Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7ihr6Z5DNytyFjLYa8sinRXkoy8.roa
File: 7ihr6Z5DNytyFjLYa8sinRXkoy8.roa (raw, json)
Hash identifier: q7+rmpI185qUqUb/HxcaXLVf8y/bL3YQow3uRE8DxyY=
Subject key identifier: EE:28:6B:E9:9E:43:37:2B:72:16:32:D8:6B:CB:22:9D:15:E4:A3:2F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 150D4D83
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7ihr6Z5DNytyFjLYa8sinRXkoy8.roa
Signing time: Wed 08 Jun 2022 14:18:03 +0000
ROA not before: Wed 08 Jun 2022 14:18:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204750
IP address blocks: 2a0e:97c0:3d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353193347 (0x150d4d83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 8 14:18:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee286be99e43372b721632d86bcb229d15e4a32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:38:1d:74:3a:f1:30:08:52:0c:cd:72:c0:
7b:bc:09:83:f3:c6:4c:0d:8e:6f:0d:1d:6b:f9:7d:
dd:31:ca:de:5b:29:ce:22:49:94:59:17:90:aa:14:
fb:74:14:9e:eb:b2:ef:d7:8b:24:ac:01:50:37:08:
55:71:7b:ee:cb:ac:be:f7:d6:1c:c6:f4:b9:3a:f0:
92:e9:89:c0:fd:fa:40:e5:0f:d1:d7:ae:a0:d0:0f:
91:e6:6d:ec:4c:7c:c8:70:54:11:c9:d3:08:27:e4:
cd:9b:ca:d9:7d:70:82:dd:7b:bf:41:4a:05:b9:b5:
36:21:03:14:65:4c:44:c3:12:80:55:ef:20:55:6f:
34:39:45:99:aa:46:8c:5b:70:3d:f1:4a:b5:3c:7c:
e6:bd:30:ba:1c:9a:ec:4f:ee:24:a3:55:d2:e9:77:
fe:5e:8b:25:c0:7c:28:65:bc:37:6c:5d:0f:bd:d9:
7e:c3:f6:2f:1d:5d:71:af:cb:7b:7e:99:47:c2:8d:
19:17:02:d1:38:8f:f7:5e:77:14:00:41:7a:a5:d7:
b8:88:06:f2:7d:e2:16:99:29:60:07:2d:8a:bc:b8:
c2:24:6e:d4:8e:5e:67:4c:0e:1d:0d:82:57:c2:4c:
6c:c9:73:d8:3d:97:d4:18:b3:9a:99:05:32:0a:11:
c5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:28:6B:E9:9E:43:37:2B:72:16:32:D8:6B:CB:22:9D:15:E4:A3:2F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7ihr6Z5DNytyFjLYa8sinRXkoy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:3d0::/44
Signature Algorithm: sha256WithRSAEncryption
71:ff:4f:ca:b8:5a:4b:4d:ae:4b:67:fb:25:1a:22:f1:e6:51:
47:1f:6e:6c:3f:04:aa:e9:0a:d5:72:65:62:f9:60:80:e0:9d:
43:e1:da:9e:36:bc:63:2b:36:7b:dd:64:bc:61:ab:7f:8b:19:
ef:6f:e9:23:06:8c:bf:64:f9:79:de:74:3b:8f:f1:bc:4e:89:
f2:fb:5e:02:0b:14:cb:cb:8b:bf:9e:e7:4d:01:24:8d:b2:51:
7d:fa:6b:b4:3c:ba:e1:83:9f:e4:ca:6c:93:3d:b2:bd:bc:9f:
46:61:11:54:5d:eb:42:25:1e:c6:44:2b:ee:47:6c:0f:7b:cf:
72:77:7d:97:c6:c1:2a:17:fd:6f:76:e8:58:fa:b2:21:70:bc:
7d:79:5d:1e:09:bd:57:52:28:f1:d4:ec:37:1e:9f:1c:db:8a:
ef:32:51:90:25:d9:29:17:95:38:30:6b:c0:62:ea:38:5e:ed:
a8:de:1e:6b:1b:34:2f:6b:f6:19:e1:c7:bd:06:61:10:43:89:
34:d9:f5:99:a1:8f:ca:7b:37:ae:5e:db:01:7f:c4:ef:7f:57:
2a:59:95:8e:3c:cf:8a:b2:b6:d7:24:19:de:28:b0:9f:ae:37:
d0:3d:c3:26:4e:53:ca:a8:20:3d:8b:80:8a:4d:f5:ed:3f:df:
56:62:c2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org