Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8z0FgzZhSU6xb1lnhY588lqrt_E.roa
File: 8z0FgzZhSU6xb1lnhY588lqrt_E.roa (raw, json)
Hash identifier: T+UU/y7RJMUMHeGbPgvz0wYFYUxdCimE+oAooZ2OHp0=
Subject key identifier: F3:3D:05:83:36:61:49:4E:B1:6F:59:67:85:8E:7C:F2:5A:AB:B7:F1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01820F7C26FD9A4A65FA2E39DB879A6ECE3A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8z0FgzZhSU6xb1lnhY588lqrt_E.roa
Signing time: Mon 18 Jul 2022 04:06:10 +0000
ROA not before: Mon 18 Jul 2022 04:06:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49459
IP address blocks: 2a10:2f00:173::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0f:7c:26:fd:9a:4a:65:fa:2e:39:db:87:9a:6e:ce:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 18 04:06:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f33d05833661494eb16f5967858e7cf25aabb7f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b9:55:c0:48:e7:6a:7f:49:de:4b:b4:b3:13:
f8:16:2b:17:c4:66:9d:f5:43:d2:0d:5a:a8:8a:a7:
f6:97:68:f7:85:a3:91:6b:a7:1c:77:4d:47:63:f4:
bb:0a:be:e1:8d:a3:97:d0:83:40:9b:9d:a3:1a:6a:
31:08:56:f5:3b:74:f1:b0:76:36:89:91:80:7e:37:
6a:8f:ea:09:25:41:ab:da:ff:22:5f:85:71:78:c1:
61:7a:23:c2:e0:08:e4:2e:44:94:09:bc:0f:88:94:
f3:1e:9f:75:e8:24:3b:b2:81:43:4c:7e:62:9f:67:
9c:ce:ec:78:fa:70:e2:71:91:03:a7:3a:30:10:5b:
b4:28:2f:55:09:2e:05:15:4d:2c:3e:a6:88:c3:57:
ba:72:0c:f8:19:8c:d6:12:86:b0:f2:62:b9:2d:da:
a8:b5:bd:03:45:6d:7b:74:db:d7:c2:02:ee:9e:13:
8b:70:26:8f:f4:c4:e1:00:b3:15:bb:0d:98:ea:db:
64:aa:48:37:19:c1:fb:0d:3b:48:dc:b1:1e:64:d7:
1c:11:4a:30:2c:96:d2:2d:c3:9c:b3:d0:e3:8f:69:
98:57:25:bd:35:02:59:d7:12:21:7a:05:e0:1c:03:
94:71:71:a9:b9:3a:9a:89:64:c2:fe:22:88:1c:dd:
64:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3D:05:83:36:61:49:4E:B1:6F:59:67:85:8E:7C:F2:5A:AB:B7:F1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8z0FgzZhSU6xb1lnhY588lqrt_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:173::/48
Signature Algorithm: sha256WithRSAEncryption
39:ce:f6:86:bf:55:ac:82:60:90:11:0f:55:8d:fe:03:55:cf:
11:d0:62:b6:5c:68:d9:4a:33:1a:32:44:0d:86:d4:5e:a9:16:
82:6a:23:f4:a2:94:e7:7e:e4:66:ec:ad:ff:66:76:31:46:44:
15:e3:44:ee:87:7a:99:87:2d:8e:1f:5f:68:01:a8:a6:c3:b3:
08:f1:5a:48:01:22:02:cf:3f:7d:46:6d:35:a7:e8:ad:fd:de:
f2:08:f8:58:80:7f:e7:7e:49:d9:de:02:c3:38:da:bc:71:fa:
03:db:ef:ab:27:ec:83:10:5b:70:b2:4a:ff:d6:ba:f9:97:3d:
b9:64:50:58:33:f6:ec:e8:90:c6:23:ac:0c:82:c0:ce:e2:ec:
0b:a2:31:c2:87:b2:7b:b3:8c:6a:51:44:de:cb:d0:0a:43:5e:
54:5f:2b:58:7c:72:be:cd:0a:5d:4d:f8:70:3c:8a:06:4b:93:
22:41:cf:d1:30:1b:cb:cf:40:5b:c3:35:5f:0f:c3:f0:53:3f:
64:ff:2d:31:30:84:af:af:6f:32:04:8c:85:72:64:dd:be:cf:
cb:84:ac:6e:33:7e:aa:85:c7:61:ab:d4:d1:32:d0:0b:61:15:
e2:11:89:c4:4a:6a:50:d9:b7:17:64:e2:6a:a9:d2:50:26:0c:
b4:84:e6:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:55 2024 by rpki-client on console-ams.rpki-client.org