Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GwqLrjY8GKdyotbufBi-q4LMkQU.roa
File: GwqLrjY8GKdyotbufBi-q4LMkQU.roa (raw, json)
Hash identifier: UJxQpNQpzrtPF2FlLR9IPj9G/ddd7o/14uPjlX9PnHs=
Subject key identifier: 1B:0A:8B:AE:36:3C:18:A7:72:A2:D6:EE:7C:18:BE:AB:82:CC:91:05
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01827D104F72C753A221688B6F6E7F02BCB1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GwqLrjY8GKdyotbufBi-q4LMkQU.roa
Signing time: Mon 08 Aug 2022 10:46:37 +0000
ROA not before: Mon 08 Aug 2022 10:46:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147041
IP address blocks: 2a10:cc44:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7d:10:4f:72:c7:53:a2:21:68:8b:6f:6e:7f:02:bc:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 8 10:46:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b0a8bae363c18a772a2d6ee7c18beab82cc9105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6d:f9:17:33:53:0c:67:c3:12:e7:0e:1b:1f:
d8:26:ec:6b:46:6a:c9:91:0c:7a:5e:97:dc:c6:b3:
56:f3:48:20:79:ba:26:61:4f:ac:af:de:9a:5e:ba:
9b:9a:cc:dc:26:1c:40:87:2e:86:59:d0:6e:f5:9f:
a0:64:54:73:06:40:e4:07:ad:32:2a:18:89:9e:71:
10:51:90:a5:a5:4d:2e:f5:72:e6:97:f6:d7:43:3c:
56:31:f4:fa:a0:ce:ab:76:f3:50:8a:5a:db:09:5d:
5f:fc:f0:76:0d:fc:ab:80:ac:a9:96:2f:65:a3:1f:
3f:d5:c2:a0:e0:e3:5d:d2:ea:2a:13:76:10:35:92:
4a:63:99:f0:07:7b:d8:aa:62:c6:3c:b7:89:17:e7:
77:f6:cd:ca:db:83:ca:10:73:05:44:f3:76:c7:1d:
18:f7:0a:4c:23:df:06:3d:55:72:63:94:aa:b8:dc:
1f:dd:80:ee:31:cc:f1:18:d0:c9:79:3a:36:8b:cc:
44:46:51:a1:eb:bf:ec:92:b9:86:e1:ff:33:c7:33:
46:d7:18:90:aa:3c:f0:06:f5:92:8a:ee:39:23:f5:
32:29:ec:a3:bf:b3:b7:af:37:e9:a6:2d:f3:5b:3c:
6b:c3:e9:ca:84:d9:eb:11:e0:34:16:ba:05:d1:d5:
3f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:0A:8B:AE:36:3C:18:A7:72:A2:D6:EE:7C:18:BE:AB:82:CC:91:05
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GwqLrjY8GKdyotbufBi-q4LMkQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc44:100::/44
Signature Algorithm: sha256WithRSAEncryption
86:7e:b4:e7:4d:c2:5e:18:39:fd:db:2a:17:6f:4b:e2:8b:c7:
f5:54:df:83:56:5a:13:91:47:f2:c0:e0:af:4e:53:1e:10:9c:
eb:1b:53:1b:37:04:af:7b:b2:c4:7b:33:ee:36:05:6b:3f:2c:
c8:60:44:f7:5c:09:f6:ac:a5:d5:bd:be:c6:41:59:e3:18:d7:
ec:46:34:32:9b:a2:15:4b:d8:b5:f2:6a:b8:f0:0f:41:8e:e3:
ee:2a:ab:13:90:81:ad:b6:cd:43:e3:bd:4c:ef:0b:06:2d:1b:
5c:cf:45:a9:ab:05:b7:12:f9:8d:31:26:4b:c5:52:79:10:3c:
c9:1a:97:42:39:63:6f:03:3e:67:a7:c3:cd:21:1f:ad:e9:e3:
25:d2:08:cd:fd:07:c9:73:f1:55:bb:a1:de:97:5d:d0:fd:6b:
aa:23:2d:32:2f:ec:8b:2b:af:33:65:4d:87:ab:e9:15:c6:c4:
8a:a6:e6:99:9a:04:96:76:63:b4:fa:70:89:26:99:19:2b:ff:
96:85:69:af:32:06:b5:8b:99:87:b6:d5:54:d4:42:e4:db:c3:
77:97:73:2f:86:e2:f2:3a:08:94:e6:e7:55:d1:79:a4:2b:49:
99:71:1b:2d:bb:25:75:76:75:ef:8a:7e:cb:11:77:27:34:42:
3a:81:50:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:59 2024 by rpki-client on console-ams.rpki-client.org