Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5azQHiFe6cg6cfhL7N8eYMJB_rk.roa
File: 5azQHiFe6cg6cfhL7N8eYMJB_rk.roa (raw, json)
Hash identifier: V57lOo+gh7DSUGqumj1AOSHD4ZWjAwgon9NrN/Yhje4=
Subject key identifier: E5:AC:D0:1E:21:5E:E9:C8:3A:71:F8:4B:EC:DF:1E:60:C2:41:FE:B9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12C6559D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5azQHiFe6cg6cfhL7N8eYMJB_rk.roa
Signing time: Wed 09 Mar 2022 09:20:34 +0000
ROA not before: Wed 09 Mar 2022 09:20:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399741
IP address blocks: 2a0e:b107:5c8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314987933 (0x12c6559d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 9 09:20:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5acd01e215ee9c83a71f84becdf1e60c241feb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:65:58:ef:f6:92:fa:53:96:e8:65:57:cd:05:
9d:34:47:9d:30:5d:6f:15:4e:de:c3:2a:c9:36:4e:
91:d3:c0:89:b6:c8:8e:63:bb:f5:b5:e9:1f:3a:f0:
ff:45:00:9b:ff:75:a5:30:28:7c:48:e2:a0:88:3d:
a8:ac:9b:f5:e4:5f:95:bd:f3:f9:42:69:4f:b4:8c:
3d:88:59:2d:35:c4:e1:4b:cf:3a:43:ed:c5:89:a7:
d7:91:be:5f:ea:20:76:cc:36:ad:9d:82:5a:eb:80:
20:ed:3a:18:7c:2c:53:91:9b:c2:7f:00:e0:66:b5:
d6:8d:d0:11:e7:79:e7:2e:4c:2f:60:92:e7:85:2b:
b4:d2:4d:ea:47:ba:51:9e:13:42:3a:58:95:81:be:
e2:08:5c:a7:8f:16:83:5e:0e:76:2a:ae:b1:2d:ee:
b7:f7:5d:4b:c1:ae:9f:50:06:83:27:c1:47:16:f5:
a8:1d:d7:13:d1:9a:b1:06:52:54:65:09:68:25:f3:
2b:b1:61:b6:1e:83:cf:ed:12:99:57:24:f9:77:77:
6b:e8:cd:06:2a:40:46:d7:cc:12:ed:c9:50:55:9c:
fe:19:d9:1b:87:41:5b:7d:b7:b8:80:15:bd:38:3f:
d6:9a:af:85:f8:27:ef:ff:01:4d:5e:76:44:4c:c9:
79:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AC:D0:1E:21:5E:E9:C8:3A:71:F8:4B:EC:DF:1E:60:C2:41:FE:B9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5azQHiFe6cg6cfhL7N8eYMJB_rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:5c8::/48
Signature Algorithm: sha256WithRSAEncryption
58:6a:26:d7:2b:ac:fd:ec:2c:64:9a:ea:7d:c9:de:c8:4e:2d:
88:77:ed:a3:03:ec:bc:85:49:11:99:8c:e5:ca:7f:dd:28:5a:
41:8a:c9:a9:30:a3:ba:f9:e8:f6:01:83:a7:a7:7a:48:2f:ea:
b1:79:10:76:db:e1:38:c7:02:eb:9a:c2:ae:84:8c:6a:db:8e:
c9:38:e1:bd:f2:5a:8b:7c:d2:46:de:3a:e2:59:44:5e:8a:1c:
44:79:d3:3c:5f:b4:94:2d:86:73:d2:b3:a2:cf:cd:7e:ff:59:
26:b5:29:98:1a:a8:6c:98:3a:fd:64:e5:04:31:36:4e:5d:32:
1d:b9:55:7b:7c:68:8c:23:f7:cf:b9:31:5a:f5:5d:99:4a:8c:
6c:a4:c1:cb:c6:11:d2:3f:af:6e:f9:a0:04:41:b9:7c:3d:c8:
82:e6:e5:37:f4:32:ac:5c:9d:b5:ef:72:60:c8:5d:9f:9e:65:
31:f3:3b:08:15:43:8d:50:6b:0c:38:63:74:28:1b:17:94:2c:
1d:ad:df:69:9c:40:97:c1:b8:dd:86:e1:8f:df:b0:d7:03:47:
41:17:fc:e4:01:a7:55:0d:83:62:ca:2b:1f:59:7c:40:8b:03:
ae:11:64:df:4a:71:7e:d3:f5:d4:a9:86:df:b0:7e:8c:e0:20:
e3:53:6c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org