Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HkiRGRIpw_7byITwCJTAtLbPyOw.roa
File: HkiRGRIpw_7byITwCJTAtLbPyOw.roa (raw, json)
Hash identifier: dopVkLkdlCZj1OB3LTXACfo/KggZnxG3pSHgIQ/nrXw=
Subject key identifier: 1E:48:91:19:12:29:C3:FE:DB:C8:84:F0:08:94:C0:B4:B6:CF:C8:EC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018272A9C217604A14F1A7F0B9AB1F213A15
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HkiRGRIpw_7byITwCJTAtLbPyOw.roa
Signing time: Sat 06 Aug 2022 10:18:24 +0000
ROA not before: Sat 06 Aug 2022 10:18:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210631
IP address blocks: 2a10:cc40:1e0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:72:a9:c2:17:60:4a:14:f1:a7:f0:b9:ab:1f:21:3a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 6 10:18:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e4891191229c3fedbc884f00894c0b4b6cfc8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:68:a8:15:b6:6d:05:b9:9d:81:87:24:1f:50:
1d:fe:08:31:0c:fe:87:27:be:49:fe:d9:03:2f:5b:
e9:63:6e:80:26:79:b6:58:a7:c3:39:2b:75:a2:23:
c2:ae:2c:49:45:80:c4:5e:4c:16:43:2a:a3:52:fb:
8f:2d:8b:7c:04:31:73:81:e2:c0:48:de:83:0c:60:
b6:cb:5c:93:3f:b4:95:01:9a:3a:4c:fe:dc:b8:48:
7b:46:1e:f0:ea:e5:cb:fe:e7:3a:ef:6e:1e:b6:ef:
14:9d:95:58:62:1b:34:73:c1:85:51:48:60:12:9b:
e2:e6:20:92:a9:9d:b6:eb:33:64:0f:34:69:53:5f:
82:55:04:33:82:1d:f1:86:8e:f9:03:f6:98:40:3b:
6c:56:37:c7:a7:da:8c:ab:87:81:4c:63:ee:28:8e:
0c:a0:64:ff:8f:f4:e3:17:fa:0b:aa:b2:53:59:a7:
47:87:d9:89:9d:c0:39:f9:ef:da:fa:09:ac:35:f7:
95:1d:d9:46:bf:73:b1:83:da:96:35:50:c3:84:92:
53:42:31:8f:4c:ab:4b:4e:b9:fd:d7:8c:4b:eb:0a:
9a:a6:e9:4e:22:16:c3:c4:12:8e:83:f3:ea:78:5a:
8a:de:ee:ec:ea:31:af:08:1a:8e:5a:ee:20:d0:f7:
3f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:48:91:19:12:29:C3:FE:DB:C8:84:F0:08:94:C0:B4:B6:CF:C8:EC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HkiRGRIpw_7byITwCJTAtLbPyOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:1e0::/44
Signature Algorithm: sha256WithRSAEncryption
85:54:d4:b2:01:3d:06:27:fc:63:db:64:27:38:88:37:73:d1:
a6:fd:bd:d8:22:94:35:cc:e5:62:07:0d:b6:7e:0d:29:b9:ad:
49:f7:f0:0a:b5:72:6d:7c:96:e8:5d:a7:01:9d:53:a9:af:ac:
0c:84:45:57:95:38:8a:e3:8f:41:6f:7a:1d:c6:81:8a:90:db:
f6:60:fa:d9:07:13:25:08:e7:51:9e:19:3d:d3:06:66:79:25:
a8:88:30:47:56:a8:ec:35:43:0e:73:56:b8:fd:2d:12:29:5e:
a3:4d:ba:8a:37:91:bd:3b:6b:9d:9e:7c:fb:b3:bf:1a:34:b9:
fe:e2:ea:a4:48:67:3e:e0:0e:3a:41:f7:40:ba:64:e0:d8:ab:
7c:8c:d4:1b:0f:cd:e8:25:a6:76:3c:f1:b9:1b:00:14:52:f1:
af:13:c4:92:f1:6a:e2:4e:78:07:ca:76:ee:87:e2:9c:c3:f6:
16:a3:bf:35:c5:c8:f2:f8:e1:fb:74:46:3f:09:c9:35:50:ed:
df:82:0a:c2:a7:33:1b:e3:47:54:9e:20:a6:08:f0:0e:59:43:
9e:1c:f4:47:82:7d:b7:ac:d6:d1:cf:53:d2:af:82:76:bf:83:
74:f7:62:5d:ce:de:5b:22:9c:ba:b0:c3:b6:b4:43:ba:b5:4d:
78:8e:1a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org