Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5qb1239cSALDeaF4L8u4kFCO4kE.roa
File: 5qb1239cSALDeaF4L8u4kFCO4kE.roa (raw, json)
Hash identifier: bPq4e8fDTjOG/YOnDCIhAj+bIxH5084CCkfJK5eAg9c=
Subject key identifier: E6:A6:F5:DB:7F:5C:48:02:C3:79:A1:78:2F:CB:B8:90:50:8E:E2:41
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183B1C89E7C8954CED79E5A2F118CDF54F2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5qb1239cSALDeaF4L8u4kFCO4kE.roa
Signing time: Fri 07 Oct 2022 09:30:58 +0000
ROA not before: Fri 07 Oct 2022 09:30:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202458
IP address blocks: 2a0e:97c0:c00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b1:c8:9e:7c:89:54:ce:d7:9e:5a:2f:11:8c:df:54:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 7 09:30:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6a6f5db7f5c4802c379a1782fcbb890508ee241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:dd:f5:22:78:c4:8b:1e:b1:d8:bc:a4:2d:dc:
3c:7e:15:7f:8e:a3:bc:da:ea:69:1b:8f:7d:1f:36:
5d:9a:9e:39:58:f3:6b:aa:bb:ae:11:f1:e3:0f:8e:
1e:38:ab:09:09:71:48:39:cf:a9:07:fc:11:bd:23:
ff:80:f6:86:f4:12:59:50:9e:b8:96:c6:1c:c2:4a:
9c:80:86:2a:7e:67:04:cf:34:a3:5a:81:5b:d8:59:
71:7a:04:0b:ae:0a:92:09:01:df:fa:00:8c:0c:e0:
34:89:44:23:5c:d9:8d:e9:ea:e9:42:3d:ea:f4:51:
19:56:89:2a:e6:d9:18:f0:19:54:6b:e4:f4:90:fa:
02:1b:e9:77:4c:45:14:2e:8f:18:aa:37:03:90:c6:
43:b0:de:d6:ae:ae:aa:2c:57:56:9e:eb:82:aa:57:
8f:60:33:72:56:e1:d8:62:cc:74:d4:7f:26:d4:39:
fd:e4:d5:61:59:d0:35:49:b5:e8:42:87:44:33:ca:
d3:94:76:cd:5f:08:65:13:3a:1b:a3:52:bf:1e:31:
ac:40:60:54:91:ae:40:f4:f8:4b:34:aa:16:f6:41:
b8:50:88:94:b2:c4:bb:3f:74:56:80:5a:52:13:5e:
e5:87:c5:11:c5:93:95:1e:7b:a3:b4:bc:c6:62:f8:
24:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A6:F5:DB:7F:5C:48:02:C3:79:A1:78:2F:CB:B8:90:50:8E:E2:41
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5qb1239cSALDeaF4L8u4kFCO4kE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:c00::/44
Signature Algorithm: sha256WithRSAEncryption
86:db:7c:4a:0b:ff:4f:92:3a:01:3a:7e:d9:7e:70:47:65:2d:
6a:68:63:f4:57:58:14:63:96:a9:43:4e:f9:b2:86:2b:24:83:
be:26:0c:76:30:a6:5a:a2:f2:85:9d:96:14:07:8b:45:f1:31:
90:71:95:9d:8a:e5:3b:de:5c:fc:ef:b5:ac:9a:e1:34:20:6f:
5c:3c:b7:65:e4:ee:8d:ff:7a:82:e9:0d:94:09:f8:4b:5a:a9:
29:85:c2:74:81:73:31:84:9b:3a:13:4b:70:88:d5:4c:c6:fb:
e6:8f:d0:42:09:8a:57:b3:bd:1a:50:e7:69:66:40:70:a1:cd:
74:bf:70:8c:f9:aa:9f:17:ba:73:2d:82:0d:c2:25:59:86:62:
31:9b:fb:fb:10:88:18:2b:70:4b:c2:0f:45:ee:fa:70:1d:a1:
ac:2e:92:fd:46:f5:3c:c2:89:59:49:c1:5e:5e:ba:61:6e:a6:
c6:99:33:c6:68:3b:66:76:13:a4:82:1d:cb:23:3f:05:1e:30:
da:40:42:53:35:4a:61:d3:ac:bd:4c:32:d6:84:f1:a7:93:f0:
fe:1e:85:a7:5c:fd:aa:5f:17:95:ba:80:30:a1:50:2b:f2:9d:
8b:8f:3a:f4:c0:d4:3c:68:6d:5d:36:28:06:6d:77:b1:c2:8c:
b6:06:42:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org