Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6FYOkD6jPdyLTodXNlUcVcARkNE.roa
File: 6FYOkD6jPdyLTodXNlUcVcARkNE.roa (raw, json)
Hash identifier: t8bQPuRNH2x2/bHvlzw1uSLAJSlQ7l4WD7qgCQzTVkM=
Subject key identifier: E8:56:0E:90:3E:A3:3D:DC:8B:4E:87:57:36:55:1C:55:C0:11:90:D1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1270305A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6FYOkD6jPdyLTodXNlUcVcARkNE.roa
Signing time: Sat 26 Feb 2022 17:31:28 +0000
ROA not before: Sat 26 Feb 2022 17:31:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212895
IP address blocks: 2a09:4c2:4b::/48 maxlen: 48
2a0e:b102:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309342298 (0x1270305a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 26 17:31:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8560e903ea33ddc8b4e875736551c55c01190d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bd:57:f0:40:e9:d0:2c:79:54:cf:8d:91:19:
5c:21:f8:e3:87:b1:29:c1:0b:31:7d:8e:e6:16:8e:
c1:2a:28:7b:be:86:b4:21:e0:27:25:a2:2a:0d:33:
b0:b9:30:42:00:1d:2b:f2:f2:74:d6:41:43:56:76:
74:a1:b9:24:d0:05:3f:d1:2f:47:34:ee:9a:59:d1:
b6:fe:cd:0b:00:cc:a6:49:92:33:a6:a6:2a:9b:ef:
b5:09:6a:c9:17:c4:e0:5a:65:d2:77:27:12:80:30:
90:d4:3f:75:62:0d:1a:91:31:57:3e:7e:07:69:fc:
94:69:a8:c1:fe:00:dc:9e:a1:93:45:f8:31:ba:34:
a5:bc:8d:cc:08:96:86:38:bc:a3:be:b7:f9:a6:ea:
d4:e3:5b:3f:1a:12:64:b7:f0:1a:59:ba:88:1f:cf:
16:73:ee:a8:76:57:70:99:aa:f5:4d:9b:30:8d:b2:
2e:3d:ca:bf:1e:08:51:18:9b:f7:13:8a:ca:7b:99:
69:de:40:78:fd:7d:7e:ac:75:6c:0b:05:18:0b:c4:
28:d6:d2:22:a8:46:6d:a2:be:80:c0:11:8f:a6:5d:
0b:d9:e7:cd:80:a0:5e:7c:2c:fb:b5:16:00:2c:19:
67:19:e1:f7:7c:65:2a:02:f1:28:bd:50:cd:b2:22:
ca:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:56:0E:90:3E:A3:3D:DC:8B:4E:87:57:36:55:1C:55:C0:11:90:D1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6FYOkD6jPdyLTodXNlUcVcARkNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:4c2:4b::/48
2a0e:b102:100::/44
Signature Algorithm: sha256WithRSAEncryption
a9:5a:3d:5c:ce:13:47:7c:c0:e3:36:0b:39:63:c9:32:da:95:
62:16:fe:49:cf:ce:bd:00:37:e1:2d:dd:fa:b8:26:0b:9a:46:
07:86:7c:b7:1e:a0:8b:9f:e7:ef:bd:53:fb:f3:44:96:46:5b:
83:25:1c:ae:1d:3a:6c:2d:d1:56:ea:77:a0:94:a1:95:71:ba:
9e:fb:89:af:6e:e1:9c:9e:b8:0e:c3:5a:fa:54:6b:83:b7:c5:
8f:f7:34:51:14:23:00:16:59:01:f8:ea:68:ff:22:5c:84:54:
52:34:ad:d7:c5:0d:db:24:0e:c3:b1:4a:5e:51:55:04:4f:49:
95:8e:80:5b:c9:ad:3a:03:a3:3c:22:cc:1c:ef:13:7c:5f:af:
2b:59:03:fd:f4:3d:8d:d5:74:a9:19:18:2d:4f:12:95:67:2c:
32:a0:bb:ca:07:1b:e0:6c:a2:e0:be:06:6e:23:29:8c:44:b9:
b0:76:76:4e:89:09:ea:0c:41:cb:db:96:e9:78:14:0a:c5:38:
4f:13:48:0d:ab:9c:f8:30:ce:f5:74:62:c1:94:2f:5a:3b:3f:
83:1a:4c:15:2d:d0:c7:cd:13:c7:53:9b:03:0a:4e:75:27:ad:
04:47:cd:5d:bb:f7:39:1a:53:f2:a6:04:5f:9e:b7:3f:25:73:
d6:de:76:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org