Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-WgOv_dG_r2Mtl2Ar3ADDd7MiSY.roa
File: 1-WgOv_dG_r2Mtl2Ar3ADDd7MiSY.roa (raw, json)
Hash identifier: c7zWRSReWZJWk+d+bWEQq//P2WdzU1jXanzVk/PGf8o=
Subject key identifier: F9:68:0E:BF:F7:46:FE:BD:8C:B6:5D:80:AF:70:03:0D:DE:CC:89:26
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 120BE445
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-WgOv_dG_r2Mtl2Ar3ADDd7MiSY.roa
Signing time: Sun 13 Feb 2022 18:51:05 +0000
ROA not before: Sun 13 Feb 2022 18:51:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56755
IP address blocks: 2a10:cc40:150::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302769221 (0x120be445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 13 18:51:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9680ebff746febd8cb65d80af70030ddecc8926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f3:66:26:ba:52:00:07:a6:4a:58:1b:bf:dc:
3b:af:2f:54:a6:f1:88:65:61:88:2d:68:a3:7b:68:
05:a1:7d:fb:2b:8b:5a:34:85:89:a4:bf:af:9b:98:
60:20:c9:94:94:fe:23:50:2d:58:6c:2f:b6:35:59:
3a:62:48:c8:d1:6a:02:af:22:3b:4c:d8:5a:ee:dd:
4a:53:1b:59:be:2c:97:22:19:60:e4:dd:f1:3f:80:
ad:73:19:8b:10:0c:29:f7:70:33:eb:f6:d2:ea:5e:
5a:12:1a:12:4d:0f:2a:9b:6e:ee:c1:40:80:d8:2f:
0e:eb:85:f6:02:1a:16:e1:94:f2:83:48:ee:0a:2c:
62:29:74:db:dc:c2:f5:db:26:fd:79:45:29:83:3a:
87:92:e7:c8:fc:73:7a:50:e2:de:eb:f5:72:b8:75:
a3:69:cd:0a:ef:24:18:c4:05:40:be:7b:09:23:33:
c8:7d:01:61:74:2d:80:88:5d:2c:89:4f:d6:af:f5:
df:af:9d:fd:2e:3e:b4:d1:6d:2c:29:f0:12:aa:d6:
8d:3e:52:29:2c:74:37:b1:f2:06:00:f4:b3:9b:03:
f4:09:44:20:d8:a9:48:be:73:bd:b0:18:8a:49:f5:
0e:eb:62:a1:6c:84:2a:2c:2e:cc:3a:0b:3b:8c:27:
da:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:68:0E:BF:F7:46:FE:BD:8C:B6:5D:80:AF:70:03:0D:DE:CC:89:26
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-WgOv_dG_r2Mtl2Ar3ADDd7MiSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:150::/44
Signature Algorithm: sha256WithRSAEncryption
b1:02:da:1c:f1:ce:4c:a9:0a:9c:a9:fb:8c:ec:af:9a:21:86:
17:d6:14:73:f8:54:88:ea:4a:36:8a:08:18:bb:d2:4f:da:7a:
70:0f:f9:f5:13:1a:18:61:cd:6b:89:3b:07:8a:c5:41:8f:90:
46:7a:6d:46:ab:89:54:9d:5e:85:a6:c6:9c:3d:42:89:88:ed:
24:ca:11:d2:16:f7:99:77:30:62:94:44:36:9d:ee:05:13:7e:
cd:14:22:2c:ae:55:db:aa:cf:6c:c4:b4:5a:28:3f:2e:e9:5c:
0b:3b:f9:38:74:0a:60:c2:6c:fd:f9:47:8a:b4:52:8a:c0:76:
05:31:c9:d3:14:ef:2f:19:cb:39:ff:a5:fe:fd:3a:e8:f4:01:
0d:51:57:e2:76:fa:8a:9e:da:80:77:f3:94:40:2b:f4:9e:84:
ec:b7:2a:65:70:a6:d7:c0:04:14:ba:b5:60:fa:cc:cc:df:c6:
10:5e:b7:36:9a:5e:7d:0e:34:ee:c2:47:4a:11:e2:aa:bd:12:
22:74:8c:db:27:76:4a:94:ce:d3:b4:bc:e4:da:14:b0:40:66:
88:68:7f:e1:4f:b7:ce:60:57:4f:ca:18:51:ae:a1:f2:12:39:
3d:8c:ea:62:f7:7a:30:b2:00:f1:6a:15:57:d8:1d:2e:07:1b:
3b:c3:97:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org