Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JaWIoXrHQO3Hjz0Ua5bac2gKNWg.roa
File: JaWIoXrHQO3Hjz0Ua5bac2gKNWg.roa (raw, json)
Hash identifier: IfHMv7lr/6S1VtyumAeHYUl04ap2q6atkwQoR9jfwjg=
Subject key identifier: 25:A5:88:A1:7A:C7:40:ED:C7:8F:3D:14:6B:96:DA:73:68:0A:35:68
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 106EB8C2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JaWIoXrHQO3Hjz0Ua5bac2gKNWg.roa
Signing time: Sat 01 Jan 2022 09:04:37 +0000
ROA not before: Sat 01 Jan 2022 09:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25198
IP address blocks: 2a0e:97c0:300::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275691714 (0x106eb8c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25a588a17ac740edc78f3d146b96da73680a3568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:41:19:b9:8d:d0:ee:4c:c2:f7:18:1d:0f:aa:
67:84:34:b3:ed:71:27:7a:04:8b:1d:88:5f:30:2a:
99:eb:86:a2:bd:92:92:da:6e:b6:2a:4d:22:84:be:
58:37:e0:df:40:0e:92:14:7a:8a:4f:aa:88:5f:db:
81:95:88:d4:0c:18:2c:7b:c5:3c:ca:8a:02:25:60:
dc:d2:74:7e:b7:4a:2b:ce:9c:2b:9e:46:97:86:8c:
24:f4:3c:01:c3:3e:9e:c0:4a:86:5c:d7:eb:45:38:
7c:b2:1d:1d:89:8b:f9:c4:2c:bf:44:d8:03:96:f2:
17:2f:b7:38:86:f8:b3:c7:9f:24:38:75:d7:17:a1:
f5:57:a6:16:2a:e1:48:23:d5:c9:a6:5d:2c:06:ec:
f7:00:a0:3a:de:d1:05:cf:e4:68:07:41:90:8e:2e:
e5:17:3d:e3:f4:57:d1:f0:21:f5:b2:b8:5e:c9:27:
27:66:ce:42:72:df:a5:08:fa:6a:c2:45:8b:48:3b:
fd:f2:74:d0:bc:5f:7a:d6:ef:c8:84:ce:14:16:46:
6b:e1:e1:18:f4:49:6b:c2:59:15:7a:da:aa:ca:66:
09:d0:57:69:bb:64:41:58:f8:12:de:02:d5:75:b2:
be:b9:a9:ac:0b:f3:d3:84:a6:76:f5:a2:38:77:d9:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A5:88:A1:7A:C7:40:ED:C7:8F:3D:14:6B:96:DA:73:68:0A:35:68
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JaWIoXrHQO3Hjz0Ua5bac2gKNWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:300::/44
Signature Algorithm: sha256WithRSAEncryption
0d:d3:ab:75:c9:d6:fa:a8:ea:93:54:92:63:6e:93:29:8d:ca:
c5:59:38:39:24:d4:45:ae:0c:38:7a:00:ef:13:9a:fd:15:0b:
7d:ba:82:e5:8a:32:39:cd:e9:eb:eb:34:8b:8d:b4:bc:71:f2:
8a:4e:ce:af:3d:98:6c:76:4d:b3:ee:8d:ee:b7:85:ad:00:dc:
08:95:18:bf:95:e7:8c:96:f8:b1:7a:51:72:22:48:95:cb:97:
26:91:08:6c:3f:ac:b2:87:c2:78:02:62:33:c9:96:0d:d0:fe:
9e:a4:ff:d6:59:18:14:58:3d:80:77:b2:6e:b5:bb:0c:65:44:
5d:26:15:d0:4a:e8:17:e7:8d:c3:14:de:83:31:1f:20:38:56:
4e:f5:28:1a:f9:7d:56:4e:00:7a:7e:cf:db:ab:32:c8:f8:df:
3e:39:b7:32:bc:98:cd:2b:6b:59:be:f5:8c:e1:84:86:0b:74:
28:7c:1f:bd:3b:41:35:1f:93:ef:9b:b7:a2:3b:d9:ae:e6:44:
b3:4c:64:38:5f:ac:b8:b6:05:05:04:b2:50:5b:61:c9:57:e7:
b4:e1:6d:28:8b:be:13:d0:70:8d:b8:e6:90:d1:e5:17:15:86:
f0:5d:36:f4:c0:cd:83:0a:47:85:fd:d1:46:e8:e3:11:b2:ec:
e5:18:0e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org