Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7L_lC-hXXNu93QkFptpL6ZywZ9w.roa
File: 7L_lC-hXXNu93QkFptpL6ZywZ9w.roa (raw, json)
Hash identifier: za73bT+U8PVeTQU6jEoPRw+Hs9Hm4x/PguIksMb6et4=
Subject key identifier: EC:BF:E5:0B:E8:57:5C:DB:BD:DD:09:05:A6:DA:4B:E9:9C:B0:67:DC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10F27731
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7L_lC-hXXNu93QkFptpL6ZywZ9w.roa
Signing time: Sat 01 Jan 2022 09:05:57 +0000
ROA not before: Sat 01 Jan 2022 09:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213092
IP address blocks: 2a10:2f01:280::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284325681 (0x10f27731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecbfe50be8575cdbbddd0905a6da4be99cb067dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a5:df:f5:cd:df:1f:ae:d7:7c:f9:a0:a4:60:
99:45:15:44:b9:ea:ce:9c:91:ee:9c:a8:d7:ef:95:
fb:5a:d7:c1:cf:40:fd:03:f8:4c:ad:ed:57:4b:b3:
ce:b3:1e:9c:58:98:0b:bc:34:a6:d7:1f:1a:d8:fd:
82:00:ce:96:25:72:56:4d:7f:a5:67:ab:2a:73:36:
bc:5c:32:17:01:1e:80:ee:ae:6b:bc:37:1f:a2:2d:
88:3c:2e:8b:85:62:fc:ba:30:b4:4a:cd:a0:34:b7:
ef:ef:04:f5:d5:d1:3e:1f:3d:c1:e6:99:58:74:95:
c9:5a:e4:74:74:dc:96:a3:36:fd:a4:36:40:0d:34:
07:1a:6c:b4:8c:40:fe:e6:ca:b1:d1:c6:c2:83:6c:
68:8f:e1:06:b4:02:4b:68:78:9e:5e:19:dc:7c:af:
99:7f:b1:54:fc:38:26:f3:6d:e3:2f:a9:25:fb:e7:
67:a7:75:44:83:d0:36:fc:84:e5:67:9e:0d:a6:20:
87:13:70:67:30:a1:22:bf:fc:17:58:ba:ad:b5:09:
cb:f5:36:da:2a:dd:bc:43:1d:e5:ec:fa:98:86:36:
fc:0e:27:40:7a:c8:2f:4d:e3:04:7c:50:cb:e5:cf:
fe:92:dc:76:6b:e4:a0:cb:13:40:91:9c:d9:9f:35:
7d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:BF:E5:0B:E8:57:5C:DB:BD:DD:09:05:A6:DA:4B:E9:9C:B0:67:DC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7L_lC-hXXNu93QkFptpL6ZywZ9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f01:280::/44
Signature Algorithm: sha256WithRSAEncryption
36:77:88:e5:db:93:b3:00:be:5b:bb:57:5b:be:65:d0:ff:60:
aa:fa:a9:e0:01:f2:32:38:1b:b9:e6:99:9c:b9:ac:11:24:33:
ad:0e:22:41:46:0f:26:e6:bf:33:c0:69:d2:a2:33:a6:86:a2:
02:ea:dd:ad:24:9a:00:63:9a:a7:fb:67:de:fc:cf:8f:87:90:
11:aa:b9:fb:6c:e1:e9:63:32:32:2d:de:ac:4a:29:30:06:0c:
9b:3c:1f:f1:f7:f3:bf:25:9b:68:f8:c3:ef:1d:10:6b:a4:c8:
f2:09:11:a4:c5:7d:f3:c4:2b:72:28:d4:fb:13:4e:5e:2b:51:
42:87:3e:ed:61:af:6d:b9:36:33:15:75:e1:42:78:47:f8:0b:
e5:75:3a:5e:66:77:27:12:09:c0:2b:7d:78:08:2f:26:b1:fc:
aa:ce:d6:a7:eb:60:d9:ca:7c:d8:27:13:a0:40:d4:3c:0c:4d:
50:4e:4e:9c:44:60:39:1f:0a:a5:33:bf:30:9c:97:70:1c:a4:
77:ea:42:eb:85:4c:86:bd:05:88:8f:91:31:0b:38:28:6e:a6:
1b:5f:46:f6:c7:24:1e:d5:80:30:ee:75:5a:4f:86:8c:88:9c:
db:24:64:fa:b0:a3:19:cd:80:5c:24:fa:6a:85:cc:5a:87:3f:
d7:11:bb:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org