Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1T6dWZodFVJL0cq29b7CxSNV5ac.roa
File: 1T6dWZodFVJL0cq29b7CxSNV5ac.roa (raw, json)
Hash identifier: sKYIsyV8jE65fo+9uwbuJab8xpC+jyb9yE8v1+NQAv0=
Subject key identifier: D5:3E:9D:59:9A:1D:15:52:4B:D1:CA:B6:F5:BE:C2:C5:23:55:E5:A7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 11ABC58E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1T6dWZodFVJL0cq29b7CxSNV5ac.roa
Signing time: Mon 31 Jan 2022 14:29:42 +0000
ROA not before: Mon 31 Jan 2022 14:29:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210659
IP address blocks: 2a0e:97c0:560::/44 maxlen: 48
2a10:cc40:130::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 296469902 (0x11abc58e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 31 14:29:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d53e9d599a1d15524bd1cab6f5bec2c52355e5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:87:c0:10:7e:e9:6d:84:ef:c8:bb:11:50:bb:
d0:c0:20:6f:a8:1a:d4:5c:88:a2:4e:87:1b:3a:8f:
f4:c5:5b:da:d1:26:79:ce:9c:72:7f:26:04:e0:44:
b4:35:a4:8d:8c:63:27:ea:f0:82:d7:d1:26:3b:3d:
c0:48:27:d2:bf:f1:24:79:3c:bc:86:32:f4:2c:88:
4d:57:7d:b4:58:b8:5c:ba:1b:2d:8e:5b:ee:01:57:
aa:64:f8:0f:40:4d:a5:1c:ed:e8:17:9b:2f:66:d9:
09:aa:86:e3:6c:d5:a4:cd:d2:cb:43:6f:83:1f:8e:
05:08:3a:75:c5:fc:26:c5:56:a1:90:8b:75:83:da:
df:86:df:28:e3:f4:2e:df:62:91:3f:18:79:a3:fe:
3b:70:c4:64:b6:a9:b5:3a:67:5c:25:60:31:c1:d8:
2e:04:b2:9c:40:78:7e:a2:8b:21:be:93:fb:21:81:
7f:44:1d:60:bb:be:dd:39:40:26:15:c5:7c:b1:6a:
22:7a:7f:cf:ab:1b:ff:55:4b:6b:bb:c6:6a:f3:30:
f0:e9:75:17:e7:8e:1a:3f:ed:5e:3e:03:f7:37:1d:
2f:b0:7a:76:20:21:87:47:d8:f2:71:36:3b:0f:55:
fc:35:bd:bb:e3:d1:c6:1a:96:a7:97:0b:e6:35:2e:
88:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3E:9D:59:9A:1D:15:52:4B:D1:CA:B6:F5:BE:C2:C5:23:55:E5:A7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1T6dWZodFVJL0cq29b7CxSNV5ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:560::/44
2a10:cc40:130::/44
Signature Algorithm: sha256WithRSAEncryption
06:a0:24:2c:ec:0f:78:4c:8a:12:b8:69:39:60:96:63:9e:bd:
44:c8:b7:a2:2e:a4:02:1e:74:5c:c0:a7:b5:3d:89:ee:2f:1a:
f0:b3:ba:1c:e5:b1:4c:e0:a1:58:33:a8:3b:f6:6d:e3:83:7c:
5a:14:46:b9:9f:d2:2b:de:c0:a8:d5:85:5b:64:1c:d4:7d:d1:
63:57:7b:47:88:b0:cb:9f:46:15:4d:d7:ba:e3:54:88:de:0b:
51:c9:23:a2:a2:1f:21:0b:fb:24:bd:9a:8f:95:04:18:50:23:
af:8d:de:c1:40:d4:ac:5e:84:ed:a7:e6:e2:d1:88:04:23:97:
e4:46:da:22:89:2c:58:11:f0:cd:ac:3d:e3:59:6d:35:54:ca:
ad:fd:e6:60:1f:7c:8e:0d:15:19:1f:61:d4:85:e5:81:f0:07:
b2:7a:4a:58:9d:41:79:46:6d:98:21:08:46:7d:d1:da:4a:5e:
67:47:03:3a:c2:66:99:ac:ad:2a:30:ee:ec:99:16:83:a8:d8:
13:23:fd:18:63:6c:bc:e9:2b:2e:e1:d7:44:f2:06:e9:17:fc:
80:31:1f:d3:ea:f9:44:60:94:3f:c1:f4:d8:c7:f5:6c:db:b6:
3f:be:00:c4:c4:69:8e:e0:75:83:8f:a2:79:2c:91:97:f4:98:
91:5b:24:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org