Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/C8pSMa4D_t7DwEq1ZXJGpGPtSGI.roa
File: C8pSMa4D_t7DwEq1ZXJGpGPtSGI.roa (raw, json)
Hash identifier: Z9xjVZZOddzRj1XqC+fDjLoNgD7bJU3//AablTqkOXU=
Subject key identifier: 0B:CA:52:31:AE:03:FE:DE:C3:C0:4A:B5:65:72:46:A4:63:ED:48:62
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14CEB77B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/C8pSMa4D_t7DwEq1ZXJGpGPtSGI.roa
Signing time: Mon 23 May 2022 18:50:47 +0000
ROA not before: Mon 23 May 2022 18:50:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211571
IP address blocks: 2a10:cc40:190::/44 maxlen: 48
2a10:cc40:190::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349091707 (0x14ceb77b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 23 18:50:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bca5231ae03fedec3c04ab5657246a463ed4862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2f:a6:a1:e7:38:d4:58:de:31:16:68:ea:2b:
7d:90:4d:1e:e3:38:7b:70:93:6c:57:f2:1e:34:ef:
ec:2c:5b:9d:f7:09:da:31:ec:e1:55:81:8f:27:b0:
53:36:0d:d8:65:b9:b0:b1:1a:d2:08:73:4d:b9:fa:
a6:76:32:f2:55:40:14:f0:1d:f5:be:0c:bd:a5:7b:
85:d0:6c:94:f4:1a:14:72:41:3a:60:1b:76:9f:83:
74:0c:91:b1:58:3a:ee:49:de:ee:26:61:b0:32:ad:
7f:3d:ad:95:f7:30:cf:a1:a9:5c:4f:10:37:17:63:
8c:53:56:06:e0:ba:4d:ef:fe:e4:ba:85:b3:97:a4:
93:09:d2:eb:f1:4b:c3:55:a3:56:db:e1:2a:1c:ce:
5c:11:04:5c:e3:f7:75:65:8d:b8:24:3d:c0:86:51:
1e:4d:83:70:71:6d:29:9a:72:e6:54:17:e3:8e:89:
56:bd:77:2e:6f:ed:ce:81:52:56:69:2b:4c:57:6b:
a9:46:e9:6e:37:6d:46:27:47:1d:bd:13:fb:03:80:
de:90:a2:71:61:f3:8f:30:51:b4:58:47:0a:a5:27:
91:2c:48:91:d4:14:4c:90:2e:09:18:fb:3e:7d:fb:
f5:21:0f:ad:3c:5f:11:c5:6a:53:80:0f:76:c6:cd:
96:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CA:52:31:AE:03:FE:DE:C3:C0:4A:B5:65:72:46:A4:63:ED:48:62
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/C8pSMa4D_t7DwEq1ZXJGpGPtSGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:190::/44
Signature Algorithm: sha256WithRSAEncryption
77:0f:60:a3:ce:41:a3:1f:f0:fe:b6:51:cf:05:bc:3b:45:ae:
51:28:33:c0:51:40:0a:1a:22:aa:08:e5:2c:e3:44:8a:b8:fe:
2f:8d:1a:35:0f:b9:53:71:71:d4:29:75:e2:13:6c:5d:d1:d1:
ff:1e:b3:b8:90:2b:e0:a3:ff:60:b3:ca:ac:34:44:46:bf:b9:
c4:89:0f:44:70:ae:9d:cc:4e:36:3f:c7:81:2b:c6:a5:bb:c4:
4c:9e:cd:13:92:ba:43:87:7a:43:ad:a2:26:14:9d:b9:79:cd:
f9:31:4a:03:22:0d:1a:50:a4:0b:31:43:62:1a:3c:ab:f0:bb:
13:e5:7e:b8:98:21:9c:b4:5a:6d:a6:fe:64:77:6a:8d:5c:cf:
d5:d8:ab:56:ca:b0:05:74:36:2f:3a:56:04:30:31:ac:d8:f6:
6e:a9:ad:19:90:eb:e4:3c:2a:51:83:cd:df:8c:78:b2:f5:6a:
01:7c:6e:c6:d2:cb:ac:af:fd:da:2c:a7:e3:90:43:86:41:02:
e7:e4:3c:0c:6d:ce:ed:26:75:3d:a1:57:a0:f6:71:c4:23:c6:
47:a3:00:5f:0b:f2:23:62:d6:d6:d1:55:9c:2f:54:04:7e:7a:
5d:bb:b5:41:a3:fa:1c:10:7c:99:e0:71:5e:89:0c:86:95:25:
99:1a:d4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org