Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DvUYGsZX_1o0MZ5-n7mmeKOmMpY.roa
File: DvUYGsZX_1o0MZ5-n7mmeKOmMpY.roa (raw, json)
Hash identifier: 4ZiDy6XuZ7CYTow/tCXB1PYEkbEjZgMrW7hQBxdRqiM=
Subject key identifier: 0E:F5:18:1A:C6:57:FF:5A:34:31:9E:7E:9F:B9:A6:78:A3:A6:32:96
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10A4C8AA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DvUYGsZX_1o0MZ5-n7mmeKOmMpY.roa
Signing time: Sat 01 Jan 2022 09:05:11 +0000
ROA not before: Sat 01 Jan 2022 09:05:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210354
IP address blocks: 2a0e:97c0:690::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279234730 (0x10a4c8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ef5181ac657ff5a34319e7e9fb9a678a3a63296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7b:7e:cb:e6:0b:7b:18:4d:05:27:9f:21:f9:
e2:7d:33:74:80:b6:1b:6e:ba:df:a8:85:ff:87:ff:
91:ae:6f:a9:a2:0f:f3:8c:b8:48:88:8c:3d:1b:75:
ea:c1:f1:55:c4:b9:e4:0b:0f:42:e4:74:7c:ae:90:
ce:85:69:8e:11:e0:15:88:a8:dd:91:91:33:a7:44:
6a:e7:3c:ed:26:3b:85:37:d3:05:ec:46:71:17:f5:
eb:cf:56:60:70:60:e1:cb:8b:29:57:bd:f7:14:bd:
ff:ce:ee:cb:c1:a6:9d:97:b2:1c:7e:b9:bd:9d:f0:
d4:11:54:5f:38:48:56:78:e9:fa:3a:6c:dc:3b:43:
11:14:6c:e9:ca:ea:b4:0e:39:88:72:0c:46:75:6c:
b4:bd:1d:e8:f5:85:ad:86:d9:d6:09:60:0a:25:d4:
e4:32:3c:99:40:da:7b:79:15:f8:78:b7:0e:38:76:
74:b1:81:81:48:bf:1a:bf:3c:44:5b:61:79:f1:ac:
9e:dd:07:7c:0e:0c:a2:b6:98:52:c3:cb:c2:7c:2f:
32:27:9e:27:61:1e:ba:7a:a9:75:8e:b7:a8:af:3e:
4b:70:95:c5:55:4e:e7:17:04:98:be:70:88:e0:32:
66:6d:aa:33:03:37:03:ec:40:6b:cf:60:17:b0:f8:
64:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F5:18:1A:C6:57:FF:5A:34:31:9E:7E:9F:B9:A6:78:A3:A6:32:96
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DvUYGsZX_1o0MZ5-n7mmeKOmMpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:690::/44
Signature Algorithm: sha256WithRSAEncryption
56:7e:02:9f:0b:1b:04:fb:81:ce:7c:7c:19:8e:f2:53:6e:9a:
03:f0:b6:f5:cb:de:0c:27:f8:5d:e7:64:72:82:7a:c4:60:95:
45:96:18:93:44:81:14:d9:46:e5:7c:96:42:8e:01:fe:b7:09:
8f:36:e2:01:2d:de:34:4f:9a:cb:aa:c3:b2:01:a8:2a:a5:8d:
2a:d7:a6:ca:44:5e:99:31:e5:2f:df:e2:7a:a0:81:ad:bc:69:
7e:a4:a7:72:08:5d:f9:aa:af:99:fc:30:2f:20:65:1f:2c:b6:
38:8a:1b:4d:0d:32:df:2f:55:22:0d:4a:1b:35:00:69:c4:69:
9f:cb:2e:36:c7:3a:32:da:e9:60:c6:b5:d4:08:3a:8a:b3:43:
ac:0c:15:b2:2a:f4:49:a2:f1:ef:72:7b:ce:c4:11:80:41:6d:
25:df:21:dd:4f:99:ec:bd:48:5a:55:fa:cb:bc:86:ce:c0:12:
f0:35:e3:7e:85:0b:86:ec:93:93:d0:d9:cd:e2:91:98:6a:0f:
21:5c:73:ff:ac:ee:34:7a:1c:cd:c3:6d:3e:5e:5d:de:0c:9b:
8a:ee:bf:ba:eb:a5:85:ee:06:ca:a4:6b:02:f2:0b:90:a2:02:
01:fe:02:80:18:07:70:ec:7d:8a:dd:d1:4e:fe:08:b9:9d:62:
e3:dc:c0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org