Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FbQOC-enDKaI3BYCtT-U6Cbe_f0.roa
File: FbQOC-enDKaI3BYCtT-U6Cbe_f0.roa (raw, json)
Hash identifier: jx5zlntmrerK531dyc1Tjg/ZYiELmTLiR16jgSf0yr4=
Subject key identifier: 15:B4:0E:0B:E7:A7:0C:A6:88:DC:16:02:B5:3F:94:E8:26:DE:FD:FD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10D282B3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FbQOC-enDKaI3BYCtT-U6Cbe_f0.roa
Signing time: Sat 01 Jan 2022 09:05:39 +0000
ROA not before: Sat 01 Jan 2022 09:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211781
IP address blocks: 2a0e:b107:390::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282231475 (0x10d282b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15b40e0be7a70ca688dc1602b53f94e826defdfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b2:1f:a1:44:07:e1:5c:5b:c4:95:59:b6:e2:
a8:45:d1:78:79:cd:03:72:cf:74:00:48:58:fe:f6:
cd:17:39:67:ec:5c:00:d5:da:29:8c:16:c6:fa:61:
af:54:92:13:ce:cb:82:1b:f0:43:d9:69:90:de:bf:
b0:5c:f4:78:c6:16:79:da:bc:9e:46:c9:11:c8:31:
a7:66:f8:05:fa:3a:86:3f:47:47:fe:fc:b1:a3:ed:
52:bf:58:62:30:73:65:51:4d:01:62:8e:16:68:b3:
b1:96:29:97:80:e6:f1:b6:af:32:6b:3d:75:30:62:
72:ce:17:59:a3:21:a5:86:bf:2d:b7:59:ec:54:32:
a0:3a:fd:2e:45:00:d7:ba:8a:cf:7f:18:4a:46:b2:
d1:51:6e:cf:78:90:93:d7:d6:89:a5:7b:c7:93:b7:
0a:0a:3a:71:53:2e:8b:4d:1c:3a:62:94:f2:70:5f:
1a:63:b5:85:33:86:f7:81:53:1c:79:44:bb:e5:d8:
45:69:9e:1e:fa:59:13:f0:85:5d:98:72:a0:b2:3f:
38:e1:2d:d7:cf:0b:75:d8:f4:de:ea:41:7a:a6:05:
b9:69:d8:47:07:e5:8d:cb:5c:64:a6:6b:6a:03:e6:
a8:96:94:71:8c:b4:05:fb:87:3c:99:d0:1c:68:79:
51:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B4:0E:0B:E7:A7:0C:A6:88:DC:16:02:B5:3F:94:E8:26:DE:FD:FD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FbQOC-enDKaI3BYCtT-U6Cbe_f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:390::/44
Signature Algorithm: sha256WithRSAEncryption
2d:d3:28:c0:54:4d:55:50:c5:c6:b3:3d:56:11:2d:02:03:f7:
72:d0:22:de:8a:01:33:98:c5:a3:3c:ea:9b:07:b7:a4:cc:9a:
aa:b1:90:59:5c:54:63:43:c6:86:6a:f4:77:41:d8:b8:e8:25:
59:6c:52:b0:b2:ed:a8:42:38:d8:a7:12:3e:28:40:e3:2b:46:
c3:b8:38:36:58:1e:11:f5:04:89:2c:7b:8e:80:fc:fd:c2:09:
91:b4:30:c8:0e:81:ac:c2:59:0e:f0:0d:a4:8c:f9:51:32:12:
91:a3:01:0b:d3:62:ad:dc:40:ad:46:5e:0e:07:de:d6:1c:ac:
a6:a2:5a:07:ac:f7:94:57:ba:6d:65:1c:36:6b:ab:25:0f:e3:
15:6a:e6:22:e4:55:79:3f:07:f2:8a:e6:3c:ef:dd:20:e1:a2:
96:c0:24:97:78:03:5f:bf:f0:a2:3f:78:79:1b:51:25:73:a1:
83:49:7f:4e:fe:5e:e2:c3:3f:0a:af:e1:e0:73:19:8c:80:b3:
09:4d:80:5d:89:88:d4:eb:b9:6a:ff:10:b8:b6:61:3a:67:3e:
d3:bf:46:ad:7b:57:24:90:4c:c6:a9:b1:8b:ad:83:28:4d:fe:
4d:ca:e2:b9:9d:0a:de:93:10:7e:2d:a5:48:5a:6b:a3:00:37:
60:8b:f4:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org