Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7fFPQ0B8GfM3T6H_Tt66xtKxRzg.roa
File: 7fFPQ0B8GfM3T6H_Tt66xtKxRzg.roa (raw, json)
Hash identifier: xrv4cekTpAEecH/M8DQDbibEKerU9aS9tQn46TvE0tU=
Subject key identifier: ED:F1:4F:43:40:7C:19:F3:37:4F:A1:FF:4E:DE:BA:C6:D2:B1:47:38
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183FB6EE9EEFDA62B4077B312633FF820C5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7fFPQ0B8GfM3T6H_Tt66xtKxRzg.roa
Signing time: Fri 21 Oct 2022 16:44:53 +0000
ROA not before: Fri 21 Oct 2022 16:44:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203423
IP address blocks: 2a0e:b107:1bc0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fb:6e:e9:ee:fd:a6:2b:40:77:b3:12:63:3f:f8:20:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 21 16:44:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edf14f43407c19f3374fa1ff4edebac6d2b14738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:05:2a:e8:b9:a8:b2:da:7a:56:df:6e:8b:ba:
a5:6a:aa:20:3d:cb:b2:3c:3c:1c:9f:31:6e:f6:b0:
66:15:18:33:b0:2f:bb:7c:b2:35:18:f3:e5:c6:3d:
00:fa:31:5b:9a:c0:a0:88:d8:b6:e0:fa:ad:69:46:
30:ca:04:da:b6:b4:c4:ad:94:5e:37:0c:0f:b6:4f:
5e:4b:cb:12:da:81:44:49:47:86:99:32:5a:31:b2:
74:97:9e:40:c5:2c:0f:c4:0c:98:c1:cc:f1:f5:4f:
7f:c1:c5:c2:f2:e8:a3:e4:50:80:87:f1:ec:ed:c1:
24:20:0b:16:50:36:36:eb:67:d1:91:78:f8:aa:41:
c1:2d:88:28:66:85:8b:99:05:1c:43:31:b6:13:2d:
f1:3e:c5:f7:7f:40:01:7f:97:f8:85:6f:3d:97:da:
7b:69:2c:02:1e:89:20:99:9b:7b:73:42:de:6c:eb:
6a:f9:e4:22:7c:29:3a:42:ea:86:a9:c7:34:91:ac:
79:a1:a7:8d:e8:9b:f3:c5:b5:b5:a1:a9:df:67:56:
7f:12:33:32:da:4c:01:ea:39:dd:19:1f:12:7f:63:
43:98:55:26:c6:22:45:14:20:52:a4:3a:aa:42:67:
f9:99:80:fe:f6:c3:f1:8b:c4:d4:f1:fc:3d:1f:a4:
6c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F1:4F:43:40:7C:19:F3:37:4F:A1:FF:4E:DE:BA:C6:D2:B1:47:38
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7fFPQ0B8GfM3T6H_Tt66xtKxRzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1bc0::/44
Signature Algorithm: sha256WithRSAEncryption
0a:bd:8f:3f:05:bd:35:26:b0:b3:32:ec:cd:35:d7:b2:5c:ce:
80:8f:30:cc:a1:50:cf:04:5a:3f:68:51:e6:a9:9a:51:ae:f1:
28:3f:35:46:c1:db:6c:8e:b8:4e:a5:f1:0d:f9:89:d8:25:b1:
d0:66:ca:12:dc:e8:2d:ad:8b:59:6b:95:65:6b:dd:87:f4:e5:
f5:e8:0f:a8:8f:5c:d2:27:06:a9:65:53:29:ec:2e:b2:10:6f:
6a:54:23:cf:79:9b:0d:f4:c4:fc:d3:30:98:3d:d6:8a:7a:4d:
1f:a7:f4:cb:b2:af:88:fa:e4:79:c7:62:79:e1:9a:f8:04:8d:
65:b3:31:97:cb:02:90:59:f1:79:3b:76:41:24:a5:af:93:29:
b5:4d:9e:40:d5:27:37:35:51:f3:65:6d:70:8a:d2:09:e0:c4:
74:0b:e9:f4:57:13:b0:54:bb:11:c3:19:43:0f:06:79:75:69:
3c:53:18:4a:be:ad:f7:66:33:a8:59:f3:d9:01:2d:94:81:70:
f8:05:81:ed:31:1d:3a:cc:56:a9:db:79:18:de:69:18:d5:96:
ba:2e:2e:20:cd:be:b8:2f:64:88:96:0f:d5:a2:f1:f4:51:b1:
b9:9d:c2:c9:4c:f3:79:9b:7d:34:dc:35:35:91:92:4f:65:c6:
04:99:e9:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org