Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OQnazv31Ud6MdyiQVu0VqKeryUM.roa
File: OQnazv31Ud6MdyiQVu0VqKeryUM.roa (raw, json)
Hash identifier: dyAvq5rChoyrYO+g4jkNVbduuGVk+WdV/1i9/vz6614=
Subject key identifier: 39:09:DA:CE:FD:F5:51:DE:8C:77:28:90:56:ED:15:A8:A7:AB:C9:43
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 107375C0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OQnazv31Ud6MdyiQVu0VqKeryUM.roa
Signing time: Sat 01 Jan 2022 09:04:41 +0000
ROA not before: Sat 01 Jan 2022 09:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39526
IP address blocks: 2a10:2f01:310::/44 maxlen: 48
2a10:2f01:380::/42 maxlen: 48
2a0e:b102:130::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276002240 (0x107375c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3909dacefdf551de8c77289056ed15a8a7abc943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:66:44:e1:fb:6d:93:5b:19:b1:c3:c5:7e:b8:
6a:eb:a3:b8:be:c5:31:a3:44:04:ce:44:87:70:4f:
83:35:7c:62:b8:e8:9e:f9:d4:bc:64:e8:a4:57:c4:
c9:f3:9a:36:a2:ce:78:02:c2:ec:b9:45:43:0e:05:
db:88:c1:62:63:da:8c:1e:22:c3:be:54:47:3c:ce:
d0:fe:8f:1d:24:9d:72:52:08:72:a1:eb:48:82:12:
70:53:64:4e:cf:64:f1:46:62:60:8a:98:72:60:82:
44:38:aa:5b:d8:d6:9f:fe:fd:85:8c:a3:04:d1:ba:
e2:10:7b:d2:f8:a9:09:de:e5:c6:86:69:a1:f4:b2:
71:58:05:22:23:f5:26:3d:b1:8a:0a:7c:75:e0:48:
9b:1b:2c:6e:07:11:06:9a:41:68:5f:e3:b0:4c:8f:
71:bb:e1:69:de:54:2c:04:16:2c:b9:9b:9c:86:77:
80:7a:74:7d:8b:43:2d:16:e3:97:4d:b4:23:85:6b:
df:7e:07:81:77:9e:db:e8:d5:71:6c:8e:0d:cd:0c:
93:d5:97:17:25:74:e7:6e:dc:44:f4:c9:23:ac:f2:
cd:30:a2:97:84:33:22:76:65:4d:61:3a:5a:64:5c:
c8:4c:8e:2c:13:54:97:37:49:07:fe:3f:cc:11:65:
62:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:09:DA:CE:FD:F5:51:DE:8C:77:28:90:56:ED:15:A8:A7:AB:C9:43
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OQnazv31Ud6MdyiQVu0VqKeryUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b102:130::/44
2a10:2f01:310::/44
2a10:2f01:380::/42
Signature Algorithm: sha256WithRSAEncryption
4a:81:87:bb:c4:1f:91:be:81:ca:db:2d:b2:26:2c:68:e3:bb:
9c:40:25:d1:c0:99:98:66:a2:6a:af:1b:95:a4:63:a3:5b:f3:
a1:8e:91:4b:ff:81:ac:f3:30:bc:06:04:fe:b2:2e:a1:54:d1:
1f:4b:be:7b:d2:49:13:c3:25:49:47:03:b7:10:41:df:41:77:
1d:98:f4:ee:ec:d8:7e:a4:24:23:e3:aa:ee:43:7e:c3:4e:5c:
b7:15:e4:db:7e:11:d2:22:12:9c:55:d3:cf:0e:fb:bd:21:8b:
57:6a:5a:9d:2b:de:ad:bd:be:46:0d:11:97:6f:fe:f8:a0:f5:
21:71:5b:7b:e4:86:22:5b:ba:a8:e3:ba:12:ca:6b:1b:64:97:
09:e4:2c:89:0d:ac:85:16:75:d9:fd:77:98:49:a3:0a:39:a9:
3b:83:17:2b:0e:11:10:1f:d1:2d:74:18:e2:d1:d4:f9:4a:06:
84:6d:7f:3e:79:8f:44:2c:eb:85:2a:9a:4b:54:93:57:f8:33:
0f:cf:fe:82:c6:fd:df:cb:a5:91:e5:d9:bd:d8:4c:57:38:c3:
b3:1f:59:fd:1e:1f:8e:15:4c:ff:5c:f8:81:12:2c:b8:53:ba:
8e:95:c9:09:03:e8:28:70:76:39:7d:40:f3:00:3d:29:45:30:
30:57:d4:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:01 2024 by rpki-client on console-ams.rpki-client.org