Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F1uwN4COGuH6O6M-PtuRIfJKp0A.roa
File: F1uwN4COGuH6O6M-PtuRIfJKp0A.roa (raw, json)
Hash identifier: 40jJhjR0LdJ5gWngtHG4Vslb/u2kgJ7YYEzvfJYpIjE=
Subject key identifier: 17:5B:B0:37:80:8E:1A:E1:FA:3B:A3:3E:3E:DB:91:21:F2:4A:A7:40
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01844736E51400702639F287F3B201DA399C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F1uwN4COGuH6O6M-PtuRIfJKp0A.roa
Signing time: Sat 05 Nov 2022 09:54:50 +0000
ROA not before: Sat 05 Nov 2022 09:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203458
IP address blocks: 2a0e:b107:1c80::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:47:36:e5:14:00:70:26:39:f2:87:f3:b2:01:da:39:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 5 09:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=175bb037808e1ae1fa3ba33e3edb9121f24aa740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4c:bc:40:29:ea:0d:a4:17:47:82:e1:c8:38:
ab:48:c7:a8:fe:db:d1:4f:40:f4:f7:6e:27:e8:d7:
2f:45:51:39:f6:02:38:11:d8:2d:64:ed:b6:2d:93:
51:84:dc:d0:eb:41:82:69:73:61:48:6f:21:4f:f4:
08:79:d7:ff:85:25:04:4c:4b:9b:98:02:36:32:d3:
77:9a:0c:a8:e2:12:0b:5d:10:87:33:7d:df:05:f5:
b4:cd:21:e1:7a:84:c2:1b:67:e3:9f:d5:fa:ba:d3:
d9:3f:42:73:2e:03:8c:6b:ec:01:70:77:5c:c7:21:
eb:49:e5:10:2b:a7:6a:e4:d5:5c:bd:c1:73:66:ca:
ce:00:9d:27:4d:ec:74:51:8d:ee:96:c0:c7:fc:5f:
c3:01:85:46:5b:43:b7:47:ee:82:a0:d8:27:e4:30:
8a:5c:da:cd:f8:5b:7c:68:08:8b:8f:5b:7e:00:3a:
b9:ba:9d:eb:b4:b2:ac:0f:9e:7d:bf:63:64:df:68:
1a:69:0e:1a:53:5c:c1:ed:04:6b:2c:fc:b3:b7:25:
f3:85:37:be:24:60:0b:78:d4:3b:d2:b4:2b:09:5f:
70:5a:ff:6c:d4:c9:dd:1d:3b:ae:e4:1a:ee:5d:d7:
0e:53:85:4e:ad:44:5e:a6:eb:8f:80:ff:16:82:90:
76:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5B:B0:37:80:8E:1A:E1:FA:3B:A3:3E:3E:DB:91:21:F2:4A:A7:40
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F1uwN4COGuH6O6M-PtuRIfJKp0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1c80::/44
Signature Algorithm: sha256WithRSAEncryption
89:a1:eb:7c:0d:b6:97:5b:ea:9b:d1:f2:9d:3c:19:0c:df:45:
b6:32:5d:1f:1f:d1:9c:67:fd:13:a9:10:a2:39:8a:07:34:cd:
11:a0:50:fd:9e:e5:f0:a0:f4:20:bc:60:6e:69:a2:4d:b4:d6:
47:48:05:c1:4d:bc:09:6f:5b:d3:f3:56:d6:1d:1e:fd:97:8a:
6e:c9:e2:5b:7e:1a:84:b6:b1:8d:33:42:92:e1:61:94:45:ee:
f7:60:d4:cf:dd:86:19:84:cb:b5:44:a0:11:b1:7e:10:0d:c9:
92:d8:d4:45:83:0f:fa:6f:cd:db:21:a6:46:a8:ae:b8:c7:27:
b0:d5:b8:16:e4:c4:06:2f:45:c0:68:4f:58:1a:94:8f:d5:e6:
d0:68:b7:c4:d9:a1:56:88:30:bc:48:46:3d:7f:ec:da:28:37:
f0:db:32:4d:93:d3:5c:f5:6d:13:1a:46:3a:68:a3:cd:51:45:
fb:00:35:dc:49:35:e2:c9:4c:aa:8d:e2:25:c8:12:2c:81:68:
55:fd:f3:46:8b:02:65:27:83:6f:db:73:33:34:cc:c7:e5:03:
25:8f:48:5c:27:db:c6:c6:99:cb:39:31:fb:ec:3c:84:6c:88:
e8:ab:55:2e:7a:23:31:60:f5:4a:11:73:6a:0a:06:d0:a7:a4:
02:cd:11:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org