Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9cNEi_gm8XguUPc9jmIlbMPivtk.roa
File: 9cNEi_gm8XguUPc9jmIlbMPivtk.roa (raw, json)
Hash identifier: +apCKwJRiq3d9ZuM2aU6DWMyDoEOhzJkfPz8CWtDOsE=
Subject key identifier: F5:C3:44:8B:F8:26:F1:78:2E:50:F7:3D:8E:62:25:6C:C3:E2:BE:D9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14878E36
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9cNEi_gm8XguUPc9jmIlbMPivtk.roa
Signing time: Tue 10 May 2022 18:49:02 +0000
ROA not before: Tue 10 May 2022 18:49:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207716
IP address blocks: 2a0e:97c0:7bd::/48 maxlen: 48
2a0e:97c0:7b0::/44 maxlen: 48
2a0e:97c0:7be::/48 maxlen: 48
2a0e:97c0:7bf::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344428086 (0x14878e36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 10 18:49:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5c3448bf826f1782e50f73d8e62256cc3e2bed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7b:65:0b:1e:0e:72:94:5b:b3:41:6d:b2:f2:
a2:40:0a:0b:b4:0f:d5:f7:d4:42:e5:b6:50:a0:b0:
08:d0:b2:ea:cd:3a:06:ae:3f:bd:d9:4e:1c:18:fa:
12:3b:ba:27:42:aa:66:d9:26:a5:1c:b2:e3:40:1f:
aa:53:1e:af:9b:74:de:a4:9b:a8:d4:f7:dc:c2:fe:
94:d6:91:20:a1:09:3a:c3:8c:2c:42:df:15:4d:49:
9d:a8:da:8d:77:7e:be:47:b2:31:1a:7b:7c:27:54:
fc:d9:29:78:07:45:a4:2b:d2:10:00:9e:b8:eb:63:
c4:5a:6b:81:01:e1:96:17:d3:f4:c0:74:74:1e:76:
8b:d7:3a:20:4d:12:08:aa:68:dc:24:8a:bf:bf:2b:
ab:61:84:e9:1b:8f:20:59:e0:00:8b:cb:fa:28:cf:
ae:78:e5:7e:c7:02:8a:a3:61:59:7f:d7:d3:09:77:
da:3d:5c:3d:30:a0:bf:9b:34:c8:57:f2:d9:6e:bd:
b7:81:b8:00:8e:5f:e5:cc:16:de:ec:75:fc:aa:44:
b3:cc:5f:a3:7e:85:b6:db:31:43:70:09:49:f9:99:
a1:16:7a:ef:1b:b9:ff:e5:b6:ab:eb:41:78:b7:12:
66:2f:52:ed:fa:40:2c:b5:2d:11:68:b4:7a:cb:ef:
20:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C3:44:8B:F8:26:F1:78:2E:50:F7:3D:8E:62:25:6C:C3:E2:BE:D9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9cNEi_gm8XguUPc9jmIlbMPivtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:7b0::/44
Signature Algorithm: sha256WithRSAEncryption
69:ae:a1:81:ee:3b:a9:1e:45:bb:a7:49:d3:b5:65:85:80:37:
ff:34:ea:8c:6c:9b:5e:ef:c1:e4:9e:9d:2c:fc:a9:79:68:87:
02:40:14:04:b9:e6:7d:5e:2a:67:11:1b:d8:71:f2:4f:df:8e:
0b:47:48:d9:92:61:37:9d:3b:ac:8d:a9:29:0f:2e:84:f2:b0:
24:bb:ae:b6:3d:4a:39:a1:e3:66:b8:43:98:ef:ca:50:a8:9b:
6b:1d:9c:53:a9:96:05:84:56:7d:41:c2:44:bb:6b:89:a4:0e:
89:ee:ec:74:6f:b0:14:c6:b7:11:22:b3:69:4a:b5:11:1a:a6:
03:39:01:9c:bb:f8:e0:05:f9:f8:dd:2c:38:88:a5:3b:25:fe:
a9:33:5b:58:5e:ad:be:7b:67:f1:ac:73:e9:d3:62:34:46:cb:
dd:69:9f:93:5b:95:3f:92:99:8e:b2:db:99:1c:e4:83:db:6b:
e0:55:00:03:28:35:6d:ae:89:35:17:80:55:3d:e4:46:97:8a:
3c:2c:32:86:e4:eb:0a:2f:d8:95:94:55:57:3c:88:1c:9c:6e:
e2:52:35:9e:93:ae:d5:ea:48:c9:ed:fd:cb:42:24:7e:cb:3e:
3f:0a:ca:e6:5f:28:de:a4:97:09:8e:22:1f:56:c7:90:4f:25:
bf:d0:bb:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org