Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H0Djqrvhm04KEEjxoSkvpkI28yM.roa
File: H0Djqrvhm04KEEjxoSkvpkI28yM.roa (raw, json)
Hash identifier: btqALhvRPOSy+iB6cJ9TeIudoHlCxBQ9rK3kWr8Z0cM=
Subject key identifier: 1F:40:E3:AA:BB:E1:9B:4E:0A:10:48:F1:A1:29:2F:A6:42:36:F3:23
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183D140F05728D868EABD6F973CBC9CC9FC
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H0Djqrvhm04KEEjxoSkvpkI28yM.roa
Signing time: Thu 13 Oct 2022 12:10:37 +0000
ROA not before: Thu 13 Oct 2022 12:10:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202647
IP address blocks: 2a10:2f00:18c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:40:f0:57:28:d8:68:ea:bd:6f:97:3c:bc:9c:c9:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 13 12:10:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f40e3aabbe19b4e0a1048f1a1292fa64236f323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cc:4b:dd:b8:d8:11:f3:36:8e:b2:3a:df:2a:
2d:ac:99:72:84:f3:98:c1:34:dc:32:11:30:6c:44:
6e:72:9d:65:25:26:1f:b7:b2:8f:5c:69:9a:d4:9d:
44:21:25:79:d4:5f:14:1a:4e:38:64:fa:28:1d:ba:
2b:e4:97:eb:3e:8f:32:ea:be:e8:5b:0f:87:82:3b:
80:42:a3:aa:60:d3:4a:00:66:9c:fa:a3:73:03:6d:
64:35:c2:8f:8d:e8:c6:5b:69:68:d9:2c:ed:2f:b8:
4f:dd:b6:36:58:b2:03:91:ac:88:dd:3a:52:59:2f:
e4:10:05:53:76:fd:28:ee:cf:5c:61:7e:dc:66:a2:
0a:f3:52:52:4f:79:b4:02:9b:7e:1f:2d:c1:3a:14:
91:c5:fa:27:7f:59:7d:ca:0d:20:01:6a:f4:b7:14:
6e:24:47:53:45:3c:0e:fc:3a:d0:03:aa:fd:1a:66:
cf:13:20:b7:5e:ac:8a:94:06:2e:10:5e:87:f3:de:
06:f3:9e:4f:33:de:ee:27:ba:33:9f:91:a9:fa:b6:
1b:b8:bd:c3:7f:fb:3c:09:ac:25:95:63:ae:a5:eb:
b1:30:76:38:4f:82:a4:d7:51:57:94:ea:38:3f:eb:
4c:ca:18:ce:de:01:3f:9d:6e:28:c6:39:da:c8:cc:
e6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:40:E3:AA:BB:E1:9B:4E:0A:10:48:F1:A1:29:2F:A6:42:36:F3:23
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H0Djqrvhm04KEEjxoSkvpkI28yM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:18c::/48
Signature Algorithm: sha256WithRSAEncryption
a7:08:7e:e2:5a:97:24:8e:61:99:90:7b:63:1f:21:54:f2:0b:
d3:53:0d:65:80:a0:9b:b5:2a:c2:dd:05:5a:dc:d6:39:ae:a4:
ed:7c:e3:65:f5:21:2f:14:13:8b:56:de:4f:6c:dc:9a:c2:9f:
27:21:77:08:31:f2:2f:c0:b0:97:ca:96:ee:21:cc:78:21:1c:
e6:62:4f:3a:cb:9d:6e:b0:54:97:ab:29:d7:7b:b7:ff:56:94:
19:9b:90:4b:63:88:8f:8a:9a:54:57:b1:6d:f5:0f:f9:1e:77:
33:94:4c:f0:77:1b:54:93:f9:e6:c0:fa:a3:6d:5d:31:da:86:
a4:0c:c5:6c:11:50:07:2c:6e:f9:46:5f:5e:8c:f6:01:b0:34:
3d:1a:8c:44:23:9c:a6:a9:79:dc:94:5a:93:17:51:46:77:d9:
6a:cb:fd:fd:45:dc:04:90:da:b8:72:b4:25:f8:53:b0:d0:41:
1c:be:38:6c:5b:b5:7f:2d:c6:13:60:a1:19:c4:2d:11:47:7c:
97:e4:e4:c3:5e:07:c0:7a:0e:40:fe:ff:dd:24:41:c7:a7:77:
76:22:11:8c:ac:81:86:a1:9e:f1:99:db:e8:46:e0:15:54:77:
18:c1:75:ad:db:ed:32:2c:d1:20:a8:2b:2b:e9:0e:14:52:a1:
60:04:1a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org