Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/78a861-b918-4ea7-88a8-603cb083714b/1/onYPZyGoGwbtXq4P-bpZAwXmyt4.roa
File: onYPZyGoGwbtXq4P-bpZAwXmyt4.roa (raw, json)
Hash identifier: h9txUw+DdsoKmvkJwdcfES/MD94D/ktWAEwjyqd4jbA=
Subject key identifier: A2:76:0F:67:21:A8:1B:06:ED:5E:AE:0F:F9:BA:59:03:05:E6:CA:DE
Certificate issuer: /CN=0ba56abdcb4f6f0c86b832ecc13f5e249721d6f8
Certificate serial: E591
Authority key identifier: 0B:A5:6A:BD:CB:4F:6F:0C:86:B8:32:EC:C1:3F:5E:24:97:21:D6:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6VqvctPbwyGuDLswT9eJJch1vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/78a861-b918-4ea7-88a8-603cb083714b/1/onYPZyGoGwbtXq4P-bpZAwXmyt4.roa
Signing time: Tue 17 May 2022 15:14:05 +0000
ROA not before: Tue 17 May 2022 15:14:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201909
IP address blocks: 2001:67c:624::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58769 (0xe591)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ba56abdcb4f6f0c86b832ecc13f5e249721d6f8
Validity
Not Before: May 17 15:14:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2760f6721a81b06ed5eae0ff9ba590305e6cade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8e:0b:2a:eb:e7:50:ea:2f:18:08:b1:2d:2a:
43:10:80:e5:ef:9c:7d:fd:2b:6e:ad:d3:14:bd:49:
8f:3f:1b:fd:4c:56:ec:e8:73:3d:71:c1:5b:ac:a1:
81:17:41:9c:dd:fa:b8:11:cd:39:79:5b:57:fb:71:
62:65:fa:d2:d7:f9:c2:24:75:7a:d3:f7:07:11:70:
e6:e8:08:dd:a0:bc:61:72:08:cd:f2:84:05:f7:a3:
ad:29:83:a9:37:69:2c:a0:1a:59:37:04:fa:33:2b:
71:a4:7d:1a:21:21:51:e5:92:7d:e9:15:a8:3b:29:
c8:70:66:7e:c7:25:47:3e:f7:f5:52:00:29:1a:a0:
1f:08:5c:d2:3f:6c:d3:f7:f1:f7:7c:24:86:5a:42:
de:e2:39:4f:34:ce:35:24:10:b7:ae:26:79:73:5a:
99:28:25:c2:5a:8f:c0:83:3d:92:69:05:00:7b:84:
c2:98:d3:e1:03:8c:1e:2d:83:cd:15:85:58:0d:c2:
2d:3e:0d:3a:0d:11:1d:1a:6f:d8:8d:67:7f:9e:94:
27:6f:99:be:45:7c:f1:5e:ef:76:e5:b1:cc:08:88:
ab:3b:87:25:b7:43:6c:64:6a:c2:cc:d7:d8:6e:d7:
44:c3:ad:62:ea:ef:46:e0:9e:5c:57:5a:b0:5f:73:
f5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:76:0F:67:21:A8:1B:06:ED:5E:AE:0F:F9:BA:59:03:05:E6:CA:DE
X509v3 Authority Key Identifier:
keyid:0B:A5:6A:BD:CB:4F:6F:0C:86:B8:32:EC:C1:3F:5E:24:97:21:D6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6VqvctPbwyGuDLswT9eJJch1vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/78a861-b918-4ea7-88a8-603cb083714b/1/onYPZyGoGwbtXq4P-bpZAwXmyt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/78a861-b918-4ea7-88a8-603cb083714b/1/C6VqvctPbwyGuDLswT9eJJch1vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:624::/48
Signature Algorithm: sha256WithRSAEncryption
1c:a8:98:59:c4:e1:dc:15:bb:99:8e:60:97:56:c4:6b:b6:59:
57:0a:cd:64:72:60:ce:4a:29:6d:b6:b7:ce:ef:4f:9c:2b:be:
bd:87:5e:ef:17:4b:dd:ec:6c:5c:90:14:93:b0:f8:0f:55:fe:
4f:a1:3f:0a:1f:97:a9:2e:af:88:b8:b9:95:22:18:dd:24:8d:
41:ea:98:c5:49:4c:b3:be:3b:37:61:9a:31:bb:3d:0d:84:8e:
01:9d:26:62:d9:d1:c0:37:3f:fa:93:eb:15:26:1b:46:26:bb:
f0:f1:9a:2a:57:81:f8:59:4a:7d:fd:65:3e:6e:cf:58:85:70:
d7:d6:1e:15:c9:8b:91:c4:65:06:ca:71:eb:9e:1a:a3:2c:af:
5c:74:8d:6f:0e:6d:1f:cf:94:ad:08:52:d4:1d:7d:2b:97:60:
21:20:e0:d2:01:d0:31:49:c1:7c:c1:46:82:26:5e:fc:61:a6:
77:b7:88:e9:fe:8c:31:32:61:7f:16:cc:e7:11:40:62:9e:cc:
d5:d9:8c:bf:23:75:90:31:08:10:f2:cd:98:99:04:63:12:96:
18:eb:55:a1:60:a9:55:d4:a0:e2:4a:50:e8:89:11:28:c8:74:
fb:c4:2c:ea:f9:09:e7:fd:ca:9f:b3:6d:59:05:18:83:1d:fa:
bb:bf:55:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:07 2023 by rpki-client on console-fra.rpki-client.org