Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/66so6tRnKU-mM0EMC1CWsIjAY2E.roa
File: 66so6tRnKU-mM0EMC1CWsIjAY2E.roa (raw, json)
Hash identifier: /x7SA3B4Lm0BnZbGbLqpYnBpAxKdSlYPvTtW9VfgMhg=
Subject key identifier: EB:AB:28:EA:D4:67:29:4F:A6:33:41:0C:0B:50:96:B0:88:C0:63:61
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 11DF013C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/66so6tRnKU-mM0EMC1CWsIjAY2E.roa
Signing time: Thu 10 Feb 2022 09:28:45 +0000
ROA not before: Thu 10 Feb 2022 09:28:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204307
IP address blocks: 2a0e:b107:ac0::/48 maxlen: 48
2a0e:b107:ac2::/48 maxlen: 48
2a0f:e401:111::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299827516 (0x11df013c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 10 09:28:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebab28ead467294fa633410c0b5096b088c06361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:14:1a:68:d5:0e:ac:76:f3:0c:2a:f1:40:29:
e0:77:ee:57:d3:89:74:5a:09:42:64:fb:dc:7c:d1:
86:06:e2:4d:75:f9:d9:c1:2c:1f:bf:1a:74:f3:87:
2c:e1:bd:83:72:51:18:87:ea:87:75:25:b1:4b:01:
7c:b8:77:1d:69:42:a8:66:3d:eb:2f:d8:6b:fd:fb:
32:5c:0b:12:c1:46:f5:a8:fa:54:06:1e:51:e7:19:
b4:e1:d3:2a:f7:c8:85:44:f3:1f:31:ec:c0:aa:f8:
bd:09:40:6a:e7:35:d2:22:ca:5c:9e:60:dd:86:fc:
9f:b1:61:db:04:32:48:37:fe:c7:6c:8d:db:6b:08:
9c:06:5c:5f:f6:ee:fb:c2:e3:9f:48:98:5f:1b:bf:
f5:64:91:4e:ff:72:d2:58:9d:95:4c:df:cf:11:4c:
6a:f4:9a:d7:bc:21:9e:92:07:a0:ff:b2:08:d5:c6:
25:91:15:d3:1d:93:0f:70:48:c0:45:48:05:fb:32:
d4:03:9b:89:7b:21:c6:79:70:ee:fd:b1:a7:b3:b9:
2f:4e:3e:2b:2b:4d:27:0c:4e:60:65:25:70:ab:0c:
26:17:95:3d:ee:cf:49:d0:aa:1b:df:dd:73:10:fb:
11:75:25:94:25:65:73:ef:88:61:0a:93:40:49:0b:
56:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AB:28:EA:D4:67:29:4F:A6:33:41:0C:0B:50:96:B0:88:C0:63:61
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/66so6tRnKU-mM0EMC1CWsIjAY2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:ac0::/48
2a0e:b107:ac2::/48
2a0f:e401:111::/48
Signature Algorithm: sha256WithRSAEncryption
aa:b9:0f:41:1e:e5:75:86:1e:15:b0:92:96:f5:e2:d7:11:dd:
89:f2:5d:22:3e:66:44:22:f8:8b:56:ba:f9:ef:b7:a4:65:b2:
87:c0:a1:5e:21:9b:fa:a4:a9:3e:15:14:4d:aa:29:37:02:58:
20:94:7d:62:ce:ac:73:19:ca:ec:f3:d1:b2:55:bc:15:07:c0:
f5:fb:91:80:24:ff:70:c4:89:33:93:79:76:2f:28:45:36:3a:
9e:02:0a:8b:e9:98:e7:a8:0d:e4:77:92:99:7b:62:4d:75:85:
27:4b:35:03:79:98:94:6e:03:a9:bf:f4:7b:24:e6:08:8c:5e:
ea:92:c6:87:f6:d7:f5:98:91:4a:c1:03:c8:09:cf:3d:9b:45:
a5:e3:fe:3f:b8:a8:bc:68:34:b7:ab:07:20:5f:40:4c:ca:de:
b2:79:61:8b:97:86:41:82:8b:68:34:ca:9a:93:97:e0:e5:57:
e9:77:d7:03:55:c9:d0:e4:9c:5e:9d:c6:f3:0f:d6:03:65:97:
56:65:63:97:58:d3:4e:51:c7:df:d8:ca:50:6f:d3:bf:3c:fd:
00:fb:fa:8b:7f:3f:b1:30:ff:ea:9d:bc:41:5e:c3:7d:ff:79:
2a:4d:6c:90:96:af:57:6f:4c:70:2f:13:b9:a0:e6:ce:1a:87:
b5:4e:37:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org