Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4bjn8eJgWOOjKdEynq19Vis_qMY.roa
File: 4bjn8eJgWOOjKdEynq19Vis_qMY.roa (raw, json)
Hash identifier: kI+o2EkzM/tMWn1xcS6SBnYF3C9JIPWoloVVcaGZ1XE=
Subject key identifier: E1:B8:E7:F1:E2:60:58:E3:A3:29:D1:32:9E:AD:7D:56:2B:3F:A8:C6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183EF6770E95551C0E7FD7CFCAE29C073B9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4bjn8eJgWOOjKdEynq19Vis_qMY.roa
Signing time: Wed 19 Oct 2022 08:41:17 +0000
ROA not before: Wed 19 Oct 2022 08:41:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202673
IP address blocks: 2a0e:97c0:c40::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ef:67:70:e9:55:51:c0:e7:fd:7c:fc:ae:29:c0:73:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 19 08:41:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1b8e7f1e26058e3a329d1329ead7d562b3fa8c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:31:53:9e:fb:31:da:6a:1c:d2:00:90:ae:91:
31:93:25:be:f6:b1:58:dc:9c:a6:b1:a3:54:b0:34:
1c:57:02:29:8a:1f:3c:dd:3a:58:e7:2f:e0:02:a4:
d8:10:06:2c:c2:11:63:82:c3:5a:4c:2f:18:2e:15:
70:70:9c:31:5a:90:a4:fe:ae:f7:56:3a:d7:36:ea:
0a:b1:69:b1:41:35:1d:06:6f:aa:57:ea:68:e3:da:
fa:8c:1c:1e:a2:58:37:02:41:41:72:11:b6:d9:64:
e5:86:04:c6:19:cb:2a:fe:23:60:f7:03:0c:a6:25:
9f:16:ee:4b:86:06:26:2c:6a:ae:21:b9:98:3c:e5:
60:e9:a4:25:fa:6c:9e:65:2d:3b:ce:bd:d9:f2:f7:
ea:b0:68:e4:97:4c:5b:3b:fb:3e:17:83:6a:68:9f:
75:e9:52:6d:16:8b:56:0e:ca:de:44:ac:cd:e9:ad:
dd:bc:e2:ed:3b:be:7b:20:d2:ac:6a:c0:ee:ea:0b:
19:b8:f3:b8:e7:e9:c2:bc:3c:08:bb:9b:05:89:17:
b1:52:c4:ce:a1:44:ad:2f:5e:f5:f3:ef:22:99:7a:
53:2d:da:48:99:fd:67:55:11:3c:c6:cb:28:2f:36:
69:18:86:1f:e2:57:34:a5:ed:41:97:28:2f:1f:a0:
d9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B8:E7:F1:E2:60:58:E3:A3:29:D1:32:9E:AD:7D:56:2B:3F:A8:C6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4bjn8eJgWOOjKdEynq19Vis_qMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:c40::/44
Signature Algorithm: sha256WithRSAEncryption
71:2c:e3:5e:d3:30:e0:0f:bb:3b:a2:19:60:ff:d3:6e:b4:96:
5a:0b:aa:2d:4c:10:a6:70:4f:8f:ee:c6:b3:69:18:95:32:7b:
f6:a4:b9:6d:39:d8:d8:39:00:b6:55:ab:df:eb:ca:c9:8b:b9:
f0:ad:72:d8:25:10:95:f8:a0:fa:f4:e7:2b:bf:1c:08:7a:8d:
57:1b:3d:ee:ee:21:0d:02:28:cc:ee:3b:03:0b:b8:b1:48:61:
7c:1f:61:fb:d4:fe:fe:36:5f:51:80:60:2f:a1:11:b6:7e:7c:
33:0d:ac:c5:84:f6:8f:39:df:ad:82:0d:17:57:d8:8b:9b:3c:
f0:ed:67:b7:70:e1:34:09:8a:8a:38:8c:ae:68:4e:49:5f:bd:
44:bc:e8:9a:ab:b7:96:9f:0d:bd:63:2f:8b:ca:c7:69:71:ea:
d3:e1:13:11:33:8e:8f:5a:6d:89:6e:1c:bf:4e:75:6e:3e:1e:
ca:bb:51:ea:2c:7b:df:a6:20:65:ff:37:f1:09:6d:ad:c3:4a:
9f:46:75:bb:a8:9b:f3:87:ed:9c:20:e3:6e:e6:74:ce:40:ba:
50:5b:d0:5a:55:85:d2:29:91:06:3f:3f:ef:fb:c3:f8:6e:6b:
86:ee:62:4b:9e:27:f1:64:f1:1b:1e:6c:88:85:9a:26:7b:83:
aa:50:53:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org