Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HTH9YOjInpJRn9uf5gn-XJ5tgNg.roa
File: HTH9YOjInpJRn9uf5gn-XJ5tgNg.roa (raw, json)
Hash identifier: qg1ISFTdF7m6fmm8TTqjq06emvzYqgKML9xORSrKtuM=
Subject key identifier: 1D:31:FD:60:E8:C8:9E:92:51:9F:DB:9F:E6:09:FE:5C:9E:6D:80:D8
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 15286D4A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HTH9YOjInpJRn9uf5gn-XJ5tgNg.roa
Signing time: Wed 15 Jun 2022 04:21:45 +0000
ROA not before: Wed 15 Jun 2022 04:21:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212995
IP address blocks: 2a10:2f01:2a0::/44 maxlen: 48
2a10:cc44:180::/44 maxlen: 48
2a0e:b107:b80::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354970954 (0x15286d4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 15 04:21:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d31fd60e8c89e92519fdb9fe609fe5c9e6d80d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d9:7d:f3:76:0f:a4:f5:ca:b1:b0:c9:5b:3a:
dc:6d:1c:cb:c9:45:b7:42:df:e6:f4:30:ac:ea:cb:
d5:44:4c:36:46:20:4a:6b:54:2f:1f:6e:e0:f8:0d:
0b:60:80:11:fa:9d:f9:b6:33:0c:2a:b3:21:b3:2f:
e7:14:b8:df:3e:41:cd:72:55:00:20:96:4f:0a:e8:
39:eb:5c:50:ba:89:14:c3:6f:37:31:2a:d6:02:bd:
bd:38:27:01:79:d0:ea:73:6b:e6:9b:31:79:ed:42:
8d:ac:2b:ec:dd:a3:18:20:e4:ae:f8:92:b8:c2:20:
8e:6a:4f:6b:6d:8d:8e:56:bd:0b:81:d2:ba:e1:2a:
23:b7:70:c5:be:00:e5:b5:d9:61:8b:16:0f:7e:09:
8c:4b:2a:20:44:d2:e1:34:88:0b:db:6d:cc:c6:36:
44:f1:e5:d5:ee:ea:b3:f7:85:bf:23:62:d0:1e:a9:
fa:ac:b7:81:5b:d5:60:f8:3c:fd:1b:64:c9:1c:ff:
99:cd:0d:b6:41:4c:16:95:32:9a:3f:df:9b:8b:09:
7e:85:6a:09:50:84:da:15:1e:50:ee:cd:1b:04:d5:
f7:c3:56:59:f2:67:a2:05:b6:06:66:4b:50:a8:04:
6a:03:f5:2b:c7:cd:d2:58:f1:a3:03:f9:e2:a7:0c:
90:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:31:FD:60:E8:C8:9E:92:51:9F:DB:9F:E6:09:FE:5C:9E:6D:80:D8
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HTH9YOjInpJRn9uf5gn-XJ5tgNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:b80::/44
2a10:2f01:2a0::/44
2a10:cc44:180::/44
Signature Algorithm: sha256WithRSAEncryption
03:80:fe:b0:51:e4:b3:b3:b8:6e:ce:eb:8f:55:78:c4:8a:71:
19:33:4a:c7:25:25:17:d2:bf:3c:ce:e6:3e:25:d8:62:76:3b:
dd:e5:8b:2f:ec:07:ff:85:40:b9:8a:69:f4:09:fd:1d:bb:eb:
cb:31:80:20:28:87:b2:c5:17:0b:06:87:ed:c4:7b:87:03:b8:
7b:12:53:f9:00:b8:3d:ca:76:4e:e4:b4:33:f8:e1:69:10:f9:
1e:6e:91:66:14:5c:dd:43:de:54:35:33:e3:7d:67:b0:17:5e:
a3:e9:14:9a:94:2e:4b:94:2e:5c:40:7d:27:04:eb:e6:97:ed:
47:29:94:e5:89:ff:6d:12:2d:d5:92:51:cb:d7:e3:99:71:fc:
c3:74:d2:1c:0b:6f:c7:94:d9:a2:f3:c2:72:21:e1:bc:f4:8b:
e0:a9:f1:08:af:49:7d:6a:17:ee:b5:8e:22:e5:77:6c:fe:3b:
ee:c1:fb:b8:dc:b7:00:e6:2f:76:a2:fc:e7:69:47:31:d1:f2:
45:69:fd:58:cd:8c:d0:ec:39:9e:d0:4f:b1:f0:cc:bc:cb:2c:
e2:25:58:19:d6:17:43:6d:a9:0f:36:17:80:c1:ee:f5:68:b9:
b0:3a:e1:05:e8:db:32:23:ac:b7:2c:4d:59:f7:1e:5c:3e:1a:
f8:1e:c4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org