Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RskiMj0zD1REwBXjNuBJ_fagklk.roa
File: RskiMj0zD1REwBXjNuBJ_fagklk.roa (raw, json)
Hash identifier: 0hjMSMnohYReMk/bVz8P7XhJBXhEpqpe3Cfb1XFzHJQ=
Subject key identifier: 46:C9:22:32:3D:33:0F:54:44:C0:15:E3:36:E0:49:FD:F6:A0:92:59
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14F90B50
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RskiMj0zD1REwBXjNuBJ_fagklk.roa
Signing time: Fri 03 Jun 2022 15:02:22 +0000
ROA not before: Fri 03 Jun 2022 15:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204778
IP address blocks: 2a0e:97c0:b30::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351865680 (0x14f90b50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 3 15:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46c922323d330f5444c015e336e049fdf6a09259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:00:f3:c8:28:d4:af:b2:43:f5:05:0b:df:7c:
9f:3f:30:4e:da:5f:59:84:ae:38:a0:f5:ef:03:45:
33:7f:ac:78:83:4a:bc:fb:76:07:8c:15:28:e6:a6:
f9:d7:8f:f8:86:2b:e0:db:49:9c:40:34:e7:2c:48:
f4:0f:e3:51:32:88:fe:c5:93:61:a7:6c:97:db:5e:
a5:1a:48:8f:18:e0:f5:04:aa:c5:8a:66:8c:26:02:
83:60:54:99:7a:25:22:1a:e1:24:7b:9d:05:3e:ff:
af:4b:8a:4e:42:83:10:9a:10:eb:d1:b7:6c:39:ac:
93:6c:e3:5d:15:e5:b5:88:2f:0f:39:00:e3:99:ce:
cd:f7:94:16:9d:0d:f4:14:1c:f8:58:50:d2:20:ae:
21:da:e6:a1:73:95:70:05:87:ad:04:64:61:06:07:
f0:c3:58:4e:18:68:40:51:e3:b4:01:5a:70:2f:d4:
4a:ab:24:98:2a:bc:45:16:3e:72:cd:25:ea:73:58:
0d:5e:d2:99:e2:60:f5:9c:d9:3c:e6:44:0d:20:26:
9a:50:cf:0f:42:e6:7d:a0:e3:b3:bf:b0:9c:ef:d6:
82:31:ac:67:3a:11:f1:da:a2:90:e4:4c:c0:5e:bc:
f5:9d:87:aa:41:b4:d3:ea:e1:16:87:c7:07:5d:49:
fa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C9:22:32:3D:33:0F:54:44:C0:15:E3:36:E0:49:FD:F6:A0:92:59
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RskiMj0zD1REwBXjNuBJ_fagklk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:b30::/44
Signature Algorithm: sha256WithRSAEncryption
47:99:76:92:23:94:1e:ee:cf:11:ee:ab:13:04:8e:74:a4:cf:
f2:cb:db:c6:b3:80:11:29:16:61:8b:3b:a9:0f:11:02:3f:42:
49:6c:ad:29:a6:84:43:d8:f7:60:47:81:66:aa:28:06:6c:29:
bc:b2:05:aa:76:4f:8e:7f:0b:69:94:78:35:69:06:70:49:58:
58:10:ea:88:89:12:a3:a1:4c:00:97:21:92:d9:1a:d0:59:49:
a3:de:08:6c:3d:9b:88:e5:bc:f1:73:83:f0:e7:f5:76:07:76:
7e:dc:39:e7:31:60:02:48:5c:12:55:a3:2f:6f:94:bb:61:78:
d8:b3:a6:98:76:d7:78:77:14:34:89:93:ae:be:03:56:e1:29:
d8:e2:7b:89:06:b3:d2:37:f3:1e:10:84:01:0e:39:45:01:8e:
12:b6:f1:43:fc:36:44:7f:8e:36:35:44:4d:94:35:11:52:e7:
63:79:01:43:da:81:95:8a:31:37:39:34:ba:08:66:84:c7:2d:
c7:60:f9:3f:44:8c:4c:02:ed:23:93:99:da:ea:25:9a:cf:10:
28:33:71:02:fe:4d:5b:08:09:f2:bd:da:8d:33:be:c1:cf:9d:
42:5a:0e:85:05:6b:6b:b4:b7:4e:ed:ae:85:9f:32:ef:95:a0:
87:52:88:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org