Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OHEyTxNwwWd1sKRUhMD6Lii0qu8.roa
File: OHEyTxNwwWd1sKRUhMD6Lii0qu8.roa (raw, json)
Hash identifier: K+KXx81mUkFHE0v3Nk1z2eRt6FQUlLyjspgSJrYmRCc=
Subject key identifier: 38:71:32:4F:13:70:C1:67:75:B0:A4:54:84:C0:FA:2E:28:B4:AA:EF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 140EFF22
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OHEyTxNwwWd1sKRUhMD6Lii0qu8.roa
Signing time: Fri 29 Apr 2022 07:20:39 +0000
ROA not before: Fri 29 Apr 2022 07:20:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a10:cc42:1000::/36 maxlen: 48
2a0e:b107:1163::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:b107:5e0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:900::/44 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b102:12f::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336527138 (0x140eff22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 29 07:20:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3871324f1370c16775b0a45484c0fa2e28b4aaef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:af:0d:42:b9:b7:92:78:d9:a8:25:26:02:3c:
f9:0f:31:1d:5c:cf:f7:d2:af:10:44:cb:a1:de:df:
cd:ff:df:6c:a7:4c:5c:22:ae:a0:09:28:98:3c:67:
07:90:d5:16:ca:8c:6f:f8:11:22:4c:78:fa:fb:e2:
01:9b:32:a8:06:23:f4:44:36:ab:28:33:44:e7:47:
06:82:26:5f:c8:8b:ed:0b:23:18:55:bc:9f:20:6f:
94:75:9e:03:3e:10:53:6a:ab:e5:65:9a:04:cb:0a:
e0:81:78:8d:ef:8a:af:5c:43:2b:38:fd:d8:b3:6f:
80:aa:33:2c:a8:3e:ba:33:cd:48:45:87:34:04:97:
5d:7c:03:29:3f:c0:8f:8d:3e:4d:c0:f7:18:61:f3:
7e:5f:ca:85:24:ce:70:40:30:a0:57:9b:e9:20:5c:
e5:2d:06:20:70:47:eb:0b:7b:dc:4a:78:2f:8f:36:
dc:60:f8:82:6e:bc:56:8c:ed:3c:61:94:77:a3:47:
33:3a:a8:e7:90:b8:1a:e2:51:70:37:55:6e:48:55:
f8:69:01:1b:0e:33:f7:a8:4d:cd:c3:b3:aa:f3:06:
5e:50:11:20:4d:8b:47:4a:fe:dd:8f:82:90:d2:24:
39:91:62:2a:60:e1:6d:83:bd:2d:03:9a:14:6e:78:
7b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:71:32:4F:13:70:C1:67:75:B0:A4:54:84:C0:FA:2E:28:B4:AA:EF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OHEyTxNwwWd1sKRUhMD6Lii0qu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:b102:12f::/48
2a0e:b107:5d0::-2a0e:b107:5ef:ffff:ffff:ffff:ffff:ffff
2a0e:b107:900::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1163::/48
2a0e:b107:1870::/48
2a10:cc42:1000::/36
Signature Algorithm: sha256WithRSAEncryption
78:35:31:46:b3:62:7f:fa:12:9e:3f:5e:6f:6e:b6:82:34:16:
38:e4:26:42:4a:08:7b:c0:5f:39:58:a4:22:66:29:ab:8d:0f:
6b:66:21:a3:a8:2a:bb:fd:ed:90:04:52:d1:a6:f9:ce:c9:ed:
81:98:a6:2d:94:9d:d0:9e:9b:fd:08:27:65:46:78:eb:23:0c:
c3:fa:c4:a2:59:a4:5e:9d:ff:07:b0:dc:ce:fa:4c:cc:82:c3:
1b:e1:f6:a2:cb:05:3a:ac:8a:97:80:e6:be:d0:cd:f3:9b:5c:
05:62:31:54:15:d3:1c:7d:bf:c2:58:85:a8:41:cd:a8:13:f8:
ed:53:31:40:80:ab:1e:e1:1d:37:08:5c:06:75:1f:f4:b2:2a:
17:7a:ef:80:a3:9e:34:bb:b4:9c:56:f9:bb:c3:1c:19:ce:93:
29:49:ae:31:2f:92:c8:36:a4:57:54:89:15:64:46:e6:d5:18:
8b:5f:d2:9c:df:cd:df:18:8b:a3:42:ad:de:80:a0:f3:c2:d8:
83:df:fd:1c:99:0e:a4:83:06:e6:ae:6f:94:b2:53:27:d4:99:
49:09:20:f9:91:de:df:99:87:f3:84:93:92:7d:c9:d2:9d:3d:
3d:ba:70:f2:96:4c:3b:3b:a2:ca:54:3f:0b:d5:1a:b4:dc:03:
72:01:be:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org