Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4yHF77GjOG1LtxJRRFQJerqU8S8.roa
File: 4yHF77GjOG1LtxJRRFQJerqU8S8.roa (raw, json)
Hash identifier: Bak9wOGp05611xbhhkDVLFtRdKpuMY6htWONJOGUAw8=
Subject key identifier: E3:21:C5:EF:B1:A3:38:6D:4B:B7:12:51:44:54:09:7A:BA:94:F1:2F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182488C80F458B2D7B201BB355DA11460FF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4yHF77GjOG1LtxJRRFQJerqU8S8.roa
Signing time: Fri 29 Jul 2022 06:02:23 +0000
ROA not before: Fri 29 Jul 2022 06:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203691
IP address blocks: 2a0e:b107:1c0::/48 maxlen: 48
2a0e:b107:1c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:48:8c:80:f4:58:b2:d7:b2:01:bb:35:5d:a1:14:60:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 29 06:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e321c5efb1a3386d4bb712514454097aba94f12f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:74:ad:5a:38:3a:f7:1b:8f:fb:23:d5:e0:3c:
f3:00:f8:28:56:e5:b3:d5:e1:15:f3:14:08:52:b4:
22:6f:c9:01:da:26:5c:56:cc:a6:0d:c2:78:3d:5e:
5d:ff:db:e2:d2:61:4b:f6:9a:88:c9:86:31:68:15:
d0:4b:21:00:2a:3c:25:6c:69:ea:30:ae:e0:40:e5:
d5:08:0a:47:60:1c:56:45:5f:1c:c3:69:0c:59:75:
70:dc:d6:8c:68:81:01:a2:04:ad:dd:01:72:c8:b9:
43:d7:16:6b:de:27:14:7a:07:c0:71:78:0d:2a:b1:
32:54:ee:f2:8c:ba:db:19:f0:60:6e:2d:89:44:07:
2c:48:17:08:e3:04:f6:85:3a:74:2d:4c:05:c9:2a:
be:10:cb:59:f7:db:ab:6c:78:3b:72:0f:64:8e:e5:
c1:7e:c1:ae:4f:1f:ed:aa:ff:81:28:ab:ba:c5:00:
95:08:4b:65:b7:68:98:a3:ad:5e:76:fd:ef:04:dd:
84:ee:8d:48:00:81:88:98:ff:5e:97:1d:ba:b2:c5:
37:d4:70:2d:7d:e3:a8:b1:a5:af:88:f2:59:01:14:
40:5f:da:9a:c0:73:a1:9b:4d:45:c5:ff:35:2e:4c:
39:28:64:d9:19:58:69:d2:f0:ae:63:05:e7:b3:53:
56:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:21:C5:EF:B1:A3:38:6D:4B:B7:12:51:44:54:09:7A:BA:94:F1:2F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4yHF77GjOG1LtxJRRFQJerqU8S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1c0::/47
Signature Algorithm: sha256WithRSAEncryption
51:96:17:9f:ca:64:da:1f:f6:47:88:27:f3:cf:a0:61:29:bb:
6f:bc:fe:07:32:1f:e7:a4:27:61:0f:24:a7:44:d9:0b:ed:04:
df:35:45:b2:22:ea:58:b7:58:bc:38:d6:72:16:35:de:bf:d6:
98:b5:12:46:cd:98:37:c3:0b:84:19:6e:58:e2:fa:12:63:b1:
50:5a:eb:07:b9:83:0e:26:c4:88:a3:7d:32:27:24:3e:d9:23:
b6:d3:39:a5:5a:e9:47:53:f8:3b:b7:f1:9e:78:5e:f1:83:a7:
1b:3a:49:04:3f:e1:32:2f:3f:95:cc:82:c9:64:b9:59:bf:40:
df:9b:49:a5:1f:b1:30:8f:a4:ca:75:c2:70:a8:28:e9:5e:b4:
1f:e3:26:cc:d3:60:c9:7b:68:a5:45:98:b3:a8:83:2f:51:b4:
89:79:cf:17:a6:d7:f1:a4:15:f6:d7:0f:81:c1:89:20:d9:81:
b3:d6:0f:ba:96:78:20:72:40:6c:0a:e8:9c:c7:d3:41:58:d4:
76:c6:cf:d6:12:7e:43:a9:5b:59:fe:0e:f9:4d:62:24:0c:23:
07:60:7b:f8:5a:0f:a4:84:ec:22:0f:c8:b1:5e:db:0f:1d:0a:
f4:d4:dc:b9:0a:5c:0b:ad:db:71:06:4a:b9:6b:53:d6:30:4f:
db:b1:cc:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org