Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9YdzeDVnrBY7djTDTl4jmY_dQDY.roa
File: 9YdzeDVnrBY7djTDTl4jmY_dQDY.roa (raw, json)
Hash identifier: PfxB7W19/zmfnOJNz3/MsZ+qPmmOnU6FcLtTclerroo=
Subject key identifier: F5:87:73:78:35:67:AC:16:3B:76:34:C3:4E:5E:23:99:8F:DD:40:36
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 151D9AE5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9YdzeDVnrBY7djTDTl4jmY_dQDY.roa
Signing time: Sat 11 Jun 2022 22:51:03 +0000
ROA not before: Sat 11 Jun 2022 22:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25198
IP address blocks: 2a0e:97c0:300::/44 maxlen: 48
2a0e:97c0:a80::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354261733 (0x151d9ae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 11 22:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f58773783567ac163b7634c34e5e23998fdd4036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bf:bf:61:4f:4b:df:b3:3d:15:d6:ff:c6:ec:
07:c2:ae:7f:99:b8:b1:9d:1b:1b:c9:a0:a5:d1:82:
60:1a:2a:f1:12:a0:2d:53:6f:5b:2e:3e:68:f7:a6:
64:97:32:98:7d:1e:a2:67:a8:72:38:bc:78:6c:c2:
6d:bc:8a:ea:df:90:c4:48:c9:9f:fa:e0:13:31:9c:
ee:de:df:14:da:88:72:15:34:11:3b:81:dc:a1:a5:
94:d0:cb:71:fa:6e:2d:86:99:71:fc:75:50:4d:08:
c4:24:ab:ed:4f:c8:83:01:e4:dd:cd:c2:a1:ed:0f:
a9:ab:69:16:9e:4d:b1:02:54:dc:28:4a:77:fd:b3:
0f:a6:41:07:07:cc:b9:3e:4c:03:e8:2c:90:0f:ef:
45:19:a1:f6:35:5c:5b:c9:4d:01:32:31:18:4b:72:
41:ab:85:2c:43:fe:55:6f:db:81:d5:73:39:1f:0e:
df:2b:b2:fa:c7:76:46:e1:59:29:8e:2e:52:f8:8e:
4c:91:36:67:5b:a6:73:5b:39:5c:1f:1c:42:b0:bd:
e0:89:b9:1e:46:35:89:f4:b4:ad:2e:f2:50:57:f2:
af:47:7b:db:4f:ba:db:df:3a:b3:76:af:3b:32:fd:
04:db:b3:44:f1:f6:64:72:74:c9:77:30:38:8e:84:
61:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:87:73:78:35:67:AC:16:3B:76:34:C3:4E:5E:23:99:8F:DD:40:36
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9YdzeDVnrBY7djTDTl4jmY_dQDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:300::/44
2a0e:97c0:a80::/44
Signature Algorithm: sha256WithRSAEncryption
6c:ce:e0:da:66:e9:8a:0f:13:63:6c:1b:1b:2f:35:d5:9b:2b:
1f:ef:8a:5d:83:92:9b:a7:c8:fb:c0:7e:8a:30:c6:53:56:7b:
29:f1:15:46:99:5d:08:8f:93:ad:5c:de:30:99:c6:f9:da:1a:
05:a2:81:7d:ab:3c:39:fa:14:46:1b:e0:3f:06:03:10:62:cf:
07:38:f5:91:4d:28:7f:e9:a5:80:d7:29:5f:2e:33:c3:53:22:
44:0a:dd:55:db:c5:38:53:fd:41:cc:43:33:a2:be:9b:9e:4b:
61:f1:86:ad:85:15:61:bc:6d:92:a8:53:f7:9c:66:b0:48:cb:
b1:e4:4a:94:de:a8:5b:d1:c5:03:32:b5:e5:2f:38:0b:bb:d2:
15:6e:93:77:2e:c7:77:0e:d5:ee:dc:cb:86:df:07:d8:20:b4:
02:57:6b:15:40:8e:cd:25:5c:ac:e2:d9:19:73:40:9b:0b:86:
1d:ea:ca:41:99:93:47:cb:b6:1f:44:bd:4e:99:f4:2e:de:fc:
3c:14:bd:f9:42:a5:b0:35:5c:cc:a4:0d:55:c2:8b:8e:7f:ec:
37:10:8b:c4:d7:33:4e:46:0d:f4:d6:ce:a8:05:10:be:cb:d1:
00:85:be:7c:84:04:f0:c5:3f:40:d3:72:31:86:80:1e:0b:9d:
61:a0:ab:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org