Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/B2IekUVOeQ3CPM5O_kGNbJ1MC1M.roa
File: B2IekUVOeQ3CPM5O_kGNbJ1MC1M.roa (raw, json)
Hash identifier: xl6lyhzSJAaAQff898wCZZsKbRIwfin1t/SH/jJyuto=
Subject key identifier: 07:62:1E:91:45:4E:79:0D:C2:3C:CE:4E:FE:41:8D:6C:9D:4C:0B:53
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1351400C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/B2IekUVOeQ3CPM5O_kGNbJ1MC1M.roa
Signing time: Tue 29 Mar 2022 20:47:23 +0000
ROA not before: Tue 29 Mar 2022 20:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210667
IP address blocks: 2a0e:b107:1788::/48 maxlen: 48
2a0e:97c0:a43::/48 maxlen: 48
2a0e:97c0:a41::/48 maxlen: 48
2a0e:97c0:a42::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 324091916 (0x1351400c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 29 20:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07621e91454e790dc23cce4efe418d6c9d4c0b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ab:c2:db:73:66:a4:00:87:21:00:58:f1:18:
74:71:ec:4a:b2:ee:03:ac:c0:13:76:c2:4b:7a:e7:
39:da:f2:a8:f0:a2:ae:3f:04:66:40:0c:70:76:81:
28:00:6f:5f:8e:ac:fc:6a:fe:6d:94:00:84:cc:17:
be:12:db:bc:82:38:26:72:b7:f3:1b:eb:fd:52:4f:
d5:1b:04:8f:80:38:7c:ac:d8:00:18:8c:e2:4d:ef:
4a:2d:6d:00:20:29:26:cb:7e:ed:4d:14:a1:4d:9c:
fe:5e:f9:65:e6:b6:30:00:32:ce:c3:e4:1e:6f:1d:
6c:b7:58:62:3e:0c:aa:19:8f:36:e6:61:45:f9:8e:
27:b2:77:70:fa:3c:47:f5:1f:6b:12:49:de:67:00:
44:c9:17:39:9c:ce:7f:d3:0a:4b:9f:eb:bd:e8:13:
c6:fc:11:89:68:0e:3e:c8:c8:ad:47:8f:1a:d7:37:
95:17:40:56:14:f3:fd:8a:10:08:41:7d:26:3a:db:
9d:97:71:cf:cb:50:09:1d:a6:05:28:23:5d:00:f5:
7c:34:af:12:ef:91:c5:8c:4d:4f:19:7a:08:fa:ef:
b9:51:d3:d9:1a:74:d7:e1:85:25:e2:a6:60:0d:f6:
47:07:de:3f:c1:c3:01:3e:0f:73:fa:23:72:6a:4a:
92:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:62:1E:91:45:4E:79:0D:C2:3C:CE:4E:FE:41:8D:6C:9D:4C:0B:53
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/B2IekUVOeQ3CPM5O_kGNbJ1MC1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:a41::-2a0e:97c0:a43:ffff:ffff:ffff:ffff:ffff
2a0e:b107:1788::/48
Signature Algorithm: sha256WithRSAEncryption
65:3e:48:58:e4:9f:34:1e:6e:2c:d2:7a:7d:5c:cb:c1:74:b6:
6e:b9:29:e1:ed:2d:c5:6f:0f:03:25:66:04:6d:5c:89:6b:2e:
be:d2:64:89:4b:85:4a:cd:30:84:3b:21:38:26:dd:8f:f5:59:
92:7f:8d:03:15:37:a9:df:b7:fc:eb:3a:37:b9:56:a2:d6:b5:
67:7b:64:91:5b:ff:91:4b:a2:7a:e2:4b:e0:b2:b7:db:55:0d:
f9:aa:51:87:ef:a4:4d:34:10:8d:65:6c:06:0a:33:21:9b:69:
a3:41:64:7f:b0:75:db:f1:91:b2:a0:7a:62:70:54:a6:c7:56:
85:5f:64:ad:38:81:37:80:de:2a:d9:a2:eb:5e:f2:8c:df:cb:
a8:40:7c:d0:0c:67:8c:8e:83:09:09:35:50:ec:02:35:32:ef:
5f:57:36:b6:16:ce:42:80:de:83:e6:70:1d:4d:a9:a2:e8:14:
9f:e1:41:c1:72:1b:b8:ee:3c:39:50:33:33:df:e6:8e:12:93:
ef:3f:05:8c:11:d0:4c:f6:d6:8f:a7:b2:f6:46:dc:26:3c:9f:
76:51:0e:32:ac:ca:02:62:74:66:bf:92:02:4b:bf:8e:7f:f8:
d2:de:6f:2f:f5:c6:14:76:20:53:04:98:05:73:62:9a:03:7b:
a7:51:e7:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org