Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5IVU0QUcujnDHaG3Nlm7fHSzWZg.roa
File: 5IVU0QUcujnDHaG3Nlm7fHSzWZg.roa (raw, json)
Hash identifier: ZXXvnQTNSjH8gdYwg46b7BVOfgdv/SuPPHTSRlMh91o=
Subject key identifier: E4:85:54:D1:05:1C:BA:39:C3:1D:A1:B7:36:59:BB:7C:74:B3:59:98
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183BEC2850F05AB023011CCA364107EE3B9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5IVU0QUcujnDHaG3Nlm7fHSzWZg.roa
Signing time: Sun 09 Oct 2022 21:59:22 +0000
ROA not before: Sun 09 Oct 2022 21:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207556
IP address blocks: 2a10:2f00:181::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:be:c2:85:0f:05:ab:02:30:11:cc:a3:64:10:7e:e3:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 9 21:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e48554d1051cba39c31da1b73659bb7c74b35998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a6:6e:d2:83:59:d4:5f:f3:fc:eb:d3:ad:50:
f3:fb:b2:ce:6c:3a:06:1c:62:09:b8:79:3e:c1:97:
ce:21:a4:db:cd:27:05:ed:c3:99:6f:30:67:94:f3:
7a:f3:be:15:8c:90:01:ff:26:b7:b5:ff:cb:19:1a:
cd:cd:a8:1f:c4:78:35:7b:fd:fe:a2:79:31:78:ed:
dc:fb:35:f2:53:d3:34:d0:33:97:43:1d:be:5e:40:
54:51:dd:bd:1c:a9:c6:b1:ae:04:1f:d5:ee:33:ee:
e2:bb:ac:42:63:6b:06:89:ab:0b:ba:4c:5e:35:de:
7c:4e:49:db:4f:3e:ec:00:ea:b8:62:a1:69:74:34:
30:39:86:8b:73:9e:f6:69:47:14:70:83:59:13:4e:
3d:ca:31:5f:de:cc:a0:18:0b:d4:8f:ac:ce:11:00:
b2:93:96:49:92:fc:6a:05:81:16:62:8f:6d:f2:01:
42:0c:4b:29:61:cb:65:70:bc:bf:26:8a:f5:c6:61:
73:e6:58:38:56:39:1a:d1:74:50:9e:ed:a0:39:f1:
9b:f0:d2:b6:9d:57:ff:d4:e7:4c:ef:a7:d5:41:37:
c0:a4:e5:ad:58:68:d1:33:59:b6:32:b3:e3:f5:3a:
47:c9:16:58:e1:4a:cc:57:be:3a:a0:f6:25:f6:53:
fc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:85:54:D1:05:1C:BA:39:C3:1D:A1:B7:36:59:BB:7C:74:B3:59:98
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5IVU0QUcujnDHaG3Nlm7fHSzWZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:181::/48
Signature Algorithm: sha256WithRSAEncryption
8a:38:d0:1d:cb:ca:ed:b9:79:5a:92:37:9f:89:02:0d:33:0d:
bf:34:ae:bf:6d:d0:99:73:6a:78:0a:ff:6a:7e:90:c4:bc:84:
cd:4e:24:39:18:c2:ee:1a:03:89:b8:04:8b:5e:3c:7f:c0:cc:
5b:ab:00:35:70:2d:93:5f:d5:29:b7:46:8e:4e:5c:dc:bb:e6:
95:36:6d:36:b7:92:59:02:28:16:37:9e:2b:02:5b:ab:59:3a:
75:8e:ee:07:ac:9b:7c:29:d0:41:52:8d:4f:9c:34:31:80:cc:
10:41:b8:be:66:a8:9e:44:a6:83:cf:75:ed:84:fd:07:1d:de:
32:6c:56:06:58:46:8b:a5:67:d3:80:f7:5f:5b:8d:24:58:c7:
ca:46:66:3a:c7:e6:87:cf:e6:19:51:e6:7d:06:91:c4:61:d3:
92:a2:a6:56:8e:30:f3:ed:7a:be:55:cd:8e:58:b0:7a:d1:9a:
3e:00:f0:74:0f:87:0c:ad:0b:5f:1d:62:df:b2:49:c4:4f:69:
1d:6a:c7:8b:38:d4:3c:c0:be:28:f4:22:09:73:75:de:c6:88:
7e:cc:c7:05:0c:28:8a:e9:f0:6d:34:7f:f2:34:b7:33:9d:14:
d0:b3:91:8e:09:80:bd:fd:94:94:ec:78:36:ce:1e:b8:7d:46:
36:2d:b4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:22 2024 by rpki-client on console-fra.rpki-client.org