Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DBcS6IEcMsR13eHkkmTMeQI3xLY.roa
File: DBcS6IEcMsR13eHkkmTMeQI3xLY.roa (raw, json)
Hash identifier: HTOrLotEJ2LsE2eEM38cRJUVCm5SatY5DYGmfKqz7rs=
Subject key identifier: 0C:17:12:E8:81:1C:32:C4:75:DD:E1:E4:92:64:CC:79:02:37:C4:B6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12275143
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DBcS6IEcMsR13eHkkmTMeQI3xLY.roa
Signing time: Thu 17 Feb 2022 21:03:38 +0000
ROA not before: Thu 17 Feb 2022 21:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210888
IP address blocks: 2a10:2f00:173::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304566595 (0x12275143)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 17 21:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c1712e8811c32c475dde1e49264cc790237c4b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:f8:46:98:96:c2:af:be:ca:f5:b7:27:1b:
6b:49:de:4f:8b:11:5d:3f:96:a5:8a:b1:6c:e7:9b:
f5:12:51:b8:e4:07:4a:e3:7b:b3:5f:99:dc:dc:11:
8a:24:c1:29:7d:ed:43:fb:d5:b3:f6:f5:5f:5a:6e:
a6:ad:1b:e0:2b:74:29:87:18:bc:4a:66:91:5c:7f:
32:c4:0b:ca:df:63:94:60:4c:dd:49:51:5b:4b:37:
79:07:a7:9b:a4:e5:16:66:35:a2:14:90:0b:28:fd:
1a:90:8d:4e:dc:0d:60:6a:bf:74:92:4d:ad:5b:ed:
cf:19:f4:03:70:0c:ff:e8:40:d1:e0:e8:c6:f0:28:
f4:77:6b:ce:b8:ae:42:6e:af:ee:25:f4:ff:e8:08:
38:19:81:ae:59:d2:29:49:6e:ff:79:e4:80:ee:25:
78:81:28:46:48:be:fa:f0:e4:64:90:1a:e5:f4:82:
f5:95:3e:20:e7:4f:00:60:78:33:30:3c:8e:fa:f3:
51:02:e1:a6:77:85:54:c6:b7:28:70:74:e8:fc:0c:
24:ff:96:6f:e5:4c:6e:d7:03:0d:a2:3d:b0:25:a2:
88:80:ff:9c:b9:9e:e1:fd:bb:a5:10:3f:38:01:29:
53:b1:17:36:84:aa:93:02:b9:d8:40:80:5e:21:c8:
be:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:17:12:E8:81:1C:32:C4:75:DD:E1:E4:92:64:CC:79:02:37:C4:B6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DBcS6IEcMsR13eHkkmTMeQI3xLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:173::/48
Signature Algorithm: sha256WithRSAEncryption
16:0e:d9:25:0e:da:ce:76:7f:a6:f7:ad:1e:6b:d6:7b:be:58:
f8:e0:e7:a5:89:07:9e:38:ca:4a:61:2f:a1:1a:75:a6:da:a4:
d6:07:ef:5a:87:72:85:51:17:a1:7c:50:92:c2:6a:6c:b0:bd:
52:95:7e:d4:c8:ac:9a:a0:aa:7b:9d:3d:73:5f:71:26:13:e8:
b6:d6:c2:0e:bf:4d:a8:f5:bc:a1:92:0a:03:3f:1c:15:d6:b8:
09:eb:6f:4f:66:53:a0:c7:d4:c5:9e:00:1b:3c:54:bf:47:09:
6f:2a:11:bd:e6:24:cd:01:c8:76:a6:c3:10:17:49:de:5e:39:
63:b8:ad:e7:ec:7a:f5:25:af:3a:5e:9b:d8:fc:09:a5:76:14:
43:c6:35:ef:88:1a:0a:39:54:70:db:d8:01:4e:b8:26:84:39:
87:c2:77:1b:e8:fd:da:ce:91:2e:75:b3:a9:d7:4a:91:7f:dd:
12:51:e0:e1:f1:3e:ba:ab:e6:80:3f:0e:6a:38:2d:d9:f9:7d:
c4:35:c9:53:40:d5:d1:23:96:98:f4:a5:e2:36:f5:96:b9:e7:
01:5b:46:84:84:80:18:b6:1f:d1:02:a0:13:33:05:fd:f5:52:
cc:91:89:36:91:1f:f6:d3:52:a4:c9:ae:46:5e:f7:07:8e:10:
b1:46:9e:97
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEidRQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDIx
NzIxMDMzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGMxNzEyZTg4MTFj
MzJjNDc1ZGRlMWU0OTI2NGNjNzkwMjM3YzRiNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM0A+EaYlsKvvsr1tycba0neT4sRXT+WpYqxbOeb9RJRuOQH
SuN7s1+Z3NwRiiTBKX3tQ/vVs/b1X1pupq0b4Ct0KYcYvEpmkVx/MsQLyt9jlGBM
3UlRW0s3eQenm6TlFmY1ohSQCyj9GpCNTtwNYGq/dJJNrVvtzxn0A3AM/+hA0eDo
xvAo9HdrzriuQm6v7iX0/+gIOBmBrlnSKUlu/3nkgO4leIEoRki++vDkZJAa5fSC
9ZU+IOdPAGB4MzA8jvrzUQLhpneFVMa3KHB06PwMJP+Wb+VMbtcDDaI9sCWiiID/
nLme4f27pRA/OAEpU7EXNoSqkwK52ECAXiHIvpMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQMFxLogRwyxHXd4eSSZMx5AjfEtjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L0RCY1M2SUVjTXNSMTNlSGtrbVRNZVFJM3hMWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoQLwABczANBgkqhkiG9w0BAQsF
AAOCAQEAFg7ZJQ7aznZ/pvetHmvWe75Y+ODnpYkHnjjKSmEvoRp1ptqk1gfvWody
hVEXoXxQksJqbLC9UpV+1MismqCqe509c19xJhPottbCDr9NqPW8oZIKAz8cFda4
CetvT2ZToMfUxZ4AGzxUv0cJbyoRveYkzQHIdqbDEBdJ3l45Y7it5+x69SWvOl6b
2PwJpXYUQ8Y174gaCjlUcNvYAU64JoQ5h8J3G+j92s6RLnWzqddKkX/dElHg4fE+
uqvmgD8Oajgt2fl9xDXJU0DV0SOWmPSl4jb1lrnnAVtGhISAGLYf0QKgEzMF/fVS
zJGJNpEf9tNSpMmuRl73B44QsUaelw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org