Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4WYwaajA2C7dTNSrTqb9IWOTwPM.roa
File: 4WYwaajA2C7dTNSrTqb9IWOTwPM.roa (raw, json)
Hash identifier: 6/nRPBbLiQdLomXClMj7h1URS7rbfas3fN7WUu8Gnvg=
Subject key identifier: E1:66:30:69:A8:C0:D8:2E:DD:4C:D4:AB:4E:A6:FD:21:63:93:C0:F3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 106BF811
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4WYwaajA2C7dTNSrTqb9IWOTwPM.roa
Signing time: Sat 01 Jan 2022 09:04:34 +0000
ROA not before: Sat 01 Jan 2022 09:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a0e:b107:5c8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275511313 (0x106bf811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1663069a8c0d82edd4cd4ab4ea6fd216393c0f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c0:9d:3a:6e:70:47:9a:94:85:35:b6:f6:51:
b4:39:11:29:b9:ee:54:d5:77:72:20:ca:12:69:a0:
1c:27:ad:4e:df:8e:f8:88:ba:4b:70:80:4b:c5:04:
00:c4:79:81:3b:5a:dd:96:f5:03:92:28:8e:f2:16:
b9:9f:5e:1b:7e:74:6a:55:6c:2a:87:58:63:69:3f:
22:f6:58:b4:6e:c7:04:1a:1f:c7:68:f2:63:28:2f:
d7:01:a2:8e:f9:82:d9:e5:5e:34:0a:8a:77:9b:e6:
03:03:5e:57:0b:bf:b5:ab:3d:d2:03:91:ff:4c:c9:
11:7b:ef:7c:45:b2:42:19:4a:5d:ba:8a:50:c5:6e:
a5:4a:5a:75:db:bc:92:c2:18:cf:93:96:81:73:fb:
ff:80:05:14:c9:cb:62:16:84:aa:3c:fc:d3:b1:99:
ba:1b:6d:36:e2:9a:cd:9c:4c:78:2c:1f:9d:79:7e:
af:e9:35:d3:51:ba:6a:5c:36:44:af:e6:e1:22:b6:
61:3e:a9:54:b4:bd:57:5c:70:52:cf:20:4b:2e:2c:
2a:8d:b7:43:39:7e:c8:4f:f4:a8:dd:ef:95:d8:b3:
51:bc:60:42:46:a5:d3:7f:27:9b:3b:28:c3:6b:45:
7f:59:ca:f7:2f:76:9a:c1:23:b0:61:0c:eb:ca:12:
7f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:66:30:69:A8:C0:D8:2E:DD:4C:D4:AB:4E:A6:FD:21:63:93:C0:F3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4WYwaajA2C7dTNSrTqb9IWOTwPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:5c8::/48
Signature Algorithm: sha256WithRSAEncryption
10:34:82:45:59:7d:5a:9e:b6:a5:85:ac:05:f3:45:a5:1f:d8:
e3:4b:ae:a7:7c:48:16:9a:4b:81:6f:59:71:09:91:0a:c9:58:
ea:1f:8f:5f:ea:df:68:07:c7:28:cd:93:53:86:72:8e:d0:10:
b2:13:de:0d:30:e0:26:d5:7f:44:77:55:0d:74:53:b1:a1:1f:
a7:31:42:6e:7f:e2:dd:66:cd:47:5a:07:01:6e:9b:d2:83:59:
0c:41:72:a1:3c:2a:05:95:34:0a:99:04:83:c7:68:2d:79:90:
f5:d6:95:5e:a3:e1:8c:9d:f0:60:af:eb:19:09:d6:d0:5b:24:
94:f1:c1:cf:fc:a0:9b:4e:a3:a8:49:c9:24:b0:bc:e3:d1:28:
9b:1c:5a:7a:86:9a:3f:a4:82:81:7a:fa:8b:92:ca:3c:c8:4f:
97:fe:0a:24:38:d6:c0:df:20:17:a8:ff:86:1d:4d:6f:41:ed:
b4:dd:69:c3:4f:3f:8a:eb:d3:ad:2c:cc:32:f1:0a:bb:b2:be:
4d:13:c7:23:eb:8c:c1:72:fa:c0:53:d9:e5:a1:da:46:14:95:
96:71:9c:a7:e1:92:d1:ae:e8:7d:53:a0:5b:92:65:a0:fb:6c:
4e:9a:10:75:b1:c1:a8:24:22:79:7b:c2:ce:db:11:88:82:a8:
a0:fa:d4:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org