Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/L9w5MAexKy7ykTqK4f3e40tANlw.roa
File: L9w5MAexKy7ykTqK4f3e40tANlw.roa (raw, json)
Hash identifier: pR9Ka1kRWVFkkaYjSsEhgq3qQzaOEU39NGt8gJOXym4=
Subject key identifier: 2F:DC:39:30:07:B1:2B:2E:F2:91:3A:8A:E1:FD:DE:E3:4B:40:36:5C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10B5CC2D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/L9w5MAexKy7ykTqK4f3e40tANlw.roa
Signing time: Sat 01 Jan 2022 09:05:21 +0000
ROA not before: Sat 01 Jan 2022 09:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210842
IP address blocks: 2a0e:b107:1600::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280349741 (0x10b5cc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fdc393007b12b2ef2913a8ae1fddee34b40365c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c6:59:3b:15:81:e9:ae:4c:b4:31:c4:0b:c2:
ef:dd:2f:df:86:f1:6c:26:8b:34:32:68:89:8f:78:
45:01:4d:8a:f7:f3:22:5a:b7:d5:84:d8:bf:ec:89:
c1:94:08:7c:60:93:9d:6a:64:11:26:c2:3b:fb:de:
85:24:d8:54:18:10:7c:29:d7:a9:c9:3a:82:89:77:
32:cd:5a:f8:a4:b1:79:ac:e5:7e:98:bc:29:14:63:
14:ea:ae:18:31:c2:8f:c2:2f:8c:d5:4b:7d:ee:53:
21:dc:b2:10:9b:98:79:1f:d7:1e:4c:4e:00:39:65:
61:62:0e:5a:d6:84:8d:78:80:dd:6d:ff:61:01:ee:
12:47:af:89:0a:0d:72:13:77:48:db:c7:02:d0:49:
16:2e:77:e1:69:b0:22:da:3c:39:4f:e8:78:a4:5b:
ad:fc:01:64:0b:5b:e5:2c:a1:b4:72:d1:31:c7:15:
82:a0:24:73:b5:a8:f2:81:ab:b9:05:8b:a6:7e:6a:
79:a0:40:6c:3e:e1:df:d6:bd:8e:d7:fe:bc:c2:a9:
85:37:75:7c:c1:ea:23:04:5e:90:77:06:99:00:fe:
67:71:a3:8f:83:6a:74:dd:21:a8:98:4d:a4:60:1c:
ba:33:e8:cb:a5:ca:c3:b0:63:b5:43:a1:b9:26:b3:
07:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:DC:39:30:07:B1:2B:2E:F2:91:3A:8A:E1:FD:DE:E3:4B:40:36:5C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/L9w5MAexKy7ykTqK4f3e40tANlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1600::/44
Signature Algorithm: sha256WithRSAEncryption
96:29:b6:e7:9f:cb:c2:cd:2d:3e:0d:58:dc:6d:2e:be:a5:28:
bb:36:70:c4:82:35:01:57:7c:18:d7:84:45:7f:ff:eb:70:2c:
72:9b:b7:92:1a:b8:ae:30:90:97:18:09:1b:8a:41:c4:dc:42:
64:29:a3:11:aa:bc:6c:b7:ba:33:d9:34:13:1f:04:59:6a:82:
bf:60:82:59:9b:85:76:2e:79:3f:48:ba:dc:9f:ab:e4:2b:64:
fc:9b:be:58:f6:b0:aa:f2:60:8e:63:f0:f2:ee:d0:32:bd:0f:
c0:0f:d4:d1:20:fe:5f:f8:52:0c:8d:2b:2e:26:5c:c1:ce:8a:
df:0e:cc:67:6a:c1:dd:51:59:ff:36:9f:2a:28:e8:92:08:c9:
89:8a:b6:4b:9a:25:ff:03:94:dd:98:eb:29:9d:70:13:43:92:
a4:5e:d2:4e:3e:21:78:fd:ed:16:bd:c1:5b:03:20:6b:8e:06:
92:f5:d2:07:03:be:bf:63:fa:0e:4a:30:43:06:c6:2d:0e:12:
54:ee:de:3f:55:07:8a:8f:b4:09:11:2f:b0:30:45:9b:08:49:
dc:01:c8:2f:a0:1a:0b:05:a5:aa:c7:cb:0e:1d:f9:95:b1:76:
82:43:15:3b:86:bd:af:df:ed:ea:d3:a0:19:af:22:39:1b:a6:
fa:b1:f4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org