Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P_GsE9ZL3Wf7nwJ39AQM2hZQ2Vo.roa
File: P_GsE9ZL3Wf7nwJ39AQM2hZQ2Vo.roa (raw, json)
Hash identifier: Hk1Jt7PhRa/q/P8Q55rVgpNU/nXOE9QVZzZrNZ0yT00=
Subject key identifier: 3F:F1:AC:13:D6:4B:DD:67:FB:9F:02:77:F4:04:0C:DA:16:50:D9:5A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182CAD0793AFF49D4564BD004944C2B74F4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P_GsE9ZL3Wf7nwJ39AQM2hZQ2Vo.roa
Signing time: Tue 23 Aug 2022 13:07:16 +0000
ROA not before: Tue 23 Aug 2022 13:07:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 2a0e:97c0:3e1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ca:d0:79:3a:ff:49:d4:56:4b:d0:04:94:4c:2b:74:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 23 13:07:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ff1ac13d64bdd67fb9f0277f4040cda1650d95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:52:23:b7:97:46:d6:4a:c6:4a:69:c8:a7:
eb:dc:e5:b0:76:c9:21:e8:56:66:d9:98:38:cc:20:
3f:76:3f:95:03:b2:e9:49:eb:e3:f0:9b:57:67:dd:
b0:35:88:87:4f:fa:1c:1d:61:1c:45:b6:ca:99:8d:
b6:ff:5d:e3:e6:db:f8:a1:04:3f:f2:29:1b:26:83:
f2:3d:6d:36:47:bf:6a:a3:9b:cb:6a:26:0b:7c:8f:
28:16:ff:f3:68:94:40:13:1d:81:16:b3:ea:e2:3f:
70:92:15:25:5a:70:33:3a:50:f2:2a:9d:dd:0b:e2:
c6:5d:36:3e:f3:7d:d1:74:f1:d8:dd:99:d0:4b:2f:
31:f7:f1:2e:40:ae:7e:6e:02:d0:96:cd:d2:37:fc:
d2:05:9a:96:75:18:d0:6a:6c:9b:dc:2b:0f:db:26:
c1:56:50:b5:93:26:05:ef:77:42:59:8f:64:13:15:
ba:c7:ae:b8:dd:50:14:e9:8c:90:1e:09:f0:34:ba:
63:e9:73:10:b8:a4:6d:49:93:19:93:06:34:80:a1:
60:2a:8d:9a:e0:0c:71:eb:d6:a1:88:97:5a:57:2a:
70:07:48:9b:2e:ab:4c:e3:18:8d:62:74:f0:58:8b:
ca:e1:2a:52:76:24:3a:92:ac:60:4d:33:b3:39:1f:
cf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F1:AC:13:D6:4B:DD:67:FB:9F:02:77:F4:04:0C:DA:16:50:D9:5A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P_GsE9ZL3Wf7nwJ39AQM2hZQ2Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:3e1::/48
Signature Algorithm: sha256WithRSAEncryption
01:4a:49:a7:26:26:d9:69:3c:47:90:ec:a8:b4:d5:97:e5:85:
cc:8f:6e:8a:54:9f:ca:b4:26:c7:e5:42:fa:33:4c:a8:5b:ab:
94:5b:5c:0a:47:72:8b:9f:88:d1:94:46:3d:b6:2e:0e:bf:04:
8e:86:3b:1b:29:00:c1:52:7c:8e:25:df:49:69:72:40:1f:41:
11:6e:87:e1:8a:8d:26:68:62:1d:6c:db:de:76:c8:e3:34:fd:
26:10:6b:e3:1b:d4:60:64:4c:0e:88:c7:3f:4e:f1:12:61:31:
65:c5:8e:90:0b:23:d5:08:7c:d1:74:3f:f1:b5:50:9c:e4:e7:
98:2d:04:43:15:27:89:f3:46:e1:54:c6:a0:70:b9:2b:08:d5:
e7:a9:d6:20:fa:62:d9:86:2f:54:63:f8:c3:da:b4:6b:25:f1:
17:ad:cf:01:25:9e:46:c3:3f:6e:db:36:02:63:40:fe:e4:39:
3a:ee:c6:fa:db:ff:35:d9:5a:eb:34:cf:c0:54:f7:de:bd:ec:
cd:82:c2:14:90:4c:dd:b2:8a:7c:95:34:ac:69:cf:06:9e:58:
a3:43:9b:ef:db:6c:1d:de:49:d9:c0:ff:63:93:6f:a1:3f:43:
ef:a1:a1:21:06:63:9a:43:b5:99:3f:e5:80:a0:f9:11:97:4e:
0b:c2:b1:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org