Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/YtzWxkhpxcQ1Ran_uWKSv3Cfqr4.roa
File: YtzWxkhpxcQ1Ran_uWKSv3Cfqr4.roa (raw, json)
Hash identifier: Zibx1P47WakxUspj0YA62dRXT5nUKKh+5qsPlh67K6Q=
Subject key identifier: 62:DC:D6:C6:48:69:C5:C4:35:45:A9:FF:B9:62:92:BF:70:9F:AA:BE
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0A8110AB
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/YtzWxkhpxcQ1Ran_uWKSv3Cfqr4.roa
Signing time: Sat 01 Jan 2022 02:54:17 +0000
ROA not before: Sat 01 Jan 2022 02:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43431
IP address blocks: 2a0b:1784::/30 maxlen: 30
2a0b:1780::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176230571 (0xa8110ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Jan 1 02:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62dcd6c64869c5c43545a9ffb96292bf709faabe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5a:97:1e:af:ec:3a:9c:b5:65:b0:e2:a5:08:
69:4c:48:4e:ee:1b:5c:64:4e:94:a8:4c:77:d5:93:
45:42:fe:0b:42:90:89:1e:c9:cf:01:e6:46:58:5e:
03:56:42:74:89:65:96:f7:6f:d1:43:f3:3f:bf:d1:
43:16:ea:7b:34:3b:b5:6d:6a:50:7d:5d:bf:09:ce:
a8:bd:c3:88:a1:37:40:b5:b0:fe:d3:69:25:30:7c:
16:b0:57:f4:7e:8f:8f:34:46:10:87:60:f8:2a:73:
dc:fe:9c:80:c9:1b:d6:f1:52:32:8a:33:4c:aa:fd:
5b:e7:5c:0c:a1:aa:50:f3:8f:da:85:57:b6:dc:55:
a0:e4:85:f5:16:9f:3a:c5:54:9c:d5:99:bb:70:37:
9b:a1:83:19:4f:1b:28:25:ff:8b:be:28:e2:83:a9:
64:42:a8:0e:b6:d9:5e:d7:5c:fc:68:d8:c7:aa:a7:
f7:fa:06:5e:05:ff:9c:90:f4:1c:e1:6f:80:82:49:
66:98:81:8b:b8:78:d9:e0:1f:39:91:fa:b0:39:39:
dd:03:6d:cc:9e:57:b1:a8:2d:68:d9:9a:74:c3:a1:
9f:53:5d:28:f0:aa:f2:1e:42:8c:d6:51:95:36:69:
9d:97:15:b9:23:a4:74:c3:85:47:0a:18:d5:0c:ff:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DC:D6:C6:48:69:C5:C4:35:45:A9:FF:B9:62:92:BF:70:9F:AA:BE
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/YtzWxkhpxcQ1Ran_uWKSv3Cfqr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:1780::/29
Signature Algorithm: sha256WithRSAEncryption
8b:fb:4a:a6:62:67:41:4c:5a:2c:1e:e5:ba:9d:a0:b7:79:4a:
d9:03:1d:9d:83:fe:df:72:86:9d:c6:37:78:98:c1:89:8c:73:
55:f3:0f:a4:f9:36:57:46:4a:c8:4b:6f:18:19:82:69:92:b7:
18:2c:ee:7d:53:05:83:df:9a:f1:4a:80:8a:b9:da:33:55:bf:
80:87:60:9f:4a:01:09:00:24:97:4a:77:71:7a:b7:ab:bb:a0:
9e:79:98:e6:9f:cc:a2:7c:43:3b:cf:e3:0b:fd:05:59:0f:91:
5b:8c:6f:29:4c:34:1d:8f:fa:7b:4e:fb:76:42:e5:11:b8:bc:
cf:0a:96:a1:b1:18:c3:80:bc:8d:f2:bf:d8:97:4c:eb:32:7d:
b1:6b:98:c8:9a:cf:e7:90:6c:4a:9a:97:c6:37:eb:2d:5a:9f:
31:39:12:f1:2f:7e:8f:72:1b:70:d7:40:b1:6c:0f:1d:68:ff:
47:a4:e8:86:98:21:64:38:ce:03:33:70:c9:ac:86:45:d5:b0:
7b:6c:18:29:ee:6e:85:e1:d3:ba:2f:11:63:60:1c:48:cc:47:
09:e6:4c:7c:d6:80:b1:68:8a:09:48:64:eb:37:bc:02:25:f1:
de:16:e1:4f:83:2d:43:f2:e4:c7:10:20:1e:da:a8:33:ef:17:
43:dc:57:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-fra.rpki-client.org