Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4gdkfKTmWZDSUL1gdseyoTnLBTs.roa
File: 4gdkfKTmWZDSUL1gdseyoTnLBTs.roa (raw, json)
Hash identifier: oIV/zOGcUdnxQ2/P4jOhGCoJwAF5Lu4cmrbWu2Bk1pY=
Subject key identifier: E2:07:64:7C:A4:E6:59:90:D2:50:BD:60:76:C7:B2:A1:39:CB:05:3B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01823CB5392D891048A6AA499650E0502DAD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4gdkfKTmWZDSUL1gdseyoTnLBTs.roa
Signing time: Tue 26 Jul 2022 22:51:25 +0000
ROA not before: Tue 26 Jul 2022 22:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211013
IP address blocks: 2a0e:b107:1580::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3c:b5:39:2d:89:10:48:a6:aa:49:96:50:e0:50:2d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 26 22:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e207647ca4e65990d250bd6076c7b2a139cb053b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9a:be:29:f2:56:54:e7:e7:fd:e6:53:d6:54:
d8:e5:ed:c1:82:fb:a8:eb:05:72:97:06:ea:57:45:
af:22:e4:8d:15:64:dc:63:05:d7:4a:1b:87:85:a9:
1b:24:09:b9:e5:28:57:eb:9e:25:27:93:45:bd:08:
36:f6:35:46:c9:9b:4e:67:f8:d0:b5:3b:8f:50:96:
5e:27:7d:85:43:44:21:f5:3c:37:5e:68:85:3e:cd:
35:65:05:b0:61:9f:a5:1a:d4:aa:85:78:21:84:39:
d6:e2:61:d1:4d:70:42:d1:4c:2d:ad:ec:c3:96:a2:
4b:14:e6:9f:12:54:95:36:d5:e8:56:4d:2b:d7:f2:
73:0c:3d:96:24:b0:31:20:07:0b:17:f2:af:7c:33:
2a:b4:36:d2:2b:82:00:b0:04:38:e0:db:b7:bf:85:
7a:95:e2:fb:1d:5e:88:7f:a2:7b:05:6a:00:15:92:
f8:ec:59:64:c4:c4:57:17:34:d5:fa:ba:d4:d8:e9:
9e:62:87:34:fc:fc:0e:6f:cf:f8:8a:80:33:ba:50:
bf:a3:28:2d:bc:35:ea:1a:47:27:87:20:24:3f:3c:
50:a9:69:3d:fa:6c:9d:89:45:55:60:a7:48:2b:c1:
20:be:83:18:59:93:21:17:d4:17:36:bd:38:87:8b:
3f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:07:64:7C:A4:E6:59:90:D2:50:BD:60:76:C7:B2:A1:39:CB:05:3B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4gdkfKTmWZDSUL1gdseyoTnLBTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1580::/48
Signature Algorithm: sha256WithRSAEncryption
9d:07:40:55:4a:31:ef:fa:9a:d9:09:91:05:b3:85:65:78:ea:
c6:f3:d7:0a:2e:16:72:9c:d4:d8:ab:b7:48:9b:93:cb:b6:3e:
7c:2f:c3:81:b9:9c:5b:22:a2:ef:5e:2a:57:f6:50:6a:bf:7f:
73:cd:60:ad:5f:2a:34:b7:e8:0d:52:e3:ee:20:0e:46:97:63:
2e:5c:d4:4b:95:0d:31:04:90:cb:d5:25:9c:93:2b:b2:29:26:
8f:19:90:ab:17:59:b0:60:8a:b2:e1:27:e4:dc:51:f3:a3:5a:
f7:e5:5c:da:36:2d:3a:87:94:c8:05:17:2b:2e:b4:22:eb:b9:
db:ee:fc:4a:94:d6:26:96:47:3d:ac:0d:b2:6d:6d:f0:f4:70:
66:6d:b2:8d:7e:f8:db:05:3d:59:8e:a4:9d:6f:d1:a9:d2:bd:
36:57:a3:6c:01:e3:28:7a:79:a7:04:8f:e9:14:7a:ff:93:d9:
e1:88:04:a5:b8:cc:96:03:ca:05:94:75:c2:e2:35:cf:43:ba:
bb:3c:e3:58:8f:82:36:97:71:92:10:c5:c1:35:67:72:19:1a:
35:78:d8:10:b3:ef:05:87:0a:92:d9:a1:44:1c:ea:b4:f5:45:
c9:a6:63:33:3b:fc:7f:13:86:56:c3:16:65:de:36:a2:c0:9c:
55:1e:ee:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org