Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1tuxAF_j5mkQiiEuoAg2PxRsxeY.roa
File: 1tuxAF_j5mkQiiEuoAg2PxRsxeY.roa (raw, json)
Hash identifier: X/w9htXQdf8MJz7lW4iM/mxMmU8drZliBnoMjP21Koc=
Subject key identifier: D6:DB:B1:00:5F:E3:E6:69:10:8A:21:2E:A0:08:36:3F:14:6C:C5:E6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01843C924A4E232C8BBDE58B11D84C3257E1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1tuxAF_j5mkQiiEuoAg2PxRsxeY.roa
Signing time: Thu 03 Nov 2022 08:18:51 +0000
ROA not before: Thu 03 Nov 2022 08:18:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203899
IP address blocks: 2a0e:b107:1b20::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:92:4a:4e:23:2c:8b:bd:e5:8b:11:d8:4c:32:57:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 3 08:18:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6dbb1005fe3e669108a212ea008363f146cc5e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c8:5b:cc:26:21:b6:4e:21:53:3a:09:5d:b3:
95:eb:d3:ce:2e:22:73:90:42:08:6c:02:ca:71:4e:
41:cd:38:ed:69:16:a5:17:34:45:57:4c:db:ca:cd:
a4:61:a0:d8:d7:88:d9:e3:66:4e:0b:61:e2:a5:23:
7a:41:72:87:81:c5:e8:6d:78:3d:82:96:10:3b:c3:
1a:c0:bf:da:4a:49:fa:01:d6:de:3d:ef:83:9a:65:
d7:8c:39:52:cc:89:12:13:13:08:4d:03:9a:06:11:
5a:27:f8:48:be:bf:da:ee:9b:b3:cc:ab:99:73:8c:
41:17:49:9f:9e:bc:52:98:c4:8e:bf:c6:c8:07:2b:
95:14:90:d8:bb:ec:2f:ea:95:e4:75:94:fe:3c:74:
e3:10:b4:bf:61:8e:f7:f1:a7:5b:e5:7a:fc:27:42:
b7:18:f3:b9:bc:2f:57:f9:22:cc:1f:53:50:7b:95:
9c:b3:b4:55:67:f8:c6:c9:a1:7f:5f:42:5f:01:f3:
a7:ce:9b:ab:62:07:27:29:20:6c:74:ca:50:1e:57:
bf:60:55:74:67:94:8c:17:1f:14:ec:40:22:8a:7b:
39:2f:24:3b:71:83:9e:00:67:46:80:45:68:b5:e5:
98:74:2e:fd:1a:cb:e2:fd:05:87:50:f6:80:9a:4a:
92:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:DB:B1:00:5F:E3:E6:69:10:8A:21:2E:A0:08:36:3F:14:6C:C5:E6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1tuxAF_j5mkQiiEuoAg2PxRsxeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1b20::/44
Signature Algorithm: sha256WithRSAEncryption
c6:bf:68:a7:81:cd:d5:b9:b6:da:52:81:05:7a:23:6b:72:c6:
a4:55:7b:1c:99:fd:fd:e4:5e:a5:16:ad:c3:d0:03:8e:6a:74:
8b:d4:23:b9:55:d7:3d:8a:dc:c6:25:d7:11:3f:db:03:09:a8:
d8:19:7b:cf:2e:75:0e:eb:ec:8b:48:35:c4:5e:e6:16:0f:3c:
5a:b1:a2:7c:70:0d:61:81:7b:ff:ce:53:1a:06:7e:71:c7:5e:
b0:14:59:73:37:a5:2b:00:cd:45:4a:50:fb:37:f9:b8:c8:89:
83:c7:ca:7a:d9:b0:1e:3c:6b:fe:03:5f:83:58:eb:91:20:e3:
c0:66:03:75:f2:1b:d0:3f:d5:88:af:0f:5e:a0:22:d6:1f:9f:
ce:9b:e7:07:51:8c:2f:3b:ef:21:08:4d:73:c0:8a:b2:14:97:
44:9f:ea:78:b6:6b:70:bd:9a:4e:51:7c:6c:c6:13:e6:a9:c4:
71:ae:e9:fa:88:c1:16:34:51:fb:95:1f:bd:30:5a:26:2c:f9:
4b:32:86:64:a5:aa:e9:88:83:f5:c5:73:44:6e:96:18:e9:d2:
29:76:80:ef:9a:7b:7e:a1:f8:6f:eb:27:b6:7a:88:59:cd:91:
03:1f:5a:52:e7:82:85:39:34:7c:e8:c6:fe:5e:5f:24:7b:0e:
2c:58:9d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-fra.rpki-client.org