Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6oUl1zoFo8NF_vteVPVJ3q7FthA.roa
File: 6oUl1zoFo8NF_vteVPVJ3q7FthA.roa (raw, json)
Hash identifier: CW4oYwc5vLHB4vUa3L7f3Rks5OBN6hNdkQMlb8rolFc=
Subject key identifier: EA:85:25:D7:3A:05:A3:C3:45:FE:FB:5E:54:F5:49:DE:AE:C5:B6:10
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182C603DD8F5C2FAAFFFA999E981E531604
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6oUl1zoFo8NF_vteVPVJ3q7FthA.roa
Signing time: Mon 22 Aug 2022 14:45:18 +0000
ROA not before: Mon 22 Aug 2022 14:45:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211659
IP address blocks: 2a10:cc40:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c6:03:dd:8f:5c:2f:aa:ff:fa:99:9e:98:1e:53:16:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 22 14:45:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea8525d73a05a3c345fefb5e54f549deaec5b610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0e:aa:a5:d0:04:1e:96:35:67:00:2f:df:f6:
3e:2e:d3:06:e5:76:33:d6:5f:98:29:00:0b:4f:80:
f9:0a:1e:3c:c1:d1:6e:a5:28:aa:24:b9:03:98:7d:
06:d1:92:67:a7:54:9f:cf:32:5f:3f:44:49:f3:d4:
4b:91:75:a3:0e:2e:7c:99:db:f3:25:e4:81:3e:8b:
67:d5:12:50:3a:e9:75:ce:cc:9e:f4:94:9e:ee:70:
ba:31:9c:e0:05:bc:f8:ab:58:27:e5:fc:c6:03:fb:
ac:eb:02:8f:bb:d4:9e:d7:be:21:98:23:c5:79:51:
25:11:2a:f7:d5:f9:6f:6f:b4:5d:39:e9:2c:6f:19:
c9:22:7a:7c:ad:e2:85:dd:07:b4:f1:36:70:2c:a7:
c5:b3:92:a3:2f:f7:1b:17:16:45:fa:01:ce:f3:c3:
3e:c1:de:61:12:d9:cc:e7:dc:7e:2a:30:07:f3:40:
a7:ea:27:ac:d0:cb:bb:51:7a:d7:62:3b:12:53:b8:
84:3f:f2:9c:f5:1c:e7:e6:6c:00:31:13:c4:86:4a:
3a:1d:c5:4a:4b:f4:b6:af:5b:36:af:89:ba:f8:c6:
8c:d1:87:df:2b:90:8f:f2:c6:a0:ed:50:9a:e1:ec:
42:ae:af:96:06:7c:58:f0:03:24:91:d6:c4:1d:0b:
35:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:85:25:D7:3A:05:A3:C3:45:FE:FB:5E:54:F5:49:DE:AE:C5:B6:10
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6oUl1zoFo8NF_vteVPVJ3q7FthA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:100::/44
Signature Algorithm: sha256WithRSAEncryption
c6:64:ef:6b:e7:79:2c:10:37:fb:e3:00:20:7e:a1:93:c0:64:
9e:7f:f1:91:8e:4c:4b:e4:da:43:75:ab:6a:03:a0:5e:0c:d8:
a2:a9:5f:b1:e0:b7:c1:09:7b:18:e5:c9:e2:88:72:f4:6b:06:
2c:41:cb:ac:dd:81:34:b4:2f:71:7f:f4:48:d0:ea:95:6d:fa:
c9:42:ef:3b:99:f6:9f:d2:bd:b0:54:6a:6f:ce:de:05:f5:d8:
b4:08:64:cc:c6:c3:8f:e1:00:8f:90:eb:7b:16:24:bc:4d:69:
ba:bb:58:02:cb:cb:74:f6:83:71:a6:b6:70:86:aa:7a:25:49:
4c:ab:e6:cc:f1:55:86:be:0e:ac:5e:c7:a4:a9:92:73:91:4f:
74:77:da:06:2b:70:45:44:56:78:c1:2b:b9:d0:78:54:af:8d:
48:34:bb:53:f5:9a:da:db:be:48:b4:03:e5:3c:7e:94:47:d3:
c2:09:bc:6e:d6:cc:09:e2:57:20:6d:59:c4:20:4a:42:2b:ba:
91:34:7d:00:6a:1c:95:9a:5e:89:7b:ee:50:70:96:24:1f:a0:
2b:1c:17:96:bf:58:73:a5:67:98:63:15:6f:c7:c7:99:a0:d1:
55:39:6e:cc:fc:e8:d8:d9:c5:5d:e6:e0:9c:59:40:99:6b:75:
e0:7d:d2:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org