Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/TlN-zSkN-ykOXwYzen3ZbP8q7kY.roa
File: TlN-zSkN-ykOXwYzen3ZbP8q7kY.roa (raw, json)
Hash identifier: M+J8tsA7pSU99KR6rmCjoNg1qoG7BK6fFbmaGgv6fDk=
Subject key identifier: 4E:53:7E:CD:29:0D:FB:29:0E:5F:06:33:7A:7D:D9:6C:FF:2A:EE:46
Certificate issuer: /CN=60b28e2723955a3f63e47b3230317eae9292ff32
Certificate serial: 038AAB61
Authority key identifier: 60:B2:8E:27:23:95:5A:3F:63:E4:7B:32:30:31:7E:AE:92:92:FF:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YLKOJyOVWj9j5HsyMDF-rpKS_zI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/TlN-zSkN-ykOXwYzen3ZbP8q7kY.roa
Signing time: Sat 01 Jan 2022 06:00:42 +0000
ROA not before: Sat 01 Jan 2022 06:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212344
IP address blocks: 2001:67c:1b18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59419489 (0x38aab61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60b28e2723955a3f63e47b3230317eae9292ff32
Validity
Not Before: Jan 1 06:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e537ecd290dfb290e5f06337a7dd96cff2aee46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a2:a6:db:f6:25:d3:7a:a9:97:7a:eb:02:2d:
f7:c8:e3:b0:6c:6c:e5:f3:04:86:e5:ff:d9:2a:57:
93:ab:41:96:67:34:95:45:ed:5f:62:3e:d6:b3:ff:
69:85:71:ec:63:36:3c:9f:1d:72:02:65:6f:0f:8f:
eb:ae:38:e1:07:96:b0:a4:52:55:44:cb:d1:e0:8f:
e8:3d:f1:a1:e7:9a:fe:86:f1:07:33:77:4d:7f:eb:
6b:eb:9e:4b:26:60:68:de:37:74:97:87:83:7a:8c:
57:18:25:74:2f:3f:d4:b1:4b:2f:50:c9:0e:a0:9d:
93:52:ba:fe:04:be:74:11:a4:4e:a0:ca:eb:c0:ab:
f1:f4:1d:85:97:87:fa:cf:ab:db:a7:02:b6:e6:7c:
05:31:67:20:7a:65:46:60:f8:cd:4a:1e:c2:27:ea:
33:a2:c7:68:95:10:5c:ed:f9:c8:19:92:5c:36:b5:
17:36:68:f0:a3:b9:0e:7c:19:5e:8c:94:16:a9:b5:
c4:8c:07:49:05:bd:2f:2d:c4:ef:e8:c0:bb:20:30:
d7:b5:1d:f8:46:15:62:b1:25:e3:83:af:ca:8d:2b:
d9:1c:76:1c:e9:00:90:55:ee:a3:43:34:35:ad:4c:
c6:69:4e:01:ee:7c:1a:a0:3e:0d:1a:c7:03:63:f9:
2d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:53:7E:CD:29:0D:FB:29:0E:5F:06:33:7A:7D:D9:6C:FF:2A:EE:46
X509v3 Authority Key Identifier:
keyid:60:B2:8E:27:23:95:5A:3F:63:E4:7B:32:30:31:7E:AE:92:92:FF:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YLKOJyOVWj9j5HsyMDF-rpKS_zI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/TlN-zSkN-ykOXwYzen3ZbP8q7kY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/YLKOJyOVWj9j5HsyMDF-rpKS_zI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1b18::/48
Signature Algorithm: sha256WithRSAEncryption
7f:3c:cd:7b:4f:b6:25:cf:03:61:b1:be:b6:14:16:51:e3:5e:
16:c9:dd:9a:7c:98:93:07:b8:f1:01:00:37:84:4b:cd:cd:f1:
90:06:3d:fc:79:0c:9c:0c:92:3c:74:79:68:72:18:f9:3e:a4:
65:00:35:0e:34:36:8b:cc:46:44:ef:33:b3:0d:d4:c5:78:28:
ae:17:32:a4:ca:df:4f:94:76:e4:49:e1:2f:de:4a:d5:54:a8:
d5:bb:17:77:41:a8:0b:c6:88:f7:8e:df:76:33:b1:70:9a:88:
2e:80:4a:78:65:3e:c1:73:65:55:61:81:86:d8:ee:1c:5f:4f:
a9:00:99:93:fd:8f:07:19:7c:7a:a7:05:e1:9c:2c:39:d4:7f:
a5:7e:58:0a:d9:ad:8d:d4:a5:18:9c:90:36:ae:1e:a8:2a:46:
f5:54:fe:f5:03:77:a0:22:da:6f:db:bd:b0:71:8c:23:44:b8:
4a:23:f6:96:7f:df:27:dd:e9:92:d2:23:25:87:bb:ec:1d:80:
7f:94:37:0d:9b:32:56:0e:df:6d:34:0d:e6:7d:1a:53:a5:7a:
88:3f:64:19:46:59:80:76:da:e2:b2:84:dd:7c:ff:40:a8:ad:
50:15:de:14:6a:b7:01:2a:ce:1d:38:d7:7c:64:a3:27:53:1d:
ff:8c:fb:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:50 2023 by rpki-client on console.sobornost.net