Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/95cwMq8KiAUIS9CTfaHBa2Z7caU.roa
File: 95cwMq8KiAUIS9CTfaHBa2Z7caU.roa (raw, json)
Hash identifier: i/k9M5r4Tzu85MaqHUgFMnpzO+VX2mw9NS9HWZspHwU=
Subject key identifier: F7:97:30:32:AF:0A:88:05:08:4B:D0:93:7D:A1:C1:6B:66:7B:71:A5
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0181DD398825C553EAF388A8BC74E1B2A5DC
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/95cwMq8KiAUIS9CTfaHBa2Z7caU.roa
Signing time: Fri 08 Jul 2022 09:52:24 +0000
ROA not before: Fri 08 Jul 2022 09:52:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208223
IP address blocks: 2a0e:b107:1a30::/48 maxlen: 48
2a0e:b107:1a3f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:39:88:25:c5:53:ea:f3:88:a8:bc:74:e1:b2:a5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 8 09:52:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7973032af0a8805084bd0937da1c16b667b71a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b9:56:ce:0e:39:39:79:9a:40:03:a2:5b:42:
da:90:a0:f4:d0:23:e7:38:34:80:6a:72:74:61:40:
70:17:3e:ed:9f:88:2e:35:fe:a3:dc:a0:72:69:78:
a4:d7:a6:33:24:a9:2a:20:04:45:00:9c:d0:cb:a1:
f0:bf:6c:35:c0:71:4f:f4:c8:ac:6c:3c:68:15:2c:
66:0d:53:bd:d8:b4:33:e3:ba:50:6a:88:2f:54:77:
07:47:2a:19:3c:c0:fa:fc:51:16:3c:b0:4e:46:62:
6c:f6:67:23:05:3e:1f:f9:76:94:f2:ad:84:f8:88:
97:54:8e:8c:19:0e:ea:53:2f:d3:ff:20:48:2e:82:
55:fb:36:ee:00:06:7e:98:78:ee:a4:d9:24:7e:a1:
92:ee:59:93:4a:29:04:fe:2a:6f:19:7a:26:fe:06:
32:44:54:a6:13:b2:78:54:02:e6:cd:42:4b:92:4e:
d2:e8:95:03:44:37:b2:d2:5d:4b:89:d8:db:e0:11:
81:4c:05:01:a9:a4:6f:89:5b:60:a2:4d:8d:b5:68:
51:a7:8d:ce:1e:5c:96:40:d8:7a:23:df:c4:78:11:
3b:86:8a:78:e4:27:34:05:64:83:ec:20:38:28:1a:
15:42:df:56:e1:91:c8:e1:e9:4b:ef:dd:3c:ca:85:
27:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:97:30:32:AF:0A:88:05:08:4B:D0:93:7D:A1:C1:6B:66:7B:71:A5
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/95cwMq8KiAUIS9CTfaHBa2Z7caU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1a30::/48
2a0e:b107:1a3f::/48
Signature Algorithm: sha256WithRSAEncryption
07:8e:6c:2d:05:cd:6f:db:41:03:7e:fb:c4:4b:ff:b4:54:9e:
3e:f0:ee:86:8b:be:df:42:c3:0d:e5:38:dd:7b:2b:df:07:52:
4e:23:75:9e:de:a0:5d:8f:d9:35:47:d5:8a:5f:47:69:de:50:
09:1e:33:07:2a:99:f4:09:d5:a3:56:38:33:d6:b3:a3:64:3f:
67:73:0d:06:8d:97:07:9c:d4:cd:d5:ae:87:f8:61:4a:b3:70:
ec:09:c4:00:9d:5d:92:71:93:59:09:85:fe:77:8e:89:60:b4:
85:de:f7:87:27:62:21:44:b1:7a:e2:40:26:b0:41:38:bd:92:
ae:34:cb:8b:3e:71:4c:41:02:8d:26:50:59:6a:d4:5d:69:af:
bd:73:63:e2:15:ff:50:97:3d:ef:7d:5c:9d:87:b6:a1:73:a4:
d9:1c:48:6f:d7:dc:ac:a3:cc:2c:43:91:cc:c5:d6:ac:08:d9:
89:8c:aa:90:1f:4a:fb:90:4a:84:b1:1d:d3:96:1e:ae:fb:b2:
d7:fd:74:9a:d5:96:e0:84:24:e9:50:ef:e6:3c:c1:62:e8:47:
43:f0:32:c4:30:10:94:8b:c1:17:86:89:5c:00:d2:79:f6:c1:
8a:99:df:40:f6:1f:2c:ad:8d:e7:19:ea:dc:31:5c:8e:58:49:
aa:2a:a5:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org