Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/Pyg7OxCrBXb0dLGfTTZLXbX4vfY.roa
File: Pyg7OxCrBXb0dLGfTTZLXbX4vfY.roa (raw, json)
Hash identifier: wseYevsS2OmKKaudrZYRbMB9dzGIrssGz1LqnjTrK0c=
Subject key identifier: 3F:28:3B:3B:10:AB:05:76:F4:74:B1:9F:4D:36:4B:5D:B5:F8:BD:F6
Certificate issuer: /CN=a566d8337776c98746bd231e69e185db2a9a5be2
Certificate serial: 081E2A64
Authority key identifier: A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/Pyg7OxCrBXb0dLGfTTZLXbX4vfY.roa
Signing time: Sat 01 Jan 2022 04:56:26 +0000
ROA not before: Sat 01 Jan 2022 04:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208608
IP address blocks: 2a0e:1540::/39 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136194660 (0x81e2a64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a566d8337776c98746bd231e69e185db2a9a5be2
Validity
Not Before: Jan 1 04:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f283b3b10ab0576f474b19f4d364b5db5f8bdf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:00:03:b5:82:71:d0:c3:e3:a9:8a:4b:48:c5:
08:d6:b5:82:53:5a:2d:3d:7e:d0:a0:65:64:42:de:
6e:74:0b:53:8d:d3:1e:aa:90:2d:11:d3:3c:71:d5:
60:7f:1a:8a:5c:d7:94:48:64:10:5e:a2:20:1d:ef:
c7:78:8c:7b:e6:37:0a:52:2f:6c:62:09:d6:75:f9:
bc:75:07:6e:34:7f:04:81:4f:3b:55:bc:17:33:fb:
51:6c:88:e7:6f:95:82:c8:70:3d:d0:77:f6:2a:6b:
08:39:69:39:a7:89:83:86:fc:ed:61:b4:6c:1a:e2:
7c:65:de:e8:35:8e:fc:a7:be:85:8d:0e:5f:b1:65:
b5:a4:13:8b:de:7f:08:1c:6d:ba:1d:00:ca:81:2c:
45:87:9c:53:b8:0d:fb:1f:d3:d0:10:9c:2e:01:93:
ee:ea:89:12:8d:eb:a1:aa:cc:74:fc:41:0b:49:6b:
e9:25:91:9b:6a:be:a9:55:d1:50:fc:ac:e4:ce:23:
c1:54:22:f9:0b:8d:93:78:28:1b:f0:8d:ed:30:28:
73:96:76:9a:67:ac:0b:c3:6d:cd:82:1c:32:01:ce:
84:2e:6b:44:27:65:fc:33:09:69:97:0b:57:d7:82:
b1:e5:9c:cb:c9:d1:09:ea:5f:34:a9:ea:5b:5e:b2:
9d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:28:3B:3B:10:AB:05:76:F4:74:B1:9F:4D:36:4B:5D:B5:F8:BD:F6
X509v3 Authority Key Identifier:
keyid:A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/Pyg7OxCrBXb0dLGfTTZLXbX4vfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/pWbYM3d2yYdGvSMeaeGF2yqaW-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1540::/39
Signature Algorithm: sha256WithRSAEncryption
65:f9:51:6c:28:4e:ce:f5:28:2c:5d:6c:38:26:2d:be:e2:d4:
2c:6b:9a:7d:f7:be:24:da:4c:f6:e8:3c:9c:79:f5:3e:e8:16:
1f:7d:93:63:ac:fd:9a:40:82:1b:0c:1a:0c:5a:e4:5f:82:cc:
d8:a5:83:d6:8e:dd:77:18:02:66:bb:da:a1:91:65:1b:8d:f9:
9c:36:be:00:e6:4e:39:43:a5:d5:86:b6:6c:42:8b:97:e1:b7:
2c:73:1c:a2:ca:58:50:82:d7:39:48:fd:03:da:0c:57:0f:c9:
37:13:81:a9:69:79:18:db:1f:d8:43:ab:9c:07:d3:d8:1e:13:
7f:7b:3c:a5:af:5b:0d:05:9a:9d:b8:5e:a2:2b:d2:ef:9a:39:
25:07:77:7b:32:a5:67:0e:dd:ec:a2:fc:fb:55:ae:21:00:d7:
1b:36:ff:b7:8a:49:39:ab:81:45:34:89:2b:75:b6:6f:11:22:
5e:7f:d2:2d:7f:3a:98:4a:5a:f4:40:59:80:45:12:7b:13:3c:
de:6f:50:9e:f5:01:1e:62:06:86:2f:7c:a8:fa:dd:e0:e0:0d:
4b:de:92:8b:15:3b:71:8d:3a:3c:f6:0c:6b:c7:7b:5c:81:63:
f6:08:19:d7:f4:ab:a0:e6:96:cc:c1:c5:3e:e2:4f:6d:39:9b:
27:31:7b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net