Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Q0GHEdGvizZpzsl_DkHWB2D5yuc.roa
File: Q0GHEdGvizZpzsl_DkHWB2D5yuc.roa (raw, json)
Hash identifier: +BKUgR7SHxKiwYM7APGVvBEQSRPqY9zoIaYdHG5mvUg=
Subject key identifier: 43:41:87:11:D1:AF:8B:36:69:CE:C9:7F:0E:41:D6:07:60:F9:CA:E7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 11A61E30
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Q0GHEdGvizZpzsl_DkHWB2D5yuc.roa
Signing time: Sun 30 Jan 2022 19:28:51 +0000
ROA not before: Sun 30 Jan 2022 19:28:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59922
IP address blocks: 2a10:cc44:112::/48 maxlen: 48
2a10:cc44:110::/48 maxlen: 48
2a0e:b107:13de::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 296099376 (0x11a61e30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 30 19:28:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43418711d1af8b3669cec97f0e41d60760f9cae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7f:b5:4e:b1:d5:08:92:e1:28:57:86:0f:2d:
76:98:ec:e2:94:23:24:2e:c6:01:8b:3c:06:be:59:
25:83:03:9b:06:63:4c:3b:31:dd:d6:91:2c:3b:87:
c7:2a:c2:4d:d3:44:44:7c:d7:e4:16:8e:a2:f3:cd:
91:4d:65:70:37:46:00:d1:0e:bf:1a:00:23:67:c0:
e4:2a:8e:23:b8:66:f6:ce:fe:29:93:45:81:9d:19:
1b:d2:96:51:77:c7:68:bc:2d:ad:08:ab:12:8c:86:
4f:a0:cd:42:0b:5c:76:48:6d:60:53:03:b3:3c:0b:
cf:72:b9:07:6b:6d:88:dc:d2:aa:36:4f:d5:c8:53:
0a:82:47:91:7e:ca:15:1d:5b:52:69:e6:5e:90:c0:
64:b5:90:dd:a9:e0:ea:91:c1:32:23:87:b8:38:99:
36:7e:f1:9e:b1:56:e0:97:ba:b5:b7:e1:4a:ec:4e:
37:14:35:76:58:83:af:d3:80:75:0b:77:99:ee:af:
df:8a:44:a3:f4:2e:9b:07:ac:d1:05:67:d1:dc:30:
9a:57:3f:20:c0:39:0f:cc:13:c5:a6:e2:03:e9:c4:
f5:4a:c2:35:b2:01:46:b9:78:b3:5c:51:e7:6e:89:
e0:b9:a0:ac:d5:ea:2c:9b:e7:06:e6:bb:c5:54:0c:
b5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:41:87:11:D1:AF:8B:36:69:CE:C9:7F:0E:41:D6:07:60:F9:CA:E7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Q0GHEdGvizZpzsl_DkHWB2D5yuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:13de::/48
2a10:cc44:110::/48
2a10:cc44:112::/48
Signature Algorithm: sha256WithRSAEncryption
53:5f:88:ab:9b:a4:a5:1f:12:d5:1c:1f:72:e5:b6:9a:00:02:
c2:0d:32:d1:72:e0:65:fb:03:b4:b9:29:7a:e6:44:62:1a:87:
a0:1c:53:2f:ad:cf:91:b1:bf:6d:6a:51:f0:f1:43:25:62:ec:
ae:2b:a5:76:6e:5b:99:00:d7:e3:4a:39:31:ba:6f:c7:d3:aa:
98:dd:fb:59:5a:4b:06:69:5b:6a:24:b6:22:b7:56:8f:21:c4:
4b:89:a1:88:62:14:a6:37:fb:74:b3:3e:5d:26:ff:d0:d0:59:
39:03:11:e5:2a:b4:6e:2c:7c:ed:21:de:59:36:13:58:80:1d:
23:3e:82:bd:2e:c5:0b:74:fd:72:c7:e1:fd:34:cb:f4:5c:c5:
c8:56:b0:12:6c:c4:ee:3b:d6:e3:9d:39:5e:a1:cd:25:af:17:
e7:41:10:c8:bf:9b:a7:7c:2e:a0:d0:07:a1:a2:f1:9b:6e:a2:
e1:8b:4e:cd:49:05:bf:94:6d:d0:9b:61:e5:26:16:96:82:e2:
5c:e0:43:3e:47:7a:92:ec:1d:fb:ee:12:04:62:e3:3f:76:41:
8c:75:c2:f7:04:32:2e:e5:da:4b:1f:97:00:e0:7a:96:79:ff:
29:8e:e1:7d:5c:5c:00:4c:bd:e8:72:bb:61:93:95:fd:bc:8a:
23:1d:93:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org