Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7HcmxKFDNzmjSeCCcYMUb43ODhI.roa
File: 7HcmxKFDNzmjSeCCcYMUb43ODhI.roa (raw, json)
Hash identifier: SMEQekopdxnXee7ywAc/0SASaTOmQPj9GVjOnDwUcFY=
Subject key identifier: EC:77:26:C4:A1:43:37:39:A3:49:E0:82:71:83:14:6F:8D:CE:0E:12
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 11D262DD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7HcmxKFDNzmjSeCCcYMUb43ODhI.roa
Signing time: Tue 08 Feb 2022 15:33:30 +0000
ROA not before: Tue 08 Feb 2022 15:33:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139989
IP address blocks: 2a0e:97c0:371::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299000541 (0x11d262dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 8 15:33:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec7726c4a1433739a349e0827183146f8dce0e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:73:9e:c9:46:81:69:1b:b4:2d:90:ad:68:
31:d7:17:c2:70:12:24:ae:07:4b:9e:26:8e:e4:d2:
c7:43:f7:86:a5:7e:22:f1:5e:39:07:f7:3f:a5:0d:
8a:9a:48:e5:6e:c1:f7:7a:b0:03:6f:9c:d8:a6:3a:
1c:3a:5b:ee:14:e9:4a:fb:ab:5a:07:61:f4:11:0b:
74:fe:ec:1f:3d:6b:f1:7b:a0:53:a7:39:0a:c4:1d:
fc:69:4f:15:37:07:9c:71:c6:7a:f5:4a:96:65:77:
45:f1:7f:f5:67:03:3f:af:ab:88:60:a1:33:18:6e:
e6:b0:90:97:31:06:be:e8:77:e1:69:73:23:27:8b:
1c:13:c1:05:97:8a:7c:20:15:2e:6a:00:3f:5e:c0:
1e:b4:14:5a:70:ab:fb:65:5f:0a:7f:19:0e:33:43:
04:f0:f3:05:0e:1b:2d:d2:ea:fd:e9:d0:29:21:a3:
31:4f:d7:cd:81:80:fa:c2:a9:c3:31:61:38:c9:8a:
f9:09:40:c0:1e:e9:83:94:5d:84:86:92:1b:de:49:
dc:7e:c5:e2:fe:2e:cb:f6:e6:f5:7b:11:90:32:6e:
b1:e8:a7:0b:7f:a7:0a:b5:61:3b:ac:7d:32:ed:59:
68:0c:97:c8:8a:96:d3:d6:08:18:c1:40:bd:eb:a4:
22:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:77:26:C4:A1:43:37:39:A3:49:E0:82:71:83:14:6F:8D:CE:0E:12
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7HcmxKFDNzmjSeCCcYMUb43ODhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:371::/48
Signature Algorithm: sha256WithRSAEncryption
c6:bd:7d:f3:f5:1f:05:95:5a:d1:70:af:af:e2:68:4d:ed:e2:
68:7c:5e:d9:62:e5:54:85:89:09:f7:9f:c0:84:3a:97:70:a3:
f7:60:81:11:75:af:a6:c4:12:ad:a4:18:c7:a0:2b:f5:ae:f5:
b3:d2:bb:8b:9c:4c:28:99:88:36:0c:c1:02:38:0a:50:e2:5e:
8e:22:c9:11:20:60:0c:54:31:ba:e9:72:70:19:48:c0:58:45:
ac:92:b3:f2:7a:ae:07:90:42:ad:a7:6a:e0:b2:10:88:71:3b:
6d:b4:48:fb:c5:a4:13:08:c2:7d:d6:e5:9c:6e:34:f5:b2:b4:
cc:56:d5:7e:89:15:47:72:17:c9:da:cd:28:42:e0:57:c7:b8:
12:24:6b:3c:01:44:ef:bb:7a:d5:ea:fd:b9:94:c1:c8:e2:9c:
b4:f7:f4:2b:bf:a6:6e:62:78:0f:e1:19:32:0c:dd:a0:90:e4:
4c:62:95:5b:ce:e9:98:2e:a9:ab:8a:b9:d3:cd:2c:e4:fd:63:
89:6e:6b:8e:b1:11:88:8f:e3:b8:11:c5:84:4d:8e:38:88:62:
8d:1d:81:4a:92:0f:a9:63:62:ee:21:4e:88:ba:6e:29:c1:41:
da:56:79:91:49:3c:e9:a9:8b:49:d4:37:93:ba:0b:dd:cd:5c:
2d:f4:73:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org