Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1CSG6eghD88SaOPybxJajeHiPtg.roa
File: 1CSG6eghD88SaOPybxJajeHiPtg.roa (raw, json)
Hash identifier: kYjRphHFugOrpgfEVB1CRCJWTP0a0pK53x1MYTZUSTM=
Subject key identifier: D4:24:86:E9:E8:21:0F:CF:12:68:E3:F2:6F:12:5A:8D:E1:E2:3E:D8
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1085DE48
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1CSG6eghD88SaOPybxJajeHiPtg.roa
Signing time: Sat 01 Jan 2022 09:04:53 +0000
ROA not before: Sat 01 Jan 2022 09:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140936
IP address blocks: 2a0e:b107:bd0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277208648 (0x1085de48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d42486e9e8210fcf1268e3f26f125a8de1e23ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:26:01:ae:7b:7d:8a:f6:df:0b:1a:62:00:75:
e3:a0:a3:93:d6:0c:ce:38:2f:71:be:74:70:57:b9:
92:73:cd:9e:d5:ac:dc:cb:16:a4:f6:53:74:48:42:
66:e7:5a:bd:c4:6d:d6:a4:58:7d:18:3a:75:66:f9:
3c:3a:aa:9c:75:9e:6d:01:94:2c:56:23:40:ea:e7:
d2:d8:e8:09:f8:7d:a2:5f:15:36:d2:70:58:7e:5a:
c7:05:cb:78:84:57:f6:fd:df:19:1e:8d:39:69:ea:
ac:7c:16:0f:a8:b4:2f:14:3d:a5:e1:f1:84:16:d8:
b6:81:04:95:9f:fc:22:b4:a5:63:29:11:20:0c:58:
79:74:77:2a:d5:28:91:33:cb:8d:73:60:59:c0:ca:
2c:05:30:4f:ae:d2:56:ad:bd:60:72:82:93:73:7d:
4f:72:a0:34:37:cd:ac:9c:cd:92:4d:82:81:b1:16:
0f:07:69:e2:b1:ad:f0:14:91:66:1a:41:ac:b8:55:
5d:65:8d:1d:78:46:5a:8f:08:3f:cf:07:4f:21:32:
c2:b1:7e:cc:9c:db:23:c2:df:b6:14:c4:97:88:69:
2b:7e:bf:75:ab:c9:b0:86:55:b1:63:2b:4b:f6:f4:
89:33:eb:f9:af:ae:79:ac:6e:b2:ae:40:81:48:58:
ce:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:24:86:E9:E8:21:0F:CF:12:68:E3:F2:6F:12:5A:8D:E1:E2:3E:D8
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1CSG6eghD88SaOPybxJajeHiPtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:bd0::/48
Signature Algorithm: sha256WithRSAEncryption
29:d9:8a:35:bd:f9:20:0e:dd:c4:4f:04:54:ae:d2:fb:67:95:
b9:d6:84:ae:69:f1:46:bf:6d:bf:eb:2d:71:b5:13:65:b3:d7:
a5:ee:b9:10:d2:7d:1a:5b:b0:df:88:48:a1:a0:4b:2b:69:b0:
a0:5e:b3:12:aa:90:1e:ba:a9:94:2b:c9:50:56:6c:82:10:87:
d8:ca:d0:7c:52:b0:37:93:8a:f6:98:82:27:00:02:ec:70:73:
45:29:e6:c0:28:64:60:24:7f:d2:ab:3f:c2:9f:fb:f3:7f:be:
3f:04:7a:c3:4d:fb:b4:49:9b:61:1b:75:c3:49:01:5b:ee:05:
13:28:16:39:34:c1:b1:49:7e:eb:11:22:26:39:4f:2e:29:f0:
3e:57:b9:b6:fd:a1:1f:a8:dc:c9:23:1f:9a:82:1a:08:3f:cf:
38:d3:5c:26:7a:45:d5:b0:dd:f7:8b:06:2c:11:44:56:23:ef:
bb:08:de:ec:ad:cf:5d:57:9d:92:90:b5:ec:69:c3:94:bb:e1:
99:4d:e7:4a:45:0c:c1:39:eb:5a:52:bc:8c:84:ca:10:9a:3b:
7c:f6:e2:9a:d9:1f:0e:22:0b:32:53:4c:47:dd:35:60:83:3c:
0e:d5:82:f7:c2:83:25:5f:36:53:de:f8:16:5c:cb:5a:68:93:
5f:44:0c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-fra.rpki-client.org