Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/G8sK2OFuwpQqhwTEY-eHFvTc560.roa
File: G8sK2OFuwpQqhwTEY-eHFvTc560.roa (raw, json)
Hash identifier: Uj3j4qrGwm5MW/9aK1LQrW5z3fBgTItSBQOVdeWdvMo=
Subject key identifier: 1B:CB:0A:D8:E1:6E:C2:94:2A:87:04:C4:63:E7:87:16:F4:DC:E7:AD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 136D8F3D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/G8sK2OFuwpQqhwTEY-eHFvTc560.roa
Signing time: Sun 03 Apr 2022 11:32:35 +0000
ROA not before: Sun 03 Apr 2022 11:32:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:b107:e70::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325947197 (0x136d8f3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 3 11:32:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bcb0ad8e16ec2942a8704c463e78716f4dce7ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:56:16:f9:a5:d3:0a:66:74:11:06:ef:13:b5:
2b:11:78:a6:9a:36:1f:d2:3a:43:9a:e7:84:7b:ff:
2b:d0:c1:1e:a2:5d:d8:e7:c8:19:93:3f:7a:d0:c6:
56:13:7d:bc:82:35:83:57:67:e8:e8:99:27:6d:5d:
9a:e6:47:2c:30:a4:9e:c7:fc:5f:30:69:ec:1d:73:
5b:0c:b0:99:c7:75:99:e8:1f:85:64:18:93:86:90:
5a:7d:78:ef:80:6a:2a:1d:4e:9b:91:be:08:d5:96:
39:56:78:4f:b0:c4:c2:fd:79:16:1e:77:71:4e:d9:
4d:01:db:85:70:96:ca:83:d7:cd:b3:1a:f0:27:d2:
2d:57:45:42:7e:b3:34:f4:c5:21:ca:36:2c:67:62:
77:5e:fc:8c:4d:69:64:e4:fe:b8:cb:ef:63:aa:66:
e9:e5:b8:94:0d:71:05:98:c7:3f:d5:b2:e7:16:65:
91:71:ac:cb:a5:31:a2:5a:75:1c:5e:f4:08:d1:3e:
c4:6c:ed:c1:aa:ed:f5:2a:34:76:39:ab:e7:e8:54:
ec:0b:bf:9e:3c:f2:a9:1b:d7:a3:2f:ab:a6:c7:65:
d7:3c:6e:4f:68:99:1d:6e:1c:b0:4c:9c:42:94:b5:
e8:42:5d:80:3e:1f:54:f1:6e:3a:29:99:11:65:32:
82:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CB:0A:D8:E1:6E:C2:94:2A:87:04:C4:63:E7:87:16:F4:DC:E7:AD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/G8sK2OFuwpQqhwTEY-eHFvTc560.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:e70::/48
Signature Algorithm: sha256WithRSAEncryption
48:fe:54:e4:59:b1:3a:59:34:17:26:17:e7:b1:a0:0c:1d:93:
d1:58:b7:5b:80:4e:86:e0:34:e2:75:a1:fe:34:fb:49:96:e1:
e9:91:e4:55:30:99:3a:b3:5c:23:1e:96:d8:88:1e:5d:fc:8f:
ef:c7:5e:23:5d:1d:05:46:d6:ac:8e:1e:40:fc:34:d5:80:0a:
47:f5:8b:f8:fd:c3:f8:40:bb:2d:ea:c8:4f:78:6f:28:49:9d:
52:7a:94:c7:2f:16:be:8f:ae:5e:be:e3:e8:75:a7:18:c5:3b:
9e:1b:43:d9:34:30:08:1b:97:b9:f5:7c:c5:98:5b:0a:0b:c3:
a6:45:a5:e8:15:d7:d4:fb:a3:1c:2b:eb:c6:91:ab:71:64:8b:
cc:74:e5:2a:a5:db:40:9b:ec:c0:f2:86:43:b9:1b:1e:db:77:
a7:63:87:1e:6f:4e:76:7e:40:10:26:f1:0a:ca:ae:5a:d1:92:
a2:ca:b9:c8:52:0c:d2:29:4c:88:3c:0b:ce:e0:59:02:b3:6e:
fe:8a:38:65:12:5f:0e:ef:20:50:7c:b7:67:7c:26:85:ec:28:
8d:82:9d:68:8d:4f:c4:36:e9:9f:ad:77:54:ba:9a:5f:c6:e0:
c0:b0:2d:a1:b5:66:21:a6:68:28:7f:80:50:86:5b:37:c1:76:
22:de:9e:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org