Jan 2022 10:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212520
IP address blocks: 2a05:4741:25::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131830969 (0x7db94b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 1 10:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62e0bdd0727fd53fd9c0f7e4f508c1ee12a34387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:32:bf:87:90:f1:db:fe:ec:ba:87:63:37:49:
2f:be:91:a8:e6:76:71:74:5d:62:8c:9e:10:a6:3e:
67:5b:0f:d5:b1:8a:0d:92:9d:d2:69:da:e1:f8:1e:
45:d7:73:bc:b1:76:aa:fa:8b:7b:b0:0d:92:04:60:
95:56:d6:55:fe:44:cb:08:26:ba:e2:af:6d:40:16:
2d:76:1b:f7:d7:d0:b5:3d:f2:f1:22:f7:9b:13:c0:
7b:81:51:b5:d7:ca:23:2a:e5:88:ae:dc:8d:d4:da:
e6:cf:5a:f4:95:51:52:38:df:e9:e7:4c:ac:24:5f:
1e:f4:60:69:af:fc:a8:f9:72:19:79:f4:35:f0:3e:
c1:a3:62:c5:5d:65:24:84:9e:6d:4a:9f:d3:18:e1:
3b:da:88:78:6a:b0:2b:2b:9a:db:5f:32:65:1c:f8:
f9:ae:7a:9d:13:6a:2e:db:ee:20:e0:7c:ba:9d:14:
63:f9:45:2a:89:06:ff:3a:7c:22:f0:66:89:ae:0b:
d0:05:03:d6:66:0c:11:4b:99:8d:a5:07:0d:ec:0c:
e5:5f:7f:6a:7a:4b:d3:f6:6b:cd:bc:c5:7c:77:1c:
65:e6:db:13:cc:4d:ed:1e:f5:a1:44:d5:f9:61:7b:
44:d8:f5:2c:79:21:55:df:c1:a5:20:93:0e:09:98:
da:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E0:BD:D0:72:7F:D5:3F:D9:C0:F7:E4:F5:08:C1:EE:12:A3:43:87
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/YuC90HJ_1T_ZwPfk9QjB7hKjQ4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4741:25::/48
Signature Algorithm: sha256WithRSAEncryption
e0:29:66:b3:fc:d2:bc:80:21:b2:62:ef:85:1f:95:f8:d5:a0:
29:62:92:35:9d:c0:bd:b1:b4:c3:29:62:88:8f:c2:3a:36:a2:
86:cf:15:38:8b:2c:18:c6:04:1e:71:a0:76:29:e6:6c:a6:b1:
49:af:ea:3e:a3:14:6a:88:19:68:a7:36:d2:e7:3d:44:e4:04:
d7:85:53:af:1f:2e:e6:ad:33:3f:3a:7a:73:a6:ca:ad:bd:31:
c0:17:56:4e:5f:d8:f3:af:74:2c:f6:46:24:3b:07:c6:43:a4:
45:2c:c8:37:10:2b:1f:cc:79:c7:a0:14:3b:e1:79:25:20:f5:
25:6d:07:02:c2:69:7f:73:54:43:34:4c:74:27:7a:1f:19:3d:
e0:e8:8e:af:5a:3c:9f:e0:4c:e0:93:88:fc:d9:4c:7b:f6:5d:
99:3b:53:79:6e:85:ab:82:ba:ec:8c:61:00:66:6d:bc:21:8f:
fb:90:77:80:90:c5:59:99:b5:2c:7b:92:1a:97:a2:7b:c5:e8:
ad:06:e6:4d:1d:60:d7:7e:33:92:64:8b:d3:1f:9d:76:57:36:
20:62:50:c3:8a:dd:ef:53:bc:4f:3c:39:3f:2f:e2:80:22:22:
c2:b8:37:21:25:68:e8:72:81:4c:f2:64:bb:ac:7e:2c:00:02:
09:7d:92:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:59 2023 by rpki-client on console-ams.rpki-client.org