Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/WZ59_APKMd0MgR7oiAzokjgOhZo.roa
File: WZ59_APKMd0MgR7oiAzokjgOhZo.roa (raw, json)
Hash identifier: ry1QZeiKTm0OqdVjmRvdUhMUi+dslx150pZX0/Wv12U=
Subject key identifier: 59:9E:7D:FC:03:CA:31:DD:0C:81:1E:E8:88:0C:E8:92:38:0E:85:9A
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0439A751
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/WZ59_APKMd0MgR7oiAzokjgOhZo.roa
Signing time: Thu 12 May 2022 14:37:03 +0000
ROA not before: Thu 12 May 2022 14:37:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 2a10:1fc0:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70887249 (0x439a751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: May 12 14:37:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=599e7dfc03ca31dd0c811ee8880ce892380e859a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a2:75:c2:ea:ff:33:27:eb:36:f1:49:a7:99:
61:b1:e3:29:b4:6b:a9:d7:67:a1:f1:04:50:d0:2d:
6e:38:b3:ac:d8:d2:be:0e:73:84:5f:30:bd:bc:1d:
32:3a:c8:95:ac:31:01:64:4f:3d:58:7f:24:56:1d:
d3:93:54:b0:b6:fd:a4:57:71:64:24:f8:48:f9:2d:
dc:7c:8a:f3:b2:7c:b0:7e:ae:c6:25:cb:c7:5f:30:
7a:8c:41:1a:23:83:44:8c:1e:6b:57:8a:cb:53:d6:
f2:3b:61:db:cb:cd:00:bb:f2:64:82:62:c8:0d:37:
f3:ce:45:46:be:d1:04:83:2e:0c:87:c3:16:e4:cf:
d0:30:bc:2e:b4:86:35:72:54:35:13:20:84:02:8b:
0a:7c:e0:5f:f0:6f:85:10:72:f7:51:b1:7c:66:75:
68:1a:70:9d:e4:f8:05:98:1e:2e:98:fe:24:ff:4e:
3f:7d:9c:e8:61:1a:2f:aa:32:d1:1a:de:81:34:4e:
03:de:3e:f3:9e:39:2a:50:84:77:8e:3c:2e:5c:e2:
85:4d:53:45:e9:fe:42:6c:4e:95:cd:96:5a:07:03:
f4:e1:3c:f7:e8:e5:d0:6b:cf:aa:80:13:81:07:87:
e9:cd:87:81:ff:bf:6f:42:4a:de:33:5e:cc:31:d3:
02:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9E:7D:FC:03:CA:31:DD:0C:81:1E:E8:88:0C:E8:92:38:0E:85:9A
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/WZ59_APKMd0MgR7oiAzokjgOhZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1fc0:7::/48
Signature Algorithm: sha256WithRSAEncryption
1e:f6:bf:ef:79:13:7d:22:35:91:11:5a:00:47:c8:25:90:1c:
c9:d6:4d:15:48:e1:5a:19:65:ae:d3:31:fe:73:ce:b6:fd:63:
05:ca:76:cf:0d:10:66:7e:4b:79:e7:62:61:25:19:7a:15:0e:
6c:c7:00:42:71:eb:4f:3e:08:e1:e2:ad:2e:49:1c:f1:a7:e6:
ec:2a:fb:36:e9:f3:a8:af:cb:ba:16:cd:bb:87:6b:73:06:a3:
94:01:8e:91:4d:41:79:8c:c2:2e:b1:fd:3a:f1:d3:f9:4d:10:
4a:99:0b:5f:00:42:e1:c9:3a:c8:0a:7a:ea:dd:d8:c2:41:ce:
00:fa:1c:2b:01:60:76:16:ac:e7:53:a5:a6:01:ef:a1:02:3e:
e3:8d:25:97:55:87:e6:c9:12:36:58:e4:ad:c2:fd:ba:77:ff:
6b:ae:77:24:9f:44:13:ff:28:c1:58:43:2b:fe:96:8d:d0:4f:
65:fc:7f:e9:77:55:d2:c3:7d:67:92:67:a2:12:05:bc:1d:dc:
17:47:00:3e:e5:ec:03:a5:32:f1:ef:a5:8d:2b:75:96:43:22:
5a:92:e5:de:07:27:f7:a9:13:d0:db:6e:50:12:5d:03:eb:a6:
1c:d5:73:14:cf:0f:6b:99:3e:b0:ac:9c:5b:9a:40:91:1c:ab:
c0:88:1b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:26 2023 by rpki-client on console-ams.rpki-client.org