Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/YNWz6RGdwiVYY03Q5IQ1h_J_sdM.roa
File: YNWz6RGdwiVYY03Q5IQ1h_J_sdM.roa (raw, json)
Hash identifier: gDb36hhXsiOIhs9Bbsxx4tK8SfdEnXgxpNUlek4zPTM=
Subject key identifier: 60:D5:B3:E9:11:9D:C2:25:58:63:4D:D0:E4:84:35:87:F2:7F:B1:D3
Certificate issuer: /CN=02da4cd044c6e9873ac8fd9cfd30f1ecb3d80bca
Certificate serial: 0E046139
Authority key identifier: 02:DA:4C:D0:44:C6:E9:87:3A:C8:FD:9C:FD:30:F1:EC:B3:D8:0B:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AtpM0ETG6Yc6yP2c_TDx7LPYC8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/YNWz6RGdwiVYY03Q5IQ1h_J_sdM.roa
Signing time: Sat 01 Jan 2022 04:03:12 +0000
ROA not before: Sat 01 Jan 2022 04:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59891
IP address blocks: 2001:67c:17a4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235168057 (0xe046139)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02da4cd044c6e9873ac8fd9cfd30f1ecb3d80bca
Validity
Not Before: Jan 1 04:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60d5b3e9119dc22558634dd0e4843587f27fb1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1d:c3:ef:b0:fb:f1:57:f7:23:78:73:05:38:
cc:31:52:73:7c:b3:52:1e:80:78:62:10:10:51:9d:
4a:83:8e:83:e1:d9:d3:a8:4b:d7:dc:4b:b1:b9:03:
42:cb:c2:4a:4e:09:2a:83:fc:9e:71:7f:27:b5:30:
4d:f8:78:16:8c:f2:09:8a:d3:66:bd:cd:ed:75:9d:
39:b3:f3:04:90:fd:6c:9c:cd:25:82:8d:6c:3c:a9:
62:9c:ee:37:fa:e3:5e:f3:f8:45:7d:98:f7:f0:f5:
c3:ed:eb:df:47:c6:ab:cd:aa:0e:e8:fb:0b:57:e1:
8a:b4:bc:8a:09:bc:2a:87:86:d7:ec:a0:60:51:64:
6f:eb:cb:fb:6f:c8:8a:e1:65:1d:b0:2e:40:e2:ed:
c6:8f:3e:c4:bd:db:bf:70:ce:ff:f5:f8:e1:77:5b:
1c:13:cc:38:88:49:fd:36:1c:55:64:8f:8a:51:d1:
89:7b:9d:e0:ff:4d:84:85:8f:8e:b9:09:e6:a5:99:
e9:6a:65:91:eb:7d:ed:d7:99:f1:ef:81:c0:e7:56:
bc:79:08:46:e7:6f:8b:88:86:57:8b:a3:3e:84:b7:
a4:08:f3:6f:27:f7:db:1b:43:a4:de:da:82:6e:71:
a6:01:01:3f:c5:0e:d4:00:45:c9:82:bd:58:65:09:
e3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D5:B3:E9:11:9D:C2:25:58:63:4D:D0:E4:84:35:87:F2:7F:B1:D3
X509v3 Authority Key Identifier:
keyid:02:DA:4C:D0:44:C6:E9:87:3A:C8:FD:9C:FD:30:F1:EC:B3:D8:0B:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtpM0ETG6Yc6yP2c_TDx7LPYC8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/YNWz6RGdwiVYY03Q5IQ1h_J_sdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/AtpM0ETG6Yc6yP2c_TDx7LPYC8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17a4::/48
Signature Algorithm: sha256WithRSAEncryption
83:e0:48:89:2e:9a:cb:af:b1:87:d8:5d:88:de:dd:7a:14:d7:
c0:5c:c5:55:85:f2:07:b4:48:87:cf:0f:82:45:84:eb:83:ed:
94:f2:4f:7d:bb:8c:2e:7e:2b:b9:c2:31:4b:99:56:48:e3:7f:
28:44:33:f8:2d:dd:48:71:c1:92:66:64:90:1a:9b:81:de:35:
df:dc:38:53:12:7b:70:ca:7d:96:4a:71:23:3f:a8:03:d7:ad:
19:8b:c3:3d:3c:61:46:ce:e0:e8:30:98:0a:87:64:75:8a:9f:
88:19:db:62:62:49:3e:4e:dc:4e:51:b8:f0:7c:3f:72:71:c1:
7c:79:a9:3f:77:05:1a:b8:7e:ff:c3:09:e1:44:9e:e3:4a:29:
08:f6:e7:17:42:74:d6:15:69:ea:f6:e6:16:4b:46:30:1b:5d:
24:7d:ea:7f:e5:e7:84:1b:ae:17:5f:cf:d8:a7:71:9c:56:72:
a7:54:2f:f2:c7:aa:9d:c4:c1:d7:81:2d:86:ef:5c:73:7e:60:
e0:ea:1d:38:26:45:ec:40:cd:07:62:89:b4:91:fd:3b:b3:90:
28:4d:aa:21:d9:8c:bb:e9:15:92:23:81:ca:3b:0c:a3:ab:dd:
6b:af:02:06:6e:bf:30:61:a0:6b:b6:7e:b8:d3:fc:ef:26:7f:
80:b2:fb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:15:49 2025 by rpki-client