Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/Y993TbfUX2E70SyslkCYA822Sjo.roa
File: Y993TbfUX2E70SyslkCYA822Sjo.roa (raw, json)
Hash identifier: p+Xfhj8t+ODmNmcDfncbOSX2x7qvRnS+KzJWPznh0/k=
Subject key identifier: 63:DF:77:4D:B7:D4:5F:61:3B:D1:2C:AC:96:40:98:03:CD:B6:4A:3A
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 09B827EA
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/Y993TbfUX2E70SyslkCYA822Sjo.roa
Signing time: Sat 01 Jan 2022 12:05:41 +0000
ROA not before: Sat 01 Jan 2022 12:05:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 2a0a:d6c0:145::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163063786 (0x9b827ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Jan 1 12:05:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63df774db7d45f613bd12cac96409803cdb64a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:27:0c:0c:5b:20:65:4d:b0:4f:96:18:d7:e0:
7e:f8:ab:02:ab:97:79:b3:74:2f:7e:bc:1e:4d:f9:
3a:6f:a3:ab:be:0d:46:b0:0b:bc:e9:48:0f:59:e7:
c5:0e:52:09:f1:7e:12:ea:1b:e1:fc:7a:9a:33:22:
b5:ed:b1:f3:2a:c1:0c:1c:37:45:23:97:8f:35:fb:
4d:46:ed:73:6d:11:ab:e2:44:6c:f4:7e:7a:a4:1a:
b8:5b:0f:8c:b3:1b:d8:5d:dd:86:ac:c3:85:0b:a5:
0b:40:6c:fe:be:a0:d0:e4:f4:08:1c:fe:a7:4b:27:
31:3b:13:39:2a:fa:48:f6:4f:71:d5:2c:d6:2f:31:
ce:b0:a5:c9:48:de:05:94:3b:d3:bc:af:6e:69:11:
09:68:17:2f:cd:d3:ef:7a:bc:d3:38:47:a2:4c:53:
25:ef:fd:92:1e:15:e1:b9:1b:22:4e:20:e7:68:4e:
1e:77:8e:ef:d0:09:dc:82:c2:cc:da:56:63:75:4f:
16:22:3b:22:4c:f5:04:32:57:6c:85:f0:a0:f7:fb:
c6:d1:e5:a0:91:2b:c2:54:f9:11:cf:ee:04:66:a2:
db:5a:67:79:ac:fc:3d:b1:d6:45:b5:14:55:26:df:
97:6b:2d:97:d5:52:48:d5:20:3a:15:72:a8:4d:bc:
ba:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:DF:77:4D:B7:D4:5F:61:3B:D1:2C:AC:96:40:98:03:CD:B6:4A:3A
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/Y993TbfUX2E70SyslkCYA822Sjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:d6c0:145::/48
Signature Algorithm: sha256WithRSAEncryption
92:7e:be:c4:69:89:b1:f9:3e:03:10:77:7e:39:fa:29:3c:96:
c3:bb:ed:35:c1:2f:86:03:d7:97:53:82:50:f1:ab:55:56:6e:
e2:af:77:e9:0e:d2:7f:37:2e:9e:94:6b:ac:2f:20:1c:a0:d7:
d4:ad:44:0e:8c:29:b0:38:3f:48:26:93:30:c5:f1:9d:ab:81:
c8:95:b4:68:81:3f:39:15:af:dc:ec:c2:5d:a8:2d:c4:ee:19:
22:5d:2d:4d:bd:bd:8b:47:32:09:d3:8d:8a:77:f3:e0:b4:99:
a0:42:c6:3c:b4:a2:4c:00:ea:4b:12:1b:cd:bc:6e:09:04:ca:
e1:51:36:49:02:52:7b:44:58:67:0a:a6:ea:01:8f:69:63:6a:
dd:85:bc:22:e8:6d:2e:ea:78:4e:e9:46:e1:19:3b:8f:79:4e:
11:de:df:0a:4d:0d:fd:d9:9d:4d:8c:77:52:02:0c:c2:ea:bb:
6e:54:a6:37:18:dc:0f:e9:b5:3c:68:2e:7b:8c:7b:4f:c2:75:
3e:70:cc:92:ea:46:c2:27:c9:44:63:8b:18:a0:74:6e:b1:e4:
c0:0b:42:a6:86:90:1c:19:82:de:68:b6:ea:e5:ea:6c:f3:74:
ff:7c:e6:55:04:aa:b4:19:8f:21:af:c0:7d:7c:ef:b7:99:7a:
60:b9:5c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:38 2024 by rpki-client on console-fra.rpki-client.org