Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/YYHNtp7tgzLizY6zijav1C9KCXs.roa
File: YYHNtp7tgzLizY6zijav1C9KCXs.roa (raw, json)
Hash identifier: UHj8wg9c8cgtinLG2+j7Ylpf4IW+nW4MosvqfHCaeIc=
Subject key identifier: 61:81:CD:B6:9E:ED:83:32:E2:CD:8E:B3:8A:36:AF:D4:2F:4A:09:7B
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 080E1909
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/YYHNtp7tgzLizY6zijav1C9KCXs.roa
Signing time: Sat 01 Jan 2022 09:02:31 +0000
ROA not before: Sat 01 Jan 2022 09:02:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208658
IP address blocks: 2001:678:aac::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135141641 (0x80e1909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Jan 1 09:02:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6181cdb69eed8332e2cd8eb38a36afd42f4a097b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:11:43:b8:d3:67:d1:02:3b:9a:2b:12:04:ca:
e9:5c:59:a5:63:39:30:2b:eb:6e:06:f6:b1:1d:55:
66:ff:8e:a6:a7:89:07:d6:77:d5:c8:1b:f8:7d:1b:
ad:86:d1:43:4d:6f:51:43:d8:44:4e:b2:ea:34:87:
06:b8:14:73:05:94:41:49:2e:b3:35:12:d7:c4:aa:
13:a2:0d:6d:a7:03:99:d9:d7:12:cb:f7:22:fa:89:
c4:0f:2b:7e:f1:5e:68:5e:15:9d:e1:48:c7:98:f7:
b9:49:f7:a1:71:ed:bc:12:04:82:de:ad:36:41:e0:
39:e9:f3:71:d3:e4:a7:80:22:fe:ca:10:28:e4:ae:
05:e7:2d:f9:80:37:62:a0:39:63:f9:8e:9e:2f:3d:
f3:69:63:90:fb:1c:35:63:79:88:b8:2b:f8:b9:1f:
04:2b:69:72:cf:5d:58:e0:45:09:08:6b:02:1b:1e:
77:f3:43:53:b9:4f:cf:1c:d5:35:e1:58:83:db:cc:
13:f7:4f:70:5e:fb:22:5e:76:c2:f8:42:73:40:8b:
c8:03:18:f7:25:46:54:ef:09:49:87:5b:f3:31:e7:
ca:fd:59:2a:44:85:01:79:61:3f:6a:8b:1a:73:f3:
01:0b:19:d3:59:40:92:15:2b:bf:94:fd:34:a6:43:
d2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:81:CD:B6:9E:ED:83:32:E2:CD:8E:B3:8A:36:AF:D4:2F:4A:09:7B
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/YYHNtp7tgzLizY6zijav1C9KCXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:aac::/48
Signature Algorithm: sha256WithRSAEncryption
94:82:df:b9:be:0a:2e:cf:64:24:4d:e2:7b:5e:84:a3:04:f3:
29:3c:98:94:a2:16:41:28:42:f7:8f:15:e0:af:34:25:18:25:
36:c9:78:df:ca:6b:97:2e:4e:37:eb:96:47:2a:85:3d:83:61:
c6:cd:0e:1a:df:ea:3f:ab:71:4f:6f:4d:4b:a9:97:eb:80:51:
6f:37:15:77:a6:13:a0:e0:cb:72:27:67:d5:c4:ad:1c:3c:f9:
17:7a:c6:bf:d4:c7:c6:f2:ad:30:1f:aa:ff:fa:91:fb:1a:02:
89:02:c9:6b:c8:41:d9:0d:a8:ff:99:ca:82:32:26:26:d6:6e:
ab:9b:c1:36:d4:eb:7c:82:67:01:67:0b:8a:6f:72:9c:3b:9e:
bd:9b:47:2b:5b:4a:bf:2d:ee:c4:05:49:3d:2b:96:2e:da:01:
4f:04:cc:98:13:2a:9a:39:81:ef:e9:37:43:f0:c2:0f:9b:7d:
c7:71:9e:e3:75:40:d3:10:6f:61:79:db:26:cd:e8:cb:9b:61:
f9:44:15:a2:a7:5b:88:75:9f:b0:23:2e:33:8b:8e:e1:47:f8:
b1:bb:7e:b4:82:dc:fe:42:1f:57:75:cc:0c:12:26:ba:e5:8b:
7b:f4:78:42:1a:4a:74:29:3d:bb:3b:14:30:26:93:81:5e:eb:
16:cd:53:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:30 2024 by rpki-client on console-ams.rpki-client.org