Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GnS6k7MFmmdrmBmwTZUdKAHt8Pc.roa
File: GnS6k7MFmmdrmBmwTZUdKAHt8Pc.roa (raw, json)
Hash identifier: Ktrhx3EGmQUxW8noEojrVQnrMzj0esHvIdAT47IFQsU=
Subject key identifier: 1A:74:BA:93:B3:05:9A:67:6B:98:19:B0:4D:95:1D:28:01:ED:F0:F7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 120D028F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GnS6k7MFmmdrmBmwTZUdKAHt8Pc.roa
Signing time: Sun 13 Feb 2022 20:14:35 +0000
ROA not before: Sun 13 Feb 2022 20:14:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209669
IP address blocks: 2a10:cc40:150::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302842511 (0x120d028f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 13 20:14:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a74ba93b3059a676b9819b04d951d2801edf0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:71:81:6e:be:19:08:d2:24:f7:55:6e:39:a1:
59:da:4f:be:c8:b1:9f:0d:dc:77:71:91:00:6b:0c:
5e:45:4b:e5:47:9b:23:89:ec:95:0d:34:ad:7a:bf:
32:bf:76:6f:e8:03:a1:69:89:23:7e:be:d5:bc:0f:
bb:eb:df:0a:da:a4:9e:2a:9d:d5:bd:f1:13:64:23:
ee:74:ee:13:be:c4:8c:64:2d:47:35:f9:00:ae:78:
48:dd:2e:12:9e:d5:e8:d9:ef:7e:f0:05:35:39:65:
e4:e6:b8:25:11:53:72:49:91:cf:10:ea:6d:58:e4:
2c:0e:8f:ff:60:c6:51:79:85:56:84:aa:a0:27:2b:
ab:64:68:88:b0:41:a5:f0:50:44:5b:df:3f:87:2e:
57:99:d1:4c:da:10:94:1c:96:dd:56:4f:f9:20:5f:
1d:58:a5:77:fb:9e:15:15:31:59:c9:6d:f9:e4:66:
97:fd:f5:2b:ea:3e:77:51:76:00:25:2c:b5:21:e8:
08:45:2f:48:05:45:35:02:b8:17:a5:d2:bd:46:48:
d6:4b:a5:08:8a:d5:16:7b:9d:4b:c2:64:7a:28:e1:
d7:24:78:b6:3d:7b:65:b1:11:df:ba:ac:9a:a6:2a:
21:29:14:09:66:80:51:63:10:85:94:c0:45:4f:af:
0c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:74:BA:93:B3:05:9A:67:6B:98:19:B0:4D:95:1D:28:01:ED:F0:F7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GnS6k7MFmmdrmBmwTZUdKAHt8Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:150::/44
Signature Algorithm: sha256WithRSAEncryption
82:60:49:96:4a:61:93:23:f8:1a:29:b8:3a:70:93:6d:26:77:
c9:b6:9b:d0:c0:82:10:36:9e:1f:0e:0b:90:60:68:9b:45:ab:
17:ba:b8:e2:51:12:d9:c4:e1:e9:8a:05:cb:1e:c7:06:5d:b2:
b1:ae:9f:44:ee:46:b8:6b:7a:5f:03:22:8f:5d:ee:24:3d:3c:
51:d9:c8:4d:3e:a4:8b:a3:44:b7:4d:0e:93:3b:b3:ce:8a:5f:
69:62:fa:6f:7a:40:da:9e:67:56:94:4d:c9:e6:0f:99:df:8b:
ae:53:7e:5a:2e:df:58:e3:4c:78:0c:ca:d2:aa:a2:af:9c:2c:
13:9a:11:79:47:0c:19:1c:09:bf:25:3e:6f:a5:9b:84:10:7e:
74:04:db:c1:89:9a:05:c9:12:74:1b:02:35:f4:39:37:ab:3c:
94:52:e6:f3:9f:60:1a:3a:55:ca:7d:93:f9:10:74:ff:65:80:
e6:ae:81:02:f4:b8:56:9e:70:69:20:5f:01:ee:44:ce:e6:df:
6e:18:39:7f:b8:31:cb:7b:b5:e7:33:9e:cb:66:b9:a7:1a:86:
e5:e0:7f:8b:9e:f6:0b:17:7a:77:7a:18:c7:fc:8b:56:41:1d:
78:18:fc:d1:52:02:62:bb:bc:f1:fb:c6:5e:f3:e7:85:c5:aa:
36:7d:ba:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org