Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/YpjnSbswkW4IPG5XOgf5bpCbsrY.roa
File: YpjnSbswkW4IPG5XOgf5bpCbsrY.roa (raw, json)
Hash identifier: PR4OyNYztBfrpfdKBHdqgcxI0kN46QQdN2lxHVkBc/o=
Subject key identifier: 62:98:E7:49:BB:30:91:6E:08:3C:6E:57:3A:07:F9:6E:90:9B:B2:B6
Certificate issuer: /CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d
Certificate serial: 0183F840FDE8451E1655B4827A9AB52A4B86
Authority key identifier: 7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/YpjnSbswkW4IPG5XOgf5bpCbsrY.roa
Signing time: Fri 21 Oct 2022 01:55:52 +0000
ROA not before: Fri 21 Oct 2022 01:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 394144
IP address blocks: 2a0e:7580::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f8:40:fd:e8:45:1e:16:55:b4:82:7a:9a:b5:2a:4b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d
Validity
Not Before: Oct 21 01:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6298e749bb30916e083c6e573a07f96e909bb2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e6:b9:f0:f9:4a:94:c2:85:56:a9:5d:dc:32:
a6:7c:6b:a6:e7:25:15:65:65:77:98:f2:d3:83:1d:
58:16:35:6d:d1:11:2b:13:b2:4a:72:17:44:1c:b5:
96:0a:24:2a:b9:07:0f:bb:1c:f8:de:fc:19:f9:14:
3c:b1:9d:b1:ad:e9:c5:69:22:0e:f2:06:92:be:6b:
95:0a:44:8a:4b:20:45:a2:b7:f3:91:f8:03:30:5e:
29:3a:fd:f9:2e:41:d0:3c:f4:6a:9d:04:07:bc:b6:
55:3f:ab:a5:6c:9f:58:3e:02:eb:fc:dd:e6:9b:52:
d2:a1:1b:3b:22:c7:3d:56:ca:2a:22:7d:c5:e1:33:
76:b7:df:ce:93:80:d4:03:42:70:17:2d:9c:0f:e5:
83:8b:3b:9a:93:5d:03:9b:8b:de:dd:a8:b0:51:08:
9c:b2:f7:0b:e8:22:dd:c4:97:b7:8a:f5:f3:33:af:
05:9c:ac:b8:24:67:e4:a4:ed:39:09:f0:61:26:c6:
07:9c:48:92:a2:e7:ca:23:b0:2d:05:78:3b:02:7b:
7d:76:3f:90:a7:bd:ea:93:0c:36:b6:5d:e0:56:5f:
0b:93:18:0a:d4:13:da:fe:ad:14:d2:da:ad:62:83:
66:2d:f0:b8:b8:db:34:6d:c1:d1:ec:42:77:d8:e7:
0b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:98:E7:49:BB:30:91:6E:08:3C:6E:57:3A:07:F9:6E:90:9B:B2:B6
X509v3 Authority Key Identifier:
keyid:7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/YpjnSbswkW4IPG5XOgf5bpCbsrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/e6K-mEOLmO5ooNG4xBRFIL0KYj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7580::/29
Signature Algorithm: sha256WithRSAEncryption
57:68:64:86:87:d6:d2:c9:0f:09:4b:e6:c2:f4:04:57:58:a7:
d9:01:a8:93:d2:00:a4:5a:37:ab:29:11:49:9e:a1:39:11:60:
fc:e3:e2:51:cf:c6:38:6e:45:2f:a4:00:1d:59:ca:15:c3:7b:
56:8b:a2:aa:bd:32:52:2e:0f:0e:a3:89:bf:56:97:85:b1:43:
4f:f2:d5:b2:38:59:99:d0:5c:dc:68:66:44:9c:76:e6:bf:53:
7b:bb:4a:e0:3c:24:44:14:38:ed:64:70:d8:8e:f7:cc:4a:fc:
e0:40:2a:b7:f6:49:dd:45:8c:f8:28:46:5d:a1:2b:3e:62:e9:
a1:30:2d:c2:15:39:f1:6b:22:18:fb:7c:81:0e:f4:c8:97:b9:
af:be:e7:41:25:da:67:74:eb:af:f8:83:c5:7f:fa:a1:dc:ce:
b9:57:a8:bf:20:31:4e:60:0f:b5:97:16:2c:99:49:d1:57:24:
e2:a6:6d:58:94:39:d9:42:34:c3:fa:9f:88:57:6e:65:4a:7d:
8e:9d:71:ea:2b:33:b2:90:e3:96:14:50:7e:bc:04:bd:0b:00:
c3:d4:81:9d:60:46:36:f3:96:69:ae:01:88:e3:df:f3:db:39:
dd:39:48:f8:62:e0:26:23:33:3e:76:ae:f2:fe:ec:88:7e:52:
67:6f:68:4c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYP4QP3oRR4WVbSCepq1KkuGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiYTJiZTk4NDM4Yjk4ZWU2OGEwZDFiOGM0MTQ0NTIwYmQw
YTYyM2QwHhcNMjIxMDIxMDE1NTUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Mjk4ZTc0OWJiMzA5MTZlMDgzYzZlNTczYTA3Zjk2ZTkwOWJiMmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+a58PlKlMKFVqld3DKmfGum5yUV
ZWV3mPLTgx1YFjVt0RErE7JKchdEHLWWCiQquQcPuxz43vwZ+RQ8sZ2xrenFaSIO
8gaSvmuVCkSKSyBForfzkfgDMF4pOv35LkHQPPRqnQQHvLZVP6ulbJ9YPgLr/N3m
m1LSoRs7Isc9VsoqIn3F4TN2t9/Ok4DUA0JwFy2cD+WDizuak10Dm4ve3aiwUQic
svcL6CLdxJe3ivXzM68FnKy4JGfkpO05CfBhJsYHnEiSoufKI7AtBXg7Ant9dj+Q
p73qkww2tl3gVl8LkxgK1BPa/q0U0tqtYoNmLfC4uNs0bcHR7EJ32OcLTQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGKY50m7MJFuCDxuVzoH+W6Qm7K2MB8GA1UdIwQY
MBaAFHuivphDi5juaKDRuMQURSC9CmI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTZLLW1FT0xtTzVvb05HNHhCUkZJTDBLWWowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC84NDVlNzYtOWMyZC00YWZmLTkyYWYt
NDkzNWIzZjVjMjA5LzEvWXBqblNic3drVzRJUEc1WE9nZjVicENic3JZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC84NDVlNzYtOWMyZC00YWZmLTkyYWYtNDkzNWIzZjVjMjA5
LzEvZTZLLW1FT0xtTzVvb05HNHhCUkZJTDBLWWowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg51gDAN
BgkqhkiG9w0BAQsFAAOCAQEAV2hkhofW0skPCUvmwvQEV1in2QGok9IApFo3qykR
SZ6hORFg/OPiUc/GOG5FL6QAHVnKFcN7Vouiqr0yUi4PDqOJv1aXhbFDT/LVsjhZ
mdBc3GhmRJx25r9Te7tK4DwkRBQ47WRw2I73zEr84EAqt/ZJ3UWM+ChGXaErPmLp
oTAtwhU58WsiGPt8gQ70yJe5r77nQSXaZ3Trr/iDxX/6odzOuVeovyAxTmAPtZcW
LJlJ0Vck4qZtWJQ52UI0w/qfiFduZUp9jp1x6iszspDjlhRQfrwEvQsAw9SBnWBG
NvOWaa4BiOPf89s53TlI+GLgJiMzPnau8v7siH5SZ29oTA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:23 2023 by rpki-client on console-ams.rpki-client.org