Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/54eXdqJq03-RMcGr2LlSXo3aurk.roa
File: 54eXdqJq03-RMcGr2LlSXo3aurk.roa (raw, json)
Hash identifier: PwYOM57LTkB2/zo/+T3HBQ1YtMudeAXVpxVacCl0GrA=
Subject key identifier: E7:87:97:76:A2:6A:D3:7F:91:31:C1:AB:D8:B9:52:5E:8D:DA:BA:B9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1148DEE5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/54eXdqJq03-RMcGr2LlSXo3aurk.roa
Signing time: Thu 13 Jan 2022 02:53:04 +0000
ROA not before: Thu 13 Jan 2022 02:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210041
IP address blocks: 2a0e:b107:272::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 289988325 (0x1148dee5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 13 02:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7879776a26ad37f9131c1abd8b9525e8ddabab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cb:90:f0:14:ee:4d:e4:ec:70:d1:9e:80:c9:
a6:6f:25:a2:ac:5c:64:11:29:69:f3:0f:ae:a0:3b:
48:d0:37:44:d2:0c:12:55:f3:c3:b4:62:b7:c2:38:
6c:24:bd:2f:0a:e4:90:a6:14:5e:74:10:e4:e2:59:
42:26:90:57:d4:22:2a:5b:92:80:93:41:5c:e0:0f:
c8:e5:b4:30:73:ac:47:c3:da:d5:51:88:24:3d:80:
9f:3e:45:d7:ff:72:4c:9a:f3:58:aa:2e:be:e0:6f:
ae:98:a3:fc:6d:96:69:de:0b:0c:6d:bd:ef:a2:d9:
26:78:0a:ba:aa:20:70:08:30:92:59:b2:29:74:65:
69:51:7c:10:44:2e:bf:9a:35:01:27:0d:b5:f1:6f:
26:04:b7:95:9f:2e:ab:10:f7:b1:e8:30:ca:d9:0d:
29:dc:92:8b:bc:ae:e2:aa:d1:9e:f5:b6:04:45:a4:
93:b6:42:22:b0:10:17:70:3e:66:d1:61:26:57:d2:
b0:05:da:ff:6d:94:d6:38:8c:78:00:35:e6:3f:2f:
e6:45:4c:fd:18:52:11:2f:7f:78:41:56:1f:69:08:
33:63:f5:d7:c1:e7:56:d4:0f:37:28:94:e7:b8:f7:
4e:d7:9e:b4:89:03:2c:ad:71:ce:0d:64:de:6f:84:
ac:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:87:97:76:A2:6A:D3:7F:91:31:C1:AB:D8:B9:52:5E:8D:DA:BA:B9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/54eXdqJq03-RMcGr2LlSXo3aurk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:272::/48
Signature Algorithm: sha256WithRSAEncryption
af:4a:79:55:b8:fd:e6:76:96:78:89:2a:9b:83:09:f5:dc:a4:
9b:97:e9:e3:f7:96:e9:f4:fa:d5:ee:3a:4e:6d:75:83:78:9d:
ff:a6:9f:b9:06:d9:6f:aa:72:30:50:2e:70:57:e9:2f:91:bb:
8f:68:a4:c9:34:47:fc:95:19:1c:62:50:66:e7:8d:fb:09:41:
ae:b9:65:c4:f8:0a:59:24:a1:d2:61:2d:ae:a5:40:77:8b:77:
20:96:de:e7:a3:8a:85:b8:26:11:73:22:9d:42:a5:27:0c:cc:
b4:c6:1d:db:73:90:8e:81:7f:99:b8:63:56:5d:e4:c2:57:ef:
7c:79:cb:15:24:a4:ed:6a:f0:dd:84:90:be:93:0c:9d:84:50:
c9:0a:32:dd:fa:6d:74:57:c1:b6:dc:5c:3d:34:97:e7:4c:a1:
93:38:f5:38:a5:35:82:bc:bc:6c:07:fc:af:9c:f5:aa:e6:30:
00:a2:da:cf:0b:3f:fa:84:d4:ec:3b:c2:17:c4:25:66:2d:54:
dc:22:7d:f7:8b:87:e4:67:0d:85:32:3b:8d:a3:94:20:8e:98:
9f:df:11:43:80:81:6f:54:a3:1c:6e:c7:6d:a5:fd:52:f6:57:
2c:a8:93:ae:19:6d:2a:bd:36:9d:c6:b1:3e:f8:b0:62:bf:7a:
80:fe:e2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org