Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/LOXssIDZmi7HrUoQrWHXlf9aVYA.roa
File: LOXssIDZmi7HrUoQrWHXlf9aVYA.roa (raw, json)
Hash identifier: w8lu2Lz7cK0OTU5OTIIuAkbYqVDyvLMPnzHCNY6MCLE=
Subject key identifier: 2C:E5:EC:B0:80:D9:9A:2E:C7:AD:4A:10:AD:61:D7:95:FF:5A:55:80
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0181D2DF3142C0CE04AB112DB0715E80231F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/LOXssIDZmi7HrUoQrWHXlf9aVYA.roa
Signing time: Wed 06 Jul 2022 09:37:31 +0000
ROA not before: Wed 06 Jul 2022 09:37:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a10:2f00:173::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:df:31:42:c0:ce:04:ab:11:2d:b0:71:5e:80:23:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 6 09:37:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ce5ecb080d99a2ec7ad4a10ad61d795ff5a5580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5c:1c:89:cd:08:fd:19:ac:9e:18:3a:22:78:
85:d4:fd:e8:47:80:7e:e4:3e:52:b5:15:a8:4e:6d:
4a:40:b7:1f:c1:ea:31:4a:33:c0:b9:1e:47:bc:8b:
88:15:79:1a:06:3f:4e:ad:e4:2a:79:17:34:68:65:
5e:d0:fb:30:43:dd:b9:25:c5:dc:4b:2d:6d:10:c7:
f9:ab:e0:64:79:80:8f:73:fe:9d:ce:f8:ef:94:5b:
85:9e:9b:99:bf:d2:48:44:1f:9a:a8:34:db:a0:22:
5e:e5:40:45:34:29:d7:90:f4:67:da:bf:86:1c:3c:
3b:8f:a0:df:6f:58:4a:fd:de:c0:18:23:d2:be:82:
97:ad:fb:ae:55:b9:64:49:a4:2a:72:42:c6:94:d9:
10:43:36:b2:72:6e:9b:75:46:a0:7f:15:aa:31:11:
06:0a:3d:cb:eb:25:53:20:92:7a:6b:72:69:88:9f:
5f:78:6c:6f:01:f7:d3:a6:05:a3:03:f7:0f:f7:43:
03:5d:70:75:69:3d:e6:32:c6:97:4b:c5:aa:6b:bb:
09:bb:e6:df:fc:d3:38:2b:8d:70:6a:0f:6e:2b:60:
73:aa:b8:ea:38:c3:58:b6:d5:c7:7b:2e:85:ad:82:
f8:55:7a:c0:01:e5:21:2b:71:65:89:dc:ad:34:42:
57:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E5:EC:B0:80:D9:9A:2E:C7:AD:4A:10:AD:61:D7:95:FF:5A:55:80
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/LOXssIDZmi7HrUoQrWHXlf9aVYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:173::/48
Signature Algorithm: sha256WithRSAEncryption
2f:3e:e8:57:5b:1b:d3:15:50:39:35:9f:01:00:a6:8f:c4:f2:
73:2f:7a:80:fc:dd:d7:73:8b:a3:e0:84:6f:9e:b1:4b:6c:f2:
97:69:22:cb:86:ee:ec:70:58:23:fe:76:11:91:aa:93:35:ae:
6d:f2:5a:b2:9a:f5:9b:f8:af:ae:ec:9c:fb:71:fd:3c:26:40:
67:fc:f5:bc:ae:e1:85:ae:b0:12:2c:27:4f:ab:3d:22:76:2a:
62:f6:a7:2a:63:d5:8b:91:9b:fb:60:2a:64:51:f8:2c:cf:4f:
2f:47:b9:0a:76:9a:bd:0e:ff:ba:87:2d:66:5f:eb:43:7a:1a:
a5:d5:43:ea:2e:7a:38:6a:66:37:5b:0d:70:8f:9b:43:dc:1d:
72:16:9f:2e:d0:45:05:78:6d:e1:9b:63:ef:50:cc:7b:cd:91:
cc:a3:18:94:cc:a7:04:58:2e:6d:29:a0:aa:34:80:aa:ce:a6:
22:cb:a0:93:f3:d1:d6:63:96:78:c2:9d:f2:85:14:4c:4b:9e:
30:25:5c:f9:e4:77:4f:41:19:ca:62:ab:49:e2:2b:f6:7e:4b:
6b:1d:d1:96:11:3f:bc:91:51:8a:f8:fb:8e:9a:8d:a9:7b:eb:
fb:b3:29:13:67:57:51:20:56:32:da:1a:88:f2:5a:7a:d1:49:
59:c7:4b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:58 2023 by rpki-client on console-ams.rpki-client.org