Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GCgbR5CT4T0A9J-Dh8CnzYTyi0g.roa
File: GCgbR5CT4T0A9J-Dh8CnzYTyi0g.roa (raw, json)
Hash identifier: vfKcnG02Uz//xbJkuL9tohouMOaMJPNUfrMig0VQma4=
Subject key identifier: 18:28:1B:47:90:93:E1:3D:00:F4:9F:83:87:C0:A7:CD:84:F2:8B:48
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10B11DE4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GCgbR5CT4T0A9J-Dh8CnzYTyi0g.roa
Signing time: Sat 01 Jan 2022 09:05:18 +0000
ROA not before: Sat 01 Jan 2022 09:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210662
IP address blocks: 2a0e:97c0:580::/44 maxlen: 48
2a10:cc47:1000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280042980 (0x10b11de4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18281b479093e13d00f49f8387c0a7cd84f28b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ce:5f:52:9f:a4:16:9f:38:e6:6b:81:76:47:
ea:6f:76:b5:90:af:30:3f:d9:f5:84:23:f1:c8:35:
fa:23:a2:ad:c2:b7:d9:4d:88:13:fc:54:bb:a3:5d:
89:1f:ec:ce:e2:70:08:1c:66:1a:65:03:bf:87:f6:
52:81:38:90:af:ce:43:05:c2:4b:58:30:8b:3a:fc:
a5:39:84:ff:15:30:fb:48:8c:b6:07:fa:cb:a5:83:
80:d1:97:65:54:de:41:2b:eb:a8:ab:39:d8:9b:9a:
f3:00:fd:ea:6f:6b:b3:7e:19:8a:6c:3d:33:bc:b6:
7b:cb:78:4c:04:3c:a1:df:9f:f2:2a:9d:b7:54:02:
71:e6:94:0d:4f:4f:74:41:0a:20:06:8a:aa:47:d3:
f4:32:21:a3:d6:f7:fb:30:96:c8:73:34:2c:19:12:
36:e4:18:c2:95:48:ad:3e:98:b4:cc:89:96:bb:6b:
3e:db:95:fe:f6:47:03:72:4b:b2:36:b8:00:f9:25:
2e:84:6f:b5:f5:a1:96:d5:70:28:e6:e7:90:cc:dd:
48:73:5c:61:9f:57:20:6a:0f:5a:7f:e2:c0:d7:8d:
f0:51:1b:3e:78:9e:37:f0:bd:1e:ac:31:de:1e:75:
1a:09:31:e9:39:7c:f4:cb:b7:78:ab:75:f2:e6:b3:
8b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:28:1B:47:90:93:E1:3D:00:F4:9F:83:87:C0:A7:CD:84:F2:8B:48
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GCgbR5CT4T0A9J-Dh8CnzYTyi0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:580::/44
2a10:cc47:1000::/36
Signature Algorithm: sha256WithRSAEncryption
92:54:7f:93:24:d9:d5:7d:9e:b5:e3:65:c2:67:d0:61:96:ac:
7f:11:2b:91:b6:d0:8b:fb:14:ba:10:79:57:cf:f4:a4:08:1e:
2b:b4:ab:d0:b0:f9:6c:12:2f:c7:3b:cc:ae:d3:c9:ec:b6:2c:
ca:45:5d:94:59:3f:e7:6c:25:03:4a:74:50:be:5a:a1:9c:25:
9f:af:4b:9b:5d:ee:a8:a4:61:8c:a0:f1:b9:f7:ae:ab:bd:20:
d5:76:3f:1f:44:32:a0:2f:f8:39:8b:28:89:18:9a:6a:51:c6:
b2:5a:ca:08:fb:16:94:01:03:34:9b:f6:47:42:91:83:55:dc:
d8:53:39:c8:57:69:fe:27:24:7b:64:d7:2f:69:91:e2:c7:dd:
4d:8b:92:1a:4e:e3:7d:a1:76:a2:b2:02:aa:31:21:d8:f1:48:
20:c6:71:ed:8c:82:49:80:b6:4e:69:46:ac:e9:a2:50:09:06:
ae:39:58:7d:e7:0c:5c:fe:57:b5:98:cd:35:9b:b1:17:87:5d:
d2:92:9d:5a:23:93:d5:95:39:b9:54:eb:a7:e6:de:41:ea:28:
9f:ac:48:2a:fb:09:8f:4a:c6:ae:cc:79:3e:b1:53:e7:bf:34:
7c:fb:4f:d8:5c:3a:e6:45:3f:31:9d:69:59:5d:35:f5:7c:fc:
8e:f4:d0:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org