Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KycGDabmbITT1AYi_akzd1tkmUQ.roa
File: KycGDabmbITT1AYi_akzd1tkmUQ.roa (raw, json)
Hash identifier: ++GJiaDD89bNufVKbrsO9uUy1OSkiVPPG2WWcx9jaTo=
Subject key identifier: 2B:27:06:0D:A6:E6:6C:84:D3:D4:06:22:FD:A9:33:77:5B:64:99:44
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1075CCA4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KycGDabmbITT1AYi_akzd1tkmUQ.roa
Signing time: Sat 01 Jan 2022 09:04:42 +0000
ROA not before: Sat 01 Jan 2022 09:04:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44024
IP address blocks: 2a10:2f01:330::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276155556 (0x1075cca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b27060da6e66c84d3d40622fda933775b649944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0e:6e:36:9b:38:21:e0:30:28:07:0e:b8:29:
cb:5b:ef:0f:08:86:a9:de:83:cd:a9:cd:4e:17:36:
00:c4:44:e4:c5:a5:be:f1:6c:a0:42:f9:d9:e9:61:
95:dc:63:0f:27:a6:b7:55:15:c4:94:18:8d:69:f3:
d3:29:1f:d6:9a:6c:c2:56:a2:17:e5:77:de:b2:44:
58:ef:8b:43:ed:f5:fc:f1:f7:97:25:fc:06:ad:a4:
2a:5b:a9:e6:bf:2e:4d:18:b0:46:ff:3f:08:b8:81:
55:55:24:55:39:97:f7:58:12:97:2f:b2:ec:e3:04:
8a:83:ff:8e:78:fe:fc:51:83:c5:f8:40:0b:e2:a3:
bd:59:b5:a9:08:7b:77:59:95:6d:25:f4:54:70:61:
26:d5:ff:05:3f:33:99:7d:99:a4:48:05:21:75:66:
3a:d3:7c:24:ed:aa:4d:86:80:31:25:da:c1:32:01:
82:92:47:f0:7e:ab:10:33:3a:c0:dd:1e:f1:68:43:
47:d2:22:7f:2c:5e:83:09:87:1e:79:a0:55:8f:37:
6b:a6:76:42:0a:c6:2e:5f:60:43:2d:0b:19:48:10:
87:54:37:8b:af:ce:d0:4d:2d:e2:ce:48:15:f7:a4:
d5:ca:ab:4d:31:d1:9b:3b:59:1b:73:37:19:80:9b:
82:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:27:06:0D:A6:E6:6C:84:D3:D4:06:22:FD:A9:33:77:5B:64:99:44
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KycGDabmbITT1AYi_akzd1tkmUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f01:330::/44
Signature Algorithm: sha256WithRSAEncryption
a6:b2:11:6c:be:df:ce:f5:77:4e:05:19:b1:1a:ce:53:5b:f7:
59:b4:f7:19:61:91:93:c4:eb:47:54:2d:c0:59:db:9a:5e:58:
7c:c5:3a:1d:b7:8a:93:4f:bd:0b:87:3a:fe:91:dc:dd:a4:0c:
9c:49:78:38:87:57:2a:39:39:c4:de:e1:b0:aa:c6:73:4c:4d:
cb:bc:a0:2b:8e:75:1c:6d:18:a2:db:45:0e:d8:0a:db:b5:54:
56:87:d0:11:50:53:ab:91:3f:b1:d5:1b:17:79:c0:d9:b8:16:
aa:fa:ce:25:1b:0c:05:9e:aa:19:f2:09:21:5a:a7:d1:b8:fe:
7c:e7:bd:31:04:9a:95:9b:95:94:7f:3b:13:65:94:dd:20:c4:
cd:21:02:32:5e:aa:03:54:c8:8b:b0:34:54:ca:2b:ed:92:a8:
57:b3:42:c0:9e:17:c8:f1:81:50:3f:4e:40:89:df:59:31:f5:
22:9f:9e:51:12:0b:60:f9:6a:3d:11:22:0a:10:11:fb:32:53:
1d:fa:92:2b:ca:da:73:9c:7f:d3:ba:17:59:e7:41:0e:80:37:
e8:5d:9f:c1:21:26:d3:1d:2e:6d:fd:19:ba:57:f9:0e:95:1b:
cc:f3:cc:d0:af:0d:11:5d:66:d9:26:73:2c:14:76:18:a5:fe:
68:0e:fc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org