Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Kntox54A4SRjbD0ATOib9fGK6sI.roa
File: Kntox54A4SRjbD0ATOib9fGK6sI.roa (raw, json)
Hash identifier: AVA1ynCXwnWWx7f5JsBSsll7iUDw/Do4Su4GSp581go=
Subject key identifier: 2A:7B:68:C7:9E:00:E1:24:63:6C:3D:00:4C:E8:9B:F5:F1:8A:EA:C2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 142C430E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Kntox54A4SRjbD0ATOib9fGK6sI.roa
Signing time: Mon 02 May 2022 02:08:11 +0000
ROA not before: Mon 02 May 2022 02:08:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210320
IP address blocks: 2a0e:b107:18c2::/48 maxlen: 48
2a0e:b107:18c1::/48 maxlen: 48
2a0e:b107:18c3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338445070 (0x142c430e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 2 02:08:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a7b68c79e00e124636c3d004ce89bf5f18aeac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e2:7e:bd:92:ea:63:36:05:ac:9d:53:0d:db:
85:69:1d:cb:66:52:eb:fe:29:85:78:7e:fe:f4:c6:
28:55:5d:45:bb:1f:5f:73:8d:6d:87:57:db:bd:7f:
47:9f:f7:d0:88:e2:e2:04:96:5e:49:43:5c:6c:f0:
90:6b:1a:2f:b2:75:79:55:fd:9c:c8:90:bf:56:13:
4a:26:75:76:4e:1b:ca:1a:28:4c:29:4d:65:51:30:
5c:44:fa:6c:40:90:9a:58:ad:90:d4:bd:d9:19:6f:
8e:d7:d7:00:2e:7d:a9:f1:89:67:c5:a6:a6:a6:2b:
0e:7e:84:90:2d:c6:07:aa:c1:57:92:2a:72:99:6d:
2f:ab:cb:bd:cb:ac:93:4e:79:01:43:71:1e:ce:68:
f9:7b:9e:79:74:ee:68:3a:10:13:56:b7:79:e4:a6:
6f:2d:eb:c4:f0:6c:0b:dc:3e:37:ff:52:5f:56:a1:
e1:ef:f9:64:e0:49:5c:7b:6d:d7:7d:93:87:86:2c:
e5:48:d2:b1:2f:37:89:a2:98:05:92:3f:21:43:66:
f2:c3:df:8d:84:7f:dd:4f:0f:3f:6c:3b:be:7b:f8:
8d:80:62:b8:14:8f:61:56:42:52:37:f1:56:bf:48:
53:30:06:ed:01:ab:16:97:93:f9:ac:36:4e:51:d0:
0f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:7B:68:C7:9E:00:E1:24:63:6C:3D:00:4C:E8:9B:F5:F1:8A:EA:C2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Kntox54A4SRjbD0ATOib9fGK6sI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:18c1::-2a0e:b107:18c3:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a0:1e:7f:04:47:c5:d0:b7:da:a4:9c:66:8c:f0:30:76:08:79:
84:d6:a7:b9:4c:f4:d5:39:a5:d8:0e:ff:82:a9:d5:6c:33:f0:
d9:ed:f1:cf:be:58:75:4e:87:65:cb:b2:d4:36:40:69:e0:4b:
c6:a8:00:98:f4:d5:7c:aa:c0:54:66:3e:6e:c7:47:0b:52:21:
38:f4:e0:9d:a4:bf:9f:3f:f4:7c:9d:c9:f0:6a:6e:55:56:fa:
90:35:22:1a:98:67:b8:c8:f9:71:4d:6d:d6:fa:bb:6d:a3:9c:
cc:2a:ab:10:a1:3f:92:50:28:0b:d2:88:a6:94:54:8d:63:6e:
03:49:84:4a:e5:09:34:3f:6f:c6:ac:c1:79:e9:aa:ac:27:df:
04:dd:ea:ac:a0:ed:f6:26:79:d9:b7:f9:bd:c9:c5:ea:b9:4e:
4e:6f:12:cb:7e:0b:fe:3d:96:38:a8:2c:2a:a2:54:30:2e:89:
0e:51:bd:ae:81:f6:e2:6f:d5:24:07:be:43:0a:7f:d3:39:e7:
7d:cc:a7:e6:f1:e8:0a:ec:33:f0:c7:06:ef:33:c8:a2:d4:a1:
1a:bf:a1:23:1b:33:82:b9:de:14:54:fc:d7:36:97:cd:b9:bb:
dc:90:9d:01:5a:54:22:57:cc:b4:d0:17:8e:1f:78:e9:8e:70:
22:91:7e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:58 2023 by rpki-client on console-ams.rpki-client.org