Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5VmI45LWb0v_ah9fmgYQshATRzI.roa
File: 5VmI45LWb0v_ah9fmgYQshATRzI.roa (raw, json)
Hash identifier: /m6Bf+PzPXUwBsbkUDp35rtGAOV1eBwcZkK+Tuj173M=
Subject key identifier: E5:59:88:E3:92:D6:6F:4B:FF:6A:1F:5F:9A:06:10:B2:10:13:47:32
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10948CBF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5VmI45LWb0v_ah9fmgYQshATRzI.roa
Signing time: Sat 01 Jan 2022 09:05:03 +0000
ROA not before: Sat 01 Jan 2022 09:05:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205635
IP address blocks: 2a10:2f00:124::/48 maxlen: 48
2a10:2f01:2b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278170815 (0x10948cbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e55988e392d66f4bff6a1f5f9a0610b210134732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3e:fb:14:a4:5d:b3:04:5d:d1:9d:51:bd:e0:
67:7c:d6:c2:0a:51:ff:9a:47:20:5c:05:98:34:43:
c2:f3:c9:ba:a2:36:04:1a:00:3b:6a:dd:45:6c:b3:
84:bf:eb:b1:53:5e:6c:7d:e8:80:08:74:5d:18:34:
f3:c6:5f:71:f8:95:4b:80:4c:ef:66:4e:43:c7:46:
54:19:06:f9:f1:cc:1e:8e:4e:3a:b5:6e:f0:94:e0:
c9:8c:8e:c6:fa:df:f5:1b:90:61:f5:b0:67:8e:11:
3d:57:63:31:bf:a7:fe:09:0b:80:48:fd:f2:8f:24:
26:c0:35:33:4f:b0:d0:50:ba:9b:c8:be:08:ff:93:
de:cf:07:de:5e:4d:ad:70:75:e2:71:b3:cc:14:3b:
a1:b8:c5:1b:8e:80:aa:6f:c3:45:2b:ff:4a:83:cd:
c8:1c:3b:c1:a1:08:93:1d:62:39:9c:0d:46:48:da:
32:7b:9a:e5:55:27:2e:45:9c:a0:92:80:7d:73:68:
97:46:f2:2d:17:2f:95:bf:20:92:e6:97:2f:81:36:
35:a6:75:b3:e5:8f:91:9d:1d:bf:2e:66:79:3c:00:
db:5e:8e:7b:6a:e1:b3:c5:ca:ea:21:37:7e:8c:5a:
04:29:66:76:bb:95:59:73:6e:30:83:56:72:21:16:
d8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:59:88:E3:92:D6:6F:4B:FF:6A:1F:5F:9A:06:10:B2:10:13:47:32
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5VmI45LWb0v_ah9fmgYQshATRzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:124::/48
2a10:2f01:2b0::/44
Signature Algorithm: sha256WithRSAEncryption
96:69:3f:40:ed:c6:3b:ca:07:07:1b:ee:ec:c6:6a:1a:92:b2:
01:63:28:70:a2:2f:39:04:66:1e:58:0d:e8:8f:75:85:7c:2b:
ac:58:b4:e2:61:46:ea:75:23:f0:3f:3f:b4:28:5d:c0:af:a9:
d2:b4:55:64:e2:4b:a8:74:f6:d1:3b:6f:09:c1:63:49:6b:1f:
2c:5e:3d:f9:6a:ed:a3:01:9f:cf:0a:91:3e:14:b3:7e:e7:63:
78:42:76:9d:96:ad:91:4e:c5:cf:a0:dc:b9:95:69:05:2c:bb:
32:42:06:57:8a:3a:bf:5c:62:2e:da:e0:95:e2:90:6a:98:b2:
66:28:21:fd:ce:53:b4:fd:eb:46:0c:0a:67:b9:db:79:36:29:
0d:38:e3:63:03:99:1f:36:3d:ce:ae:f3:fc:48:7b:9c:22:0c:
d2:58:50:f8:e7:99:8e:93:1f:2a:f0:69:c6:df:c5:55:c8:bb:
6c:42:60:8d:26:76:bc:c9:41:a1:b7:63:ae:89:b0:e8:f7:e2:
ad:f6:ea:40:d0:d8:39:4f:6e:09:b6:9a:53:ec:8f:54:14:a0:
ef:ed:82:a4:c8:5c:27:4d:9a:ea:eb:7b:3e:a2:4c:6c:60:2e:
54:b1:ba:93:ec:7f:c4:2a:12:43:81:e4:4e:43:13:b3:32:8f:
b3:d0:20:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org