Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5mqqjIb4whfqsd3ufexb-oLm_aA.roa
File: 5mqqjIb4whfqsd3ufexb-oLm_aA.roa (raw, json)
Hash identifier: lkhQwdjcuqe4v20Kr3OyXyX2rD0I410Bnf7UlufN91w=
Subject key identifier: E6:6A:AA:8C:86:F8:C2:17:EA:B1:DD:EE:7D:EC:5B:FA:82:E6:FD:A0
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10C07F17
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5mqqjIb4whfqsd3ufexb-oLm_aA.roa
Signing time: Sat 01 Jan 2022 09:05:26 +0000
ROA not before: Sat 01 Jan 2022 09:05:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211184
IP address blocks: 2a0e:b107:1165::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281050903 (0x10c07f17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e66aaa8c86f8c217eab1ddee7dec5bfa82e6fda0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:18:7a:4b:85:d4:69:0f:2b:58:94:08:4f:28:
0d:ba:ca:85:a3:50:cd:51:5c:19:f6:40:77:6e:d5:
8c:e4:1e:bc:d3:72:25:88:d7:c3:27:12:f6:34:d1:
e6:99:16:02:bc:de:1e:df:94:d5:d9:1b:e3:99:4d:
92:fb:47:c3:db:4b:13:c5:1f:18:e4:e1:70:29:67:
06:97:0b:c6:5d:5c:7e:16:66:20:ad:4b:91:09:9b:
ef:6c:0f:48:c5:2e:ee:45:ae:04:65:95:66:41:40:
4d:31:3f:d3:07:36:ff:f5:fd:9b:f6:40:c6:23:68:
35:1d:81:ab:ae:b9:57:29:06:9e:3b:66:56:2c:cd:
f1:52:20:9c:1c:3d:b7:11:b0:88:8a:02:54:d4:66:
c3:15:42:dc:f2:74:1d:e1:5b:7c:63:2b:72:c9:e0:
94:36:9c:cd:bb:4d:dd:f8:e9:0e:ea:02:d1:04:df:
a7:6b:f5:be:6a:76:8e:87:4a:c1:f7:aa:41:31:b6:
4a:e8:67:6f:cd:40:19:f3:84:d1:e6:a2:0c:1f:03:
f2:98:a5:4e:32:02:60:9a:d8:71:b6:0e:d0:b8:23:
05:d8:c9:f9:83:a4:53:93:f6:0e:5f:17:6c:3f:c9:
bd:3b:37:f4:ec:80:8e:46:96:a4:58:27:b5:f4:9c:
03:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:6A:AA:8C:86:F8:C2:17:EA:B1:DD:EE:7D:EC:5B:FA:82:E6:FD:A0
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5mqqjIb4whfqsd3ufexb-oLm_aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1165::/48
Signature Algorithm: sha256WithRSAEncryption
b6:f6:f8:23:af:0a:5e:81:69:3d:82:cc:90:19:46:eb:2e:87:
7b:a0:43:e5:b6:14:3b:33:5f:37:4f:84:c1:e2:95:96:1e:df:
6d:38:7b:16:6e:4a:a4:da:c9:8f:fa:6b:56:fd:cd:14:c1:d0:
bf:78:91:6d:29:1b:1b:83:88:87:81:a2:de:ee:17:d5:71:5b:
a5:43:11:05:c3:c2:10:d5:e1:3f:e4:8c:10:31:82:17:fb:02:
85:01:70:42:a6:c7:fb:f3:04:a8:76:47:aa:a2:f9:20:e3:9a:
38:e1:c1:1c:dc:95:12:46:92:63:ad:47:4c:06:55:d9:a7:63:
08:18:d2:ad:07:30:ab:24:4a:c1:e0:20:6b:15:8b:ba:ad:d2:
02:ec:c4:7e:02:cf:81:92:4f:fe:09:05:6a:76:47:4d:09:3e:
ac:6c:c7:63:2b:ef:8b:df:75:5c:d9:c6:7d:1e:9d:0c:fc:86:
8a:8a:2a:48:1e:41:16:e2:0f:c1:9e:bf:b5:92:ba:0c:8f:13:
e1:49:7e:d6:50:b8:df:c4:7b:f2:04:38:b5:be:d1:76:eb:2c:
03:ca:88:a1:c4:70:ef:2b:75:7f:30:fd:2d:09:7e:41:70:ec:
ee:49:c9:2d:6b:55:4f:64:d8:25:79:7b:9d:d1:d8:b0:c6:5c:
5d:37:84:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org