Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DObcLvnBWLBes0R2a-wpVBSR4lU.roa
File: DObcLvnBWLBes0R2a-wpVBSR4lU.roa (raw, json)
Hash identifier: ttfI3rzBLZzIIsXHRixz0lnlFN4rBmQWYECcgcVcccg=
Subject key identifier: 0C:E6:DC:2E:F9:C1:58:B0:5E:B3:44:76:6B:EC:29:54:14:91:E2:55
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182F7CED47DC8B2DA7E45478B09C273AA16
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DObcLvnBWLBes0R2a-wpVBSR4lU.roa
Signing time: Thu 01 Sep 2022 06:48:23 +0000
ROA not before: Thu 01 Sep 2022 06:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211405
IP address blocks: 2a0e:b107:1c10::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f7:ce:d4:7d:c8:b2:da:7e:45:47:8b:09:c2:73:aa:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 1 06:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ce6dc2ef9c158b05eb344766bec29541491e255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:87:f9:bd:5e:aa:ed:cc:b8:30:a5:7c:6f:87:
35:c8:17:7f:6b:b9:2b:ee:31:cd:23:3d:b8:7f:df:
da:77:15:2e:b0:ea:d3:39:89:a3:2e:80:99:c3:9b:
fa:45:ed:ba:45:71:b0:9f:5f:c4:e2:7b:bc:0e:1b:
99:e1:5f:e5:13:5b:aa:2b:08:61:b8:74:a7:0c:e4:
1f:5d:c8:55:92:e7:c9:c6:02:57:88:21:65:75:52:
15:d7:6c:79:8d:d4:27:3b:82:b0:fe:48:98:4d:21:
21:bd:38:51:45:b5:41:58:d1:49:a9:ad:53:d3:35:
f7:80:0a:4a:ae:95:7b:3b:f8:a6:43:8f:55:9e:4b:
7c:ed:d2:bf:42:6e:a4:19:78:79:be:4b:c3:9a:fa:
32:76:e7:8b:dc:19:88:73:23:32:06:b4:80:08:94:
b3:8e:c5:0c:67:14:32:18:c8:35:ca:96:91:dc:df:
7d:b9:f2:89:81:c3:1d:49:53:7a:fc:03:96:72:34:
6e:31:49:40:29:36:bf:86:01:fe:4b:8a:b5:87:38:
b4:89:4b:cc:5f:79:80:93:ef:71:57:a0:a0:b6:fc:
bb:f0:f6:6a:ae:2c:88:2b:64:d2:e2:83:7c:b3:3e:
38:aa:ff:60:a6:79:b4:33:4c:8b:7c:ea:21:68:eb:
7b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E6:DC:2E:F9:C1:58:B0:5E:B3:44:76:6B:EC:29:54:14:91:E2:55
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DObcLvnBWLBes0R2a-wpVBSR4lU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1c10::/44
Signature Algorithm: sha256WithRSAEncryption
96:fc:4c:be:c7:52:a7:b8:91:c8:47:5e:f1:38:53:c1:34:2b:
ec:4d:c2:9c:e2:9b:ec:5b:9b:99:bb:74:0c:2f:95:90:ce:7e:
8c:91:f8:1e:f6:9e:a8:99:fa:17:01:6c:60:ad:ef:6b:7c:44:
0c:70:90:4a:3e:cf:0e:4b:68:2f:8f:8c:8d:c4:4d:52:c3:98:
8f:9b:2e:02:33:a1:9f:60:db:cb:a4:9d:26:f5:65:8c:ea:ad:
f8:a1:28:8e:50:dc:da:5d:0e:72:82:84:78:2c:88:3b:74:75:
f0:8b:95:cc:b9:5e:45:19:5f:ed:57:84:83:7d:a9:ff:36:ef:
c9:a4:7c:39:be:72:7b:17:82:be:11:6a:d4:11:77:4f:7a:11:
b7:6c:22:a1:12:c5:90:f2:e3:d5:2d:29:75:1c:7f:dc:39:1b:
ad:0d:96:cc:a1:42:47:15:b6:74:c5:07:a6:22:35:0f:e9:30:
17:b7:ad:6b:53:e7:74:73:3e:c9:ec:f2:38:d4:a3:e2:57:1a:
6c:b5:78:ff:95:5e:ce:0b:3a:07:04:90:69:ea:6c:d8:c1:75:
cb:32:a1:f5:c6:30:1a:2e:f7:43:8a:d5:ef:66:a0:7f:cf:67:
3a:c6:ad:a5:a0:83:fd:16:43:3f:d4:e8:50:23:94:90:ca:67:
a9:c0:f9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org