Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/u-Yx8F9SnPwSvRc2uC8nUrPZGAM.roa
File: u-Yx8F9SnPwSvRc2uC8nUrPZGAM.roa (raw, json)
Hash identifier: zDyfZzBEGAvWO69KGJotzNQOF3gXrBPiLZP0mwZ/K5E=
Subject key identifier: BB:E6:31:F0:5F:52:9C:FC:12:BD:17:36:B8:2F:27:52:B3:D9:18:03
Certificate issuer: /CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Certificate serial: 08F8BED3
Authority key identifier: D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/u-Yx8F9SnPwSvRc2uC8nUrPZGAM.roa
Signing time: Fri 04 Mar 2022 13:37:45 +0000
ROA not before: Fri 04 Mar 2022 13:37:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212972
IP address blocks: 2a0e:e704:43::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150519507 (0x8f8bed3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Validity
Not Before: Mar 4 13:37:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbe631f05f529cfc12bd1736b82f2752b3d91803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:89:09:59:98:8c:30:90:81:ce:78:d1:19:56:
df:18:02:fe:04:94:b8:9c:34:85:88:ce:64:81:d5:
96:21:47:32:43:b0:ac:fa:5f:f0:c1:96:0a:d4:e5:
3b:0e:b8:e0:53:a8:6f:68:1f:5e:0f:98:3b:bc:13:
ff:cd:03:4c:ca:f0:2b:1e:02:79:50:35:f6:9f:b2:
75:f5:e8:08:2d:b6:88:94:64:a3:c7:c8:59:e2:9e:
21:2e:bc:66:35:15:9a:e0:65:f3:ee:5a:44:68:94:
f1:5d:8d:ba:84:1c:03:f1:1e:02:aa:92:c7:67:7c:
f4:c8:02:23:73:b4:49:c0:c5:2c:8d:00:72:f2:4d:
57:7d:93:51:fd:37:dc:e1:7f:10:ee:27:45:10:72:
a6:6f:1a:39:a0:fa:77:db:c0:42:a7:d6:fb:15:9c:
8f:5b:d3:17:bc:f9:28:fc:d3:b0:ce:f7:fa:4b:13:
8a:91:60:3d:c5:1d:a8:33:44:9f:d1:d8:46:4a:de:
4a:f2:e3:88:9e:a9:e9:87:1f:57:7d:50:81:dd:1d:
4a:e7:e0:b0:b9:5c:84:69:75:82:b5:b7:07:d4:b9:
30:b5:cb:73:86:21:99:c1:6d:d8:60:ec:fc:af:57:
51:bc:c0:38:d6:01:d5:55:d7:98:8f:34:4f:b6:bc:
1b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E6:31:F0:5F:52:9C:FC:12:BD:17:36:B8:2F:27:52:B3:D9:18:03
X509v3 Authority Key Identifier:
keyid:D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/u-Yx8F9SnPwSvRc2uC8nUrPZGAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/1g9F98xLaR_UoxwfHAtPYF13pu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e704:43::/48
Signature Algorithm: sha256WithRSAEncryption
58:38:5b:0f:d1:56:63:ee:9f:d5:34:be:5e:1a:c7:de:9b:3b:
1c:ba:b2:3e:28:8d:d7:80:06:40:f4:e4:26:be:12:90:45:d0:
33:f2:26:b1:d9:25:6d:84:b8:87:2a:49:4f:da:ec:fd:8a:2c:
15:4e:d6:fe:3d:78:72:a9:59:46:9a:ec:2f:ae:ef:c1:3f:ec:
aa:d7:c1:73:6b:56:c7:17:fe:a2:8a:e1:ad:fd:fb:48:ed:ba:
7c:e1:65:81:67:73:87:2a:b1:0c:56:a0:19:3e:9e:44:e5:a5:
b4:88:9e:c7:ea:5f:10:4b:f1:de:f0:23:3c:46:c1:33:59:23:
c3:cf:c1:10:b9:02:1f:aa:b3:c7:01:34:d2:e2:ab:04:0d:79:
3b:96:de:3d:57:ef:bb:21:3a:8c:c2:4c:71:2e:43:4c:df:97:
10:64:a9:18:ac:fb:79:bd:db:ee:58:8d:cc:9a:80:4a:32:b8:
a3:c3:9d:ea:d7:9d:fb:f9:f1:88:b5:fe:01:b9:8e:57:0d:3e:
8e:08:4d:09:a5:76:08:3a:aa:3f:36:75:7e:c7:90:32:b5:e2:
1b:63:eb:a2:22:ea:0b:ba:f0:af:7e:36:03:90:ae:ff:a4:34:
81:58:89:22:2c:bb:1f:c2:f6:0b:95:51:29:47:55:8f:d0:b4:
c4:f4:bf:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:15 2023 by rpki-client on console-ams.rpki-client.org