Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5kQiFeDMXsBQHjl968rw5HnxwKA.roa
File: 5kQiFeDMXsBQHjl968rw5HnxwKA.roa (raw, json)
Hash identifier: gEIZ9Knve1HhEvDGHjYOMHkv+t5lh84epWoLJ61JdFI=
Subject key identifier: E6:44:22:15:E0:CC:5E:C0:50:1E:39:7D:EB:CA:F0:E4:79:F1:C0:A0
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1081741E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5kQiFeDMXsBQHjl968rw5HnxwKA.roa
Signing time: Sat 01 Jan 2022 09:04:51 +0000
ROA not before: Sat 01 Jan 2022 09:04:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137256
IP address blocks: 2a0e:b107:c10::/48 maxlen: 48
2a0e:b107:c11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276919326 (0x1081741e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6442215e0cc5ec0501e397debcaf0e479f1c0a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:36:d9:b7:41:39:a7:39:a6:76:79:ba:e1:61:
3f:7a:83:95:33:2c:4f:23:16:42:b1:37:da:09:7a:
d2:f3:f4:63:a1:eb:f2:dc:de:20:ed:c2:f3:55:9d:
21:cc:a5:fb:d1:0e:d3:cb:be:bb:eb:08:46:e5:28:
4e:68:af:31:a6:49:9c:fb:79:dd:71:d3:23:a7:80:
86:b2:12:01:cd:b3:32:e9:11:b5:7f:19:5c:14:30:
83:c0:fb:db:36:ee:6c:b3:87:d2:39:3b:9b:37:bf:
ba:f3:bd:69:a0:02:30:e5:cd:b0:35:3c:aa:bb:d5:
bd:c2:43:c4:96:0e:20:ce:4a:db:5a:bf:a0:0f:bf:
2d:3b:8d:c2:1e:3b:e2:2c:cb:c0:65:d6:ff:01:7e:
5a:1a:2a:01:32:77:ed:45:43:1f:cf:79:d8:a7:58:
ef:60:f8:40:b9:91:23:6e:8c:93:91:90:5a:a9:e9:
9a:c9:14:31:1c:9e:da:3b:15:51:2c:56:0a:05:6b:
04:e2:81:6f:c8:bd:b0:c2:8a:2d:6e:5a:f6:d0:a8:
a5:ec:b6:b4:57:c9:b5:4c:c0:2e:3c:59:f7:5f:33:
78:53:3b:8e:16:09:54:86:40:ff:15:a7:9a:66:46:
fb:68:63:bf:93:d4:ae:75:e4:c4:18:db:8b:6b:39:
db:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:44:22:15:E0:CC:5E:C0:50:1E:39:7D:EB:CA:F0:E4:79:F1:C0:A0
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5kQiFeDMXsBQHjl968rw5HnxwKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:c10::/47
Signature Algorithm: sha256WithRSAEncryption
85:8b:b2:cd:97:11:a5:ba:57:72:61:e6:8d:da:4e:d0:da:d3:
64:b1:c3:f7:8a:f7:12:89:df:4b:05:ed:31:9e:12:55:b9:f1:
86:a3:de:a5:ca:2d:ae:3b:d8:05:79:84:35:e8:fa:da:48:5b:
ec:f4:60:58:fc:da:ec:6e:aa:9f:8d:6f:5c:f2:f4:48:fe:b3:
15:f3:a2:77:a2:33:ff:d2:29:23:74:d4:98:20:2b:02:2e:ef:
92:b0:09:bd:5f:36:51:5b:26:6d:62:db:43:25:e6:de:17:4d:
20:e2:e5:25:83:b0:26:79:ba:d9:23:b9:5e:88:b3:5b:b3:73:
8a:47:ad:55:67:92:32:c8:89:97:50:ce:b9:e3:8d:ec:66:33:
4a:b1:31:e7:14:38:50:db:52:e5:1e:2d:de:5d:43:ed:47:f8:
53:9a:c4:55:e0:3d:fe:53:9d:80:cf:6f:fd:bd:72:1a:10:2a:
c5:fd:6c:c8:e5:85:90:87:b6:e7:30:83:68:58:f1:1e:f7:b7:
ed:52:73:36:88:98:2c:b4:f3:3f:4f:3f:d9:24:17:0d:32:ae:
cb:41:78:65:9a:69:8f:0f:b6:a1:d8:16:f3:49:4c:f7:44:85:
ff:34:6e:70:6d:9b:73:0e:58:8b:a3:25:56:41:41:16:ce:23:
7e:08:67:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org