Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/G-QAgDO0SlZNOQ3t34YuChGslkQ.roa
File: G-QAgDO0SlZNOQ3t34YuChGslkQ.roa (raw, json)
Hash identifier: r8XQelhyOeKIEYTPdaw9YK3iWmhPqm2Zq4zXcAOiQho=
Subject key identifier: 1B:E4:00:80:33:B4:4A:56:4D:39:0D:ED:DF:86:2E:0A:11:AC:96:44
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1355B553
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/G-QAgDO0SlZNOQ3t34YuChGslkQ.roa
Signing time: Wed 30 Mar 2022 09:26:39 +0000
ROA not before: Wed 30 Mar 2022 09:26:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209105
IP address blocks: 2a10:2f00:17f::/48 maxlen: 48
2a0e:b102:170::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 324384083 (0x1355b553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 30 09:26:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1be4008033b44a564d390deddf862e0a11ac9644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d8:99:5d:9e:79:61:de:0e:1a:65:29:13:65:
a8:28:8d:82:ec:4a:5f:49:99:b7:1e:59:55:f7:56:
1e:d9:e7:db:21:b0:d2:36:a6:6f:9e:f7:ee:b1:a0:
2b:ec:64:5c:f9:fa:26:1f:14:4a:63:94:4f:7e:21:
c8:ef:b0:3c:0b:36:ed:90:87:b1:f2:92:03:6c:3f:
3e:03:aa:02:0f:0c:ed:3a:21:7f:49:44:36:01:51:
6c:10:2a:bf:69:91:b9:0f:71:fe:69:08:06:55:63:
1f:0b:6f:33:bb:ff:af:74:a4:39:31:77:4d:2e:85:
31:a8:d3:21:f2:cb:06:c4:3c:21:5a:4b:e0:8a:f6:
5d:b3:0f:66:e6:e9:44:c8:a4:7f:87:c1:f3:4f:f1:
d7:ba:2f:da:9f:39:72:4a:4e:f0:88:68:da:c6:e8:
03:e4:d1:e7:ed:b9:ac:7a:3c:c1:2b:04:a4:cc:86:
9d:28:56:63:f3:65:20:8b:fa:2e:19:9a:97:9e:4a:
36:88:e8:ab:b3:d4:34:3b:d5:ed:ce:ad:3d:24:27:
d0:ce:6e:1c:20:0e:21:1b:0e:bd:4a:8a:d5:f2:15:
7f:22:68:32:ee:9c:7c:b4:ed:65:05:f0:df:fb:0c:
ee:a0:6f:b9:97:2a:39:cb:d2:36:08:89:45:d6:23:
a9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E4:00:80:33:B4:4A:56:4D:39:0D:ED:DF:86:2E:0A:11:AC:96:44
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/G-QAgDO0SlZNOQ3t34YuChGslkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b102:170::/44
2a10:2f00:17f::/48
Signature Algorithm: sha256WithRSAEncryption
7c:b6:8c:d8:f6:af:f8:6e:fc:e3:cc:83:f4:bf:a8:0d:8a:b5:
aa:2e:8f:a0:04:b7:f0:88:6c:e3:9d:c2:f6:a5:c2:1f:3e:1f:
37:40:75:fa:bc:6b:25:cd:11:6d:f6:4e:65:44:2d:5a:ec:f2:
8f:2b:3a:43:ed:58:ab:74:d6:cc:e1:88:4d:2d:1c:34:ef:5a:
46:fb:3c:1d:96:66:24:ff:cf:81:c6:48:24:86:e8:e1:6b:a2:
43:f4:8c:b2:cc:fc:76:62:dc:93:77:a9:9a:8e:df:72:a0:d8:
fb:a7:07:34:9d:b6:9f:f2:71:b8:32:d3:6e:aa:d3:3d:68:67:
93:c3:51:1e:ac:f8:92:34:d7:aa:95:75:cc:e9:be:c2:2e:8f:
0b:cf:1f:99:f8:09:96:dd:82:57:c0:4f:e4:de:86:1a:30:fa:
42:ef:13:de:6c:b9:7e:12:90:4b:1b:58:b9:1d:23:41:9e:5e:
b8:22:64:f4:d6:58:56:21:20:3e:f1:25:a2:5e:95:9a:87:0d:
a0:b4:cf:e7:be:e9:69:06:16:80:89:eb:21:73:d0:b0:6c:82:
5d:c6:41:a7:89:38:08:1a:05:3f:2a:e4:b4:75:ee:fc:1a:b3:
41:f4:62:13:62:17:78:55:a4:11:65:9e:fd:7e:0c:24:9c:9b:
71:26:89:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org