Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/LAN2wDaCWNzdodFO9UbXy1dALSQ.roa
File: LAN2wDaCWNzdodFO9UbXy1dALSQ.roa (raw, json)
Hash identifier: Qo73MhaXNmO0mSWG6+tDMtOq3PleGCtVHgTtuOu2J8M=
Subject key identifier: 2C:03:76:C0:36:82:58:DC:DD:A1:D1:4E:F5:46:D7:CB:57:40:2D:24
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1071019F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/LAN2wDaCWNzdodFO9UbXy1dALSQ.roa
Signing time: Sat 01 Jan 2022 09:04:39 +0000
ROA not before: Sat 01 Jan 2022 09:04:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38173
IP address blocks: 2a0e:b107:1520::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275841439 (0x1071019f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c0376c0368258dcdda1d14ef546d7cb57402d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e8:06:3e:51:55:1a:87:22:08:87:a0:c5:52:
dc:e8:cb:3f:4e:46:f5:e7:59:c8:48:e7:51:23:ff:
a5:81:c0:5b:5d:fa:5d:fe:9c:6c:81:da:4d:d1:36:
ec:27:57:fb:7c:bc:91:d5:ca:9d:0d:32:5c:f7:83:
47:8d:05:2d:24:79:73:0b:bc:67:08:66:8a:c0:96:
41:d8:6b:87:6e:89:6f:df:39:9d:9f:c8:29:a4:ea:
d5:09:93:71:68:a9:9c:0a:15:2c:0b:b5:ea:d2:aa:
04:94:b8:2a:ab:20:f6:27:08:f4:07:d9:42:4f:63:
d3:a6:28:fd:2d:0a:af:2a:c0:25:a6:97:7b:a1:06:
82:a3:39:b0:63:aa:30:d3:6a:3f:76:6b:2c:bf:4b:
64:ac:2d:c8:42:f4:5e:c5:25:38:bc:9b:d6:0c:23:
11:f2:cb:7b:1e:38:32:65:b2:29:29:fb:2d:9d:38:
f6:97:bf:dc:af:f8:cb:f6:18:9a:9e:07:a2:25:66:
33:08:f5:c6:27:ed:da:d7:b6:fb:e2:34:aa:9b:9e:
43:d8:62:7c:41:6c:1f:54:f7:23:54:11:9d:7d:cf:
c5:97:95:34:17:32:80:4b:60:29:86:80:73:d2:7b:
78:86:52:3a:b8:92:58:69:ca:4f:a4:c5:de:19:50:
dd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:03:76:C0:36:82:58:DC:DD:A1:D1:4E:F5:46:D7:CB:57:40:2D:24
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/LAN2wDaCWNzdodFO9UbXy1dALSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1520::/48
Signature Algorithm: sha256WithRSAEncryption
2e:3e:4c:7a:6c:e2:2a:aa:21:ab:3b:99:7e:55:ff:4e:8f:76:
f8:c7:92:8a:3d:6c:7a:5c:4f:14:4e:8f:bd:a2:91:8f:05:c3:
2a:fa:35:35:d8:15:ff:0e:73:91:2d:95:6a:88:59:44:84:d0:
0b:db:c4:d7:72:1d:79:2f:6c:cb:39:90:cb:ee:cd:2a:c5:f9:
37:f4:19:a1:26:09:bf:4f:19:ab:2d:a0:3b:a1:ed:16:8e:df:
d0:db:ec:e4:31:5d:b9:3c:00:7a:c0:1b:5c:82:8a:04:d2:33:
ca:3e:28:18:33:79:60:fe:08:c5:0a:07:71:67:6b:38:7e:b1:
58:b8:19:da:1f:0c:ee:1c:0a:0b:2b:53:a2:6f:91:8a:ef:41:
f3:74:e5:15:69:ae:8e:0d:64:47:5a:2e:29:fd:5d:53:ef:1f:
40:dd:b8:86:ad:27:43:d3:d9:2a:c4:7a:e9:37:5a:bb:ea:e1:
75:39:c5:86:03:e8:2b:f2:81:3e:74:b2:ed:b6:0f:f3:11:db:
75:bd:e1:20:03:e8:26:91:6a:1d:99:41:2a:9a:dd:8e:21:09:
0e:84:b0:2e:c9:97:bb:a5:f1:c1:43:7b:7d:b1:1e:e7:88:dd:
7e:45:7a:6b:1e:95:c3:d0:8f:39:29:69:97:9a:07:45:4a:dd:
9e:7a:03:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org