Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SMDxsbwHR1_2zGCYsEChI8L0TUA.roa
File: SMDxsbwHR1_2zGCYsEChI8L0TUA.roa (raw, json)
Hash identifier: iafCGslt1yrzdLOGTllSoS+aeJ9a3pDfyCuhE0ppeDw=
Subject key identifier: 48:C0:F1:B1:BC:07:47:5F:F6:CC:60:98:B0:40:A1:23:C2:F4:4D:40
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 141EFE4A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SMDxsbwHR1_2zGCYsEChI8L0TUA.roa
Signing time: Sat 30 Apr 2022 22:51:12 +0000
ROA not before: Sat 30 Apr 2022 22:51:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211659
IP address blocks: 2a10:cc40:100::/44 maxlen: 48
2a10:cc40:110::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337575498 (0x141efe4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 30 22:51:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48c0f1b1bc07475ff6cc6098b040a123c2f44d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0a:1a:27:5e:e9:83:2c:04:4c:f6:53:e9:9e:
75:5c:1a:7c:02:8c:9f:bd:83:05:4b:50:74:55:6e:
85:1c:7c:9a:a6:7e:8a:07:c0:72:af:bb:dd:c2:c5:
2f:75:25:5d:5a:9c:07:5a:6e:ab:90:e3:b4:46:ea:
d1:29:a6:8b:d7:2e:20:6b:9c:06:2f:37:8a:35:b4:
7c:b1:e9:da:09:d3:cd:70:e5:7b:e5:3b:94:7e:65:
b6:29:15:24:ad:99:b3:68:46:72:4e:6b:43:d0:b2:
b4:3f:6e:66:32:ae:7f:d0:d4:96:89:c9:70:8e:1d:
9d:d6:cf:dd:0b:ca:96:e8:e6:59:76:12:77:0c:85:
49:09:68:e7:83:fb:5f:fb:af:00:36:ea:0a:4a:cd:
5c:e3:5f:cc:a6:da:b6:2f:22:b7:ff:17:32:8d:cc:
c6:a5:03:72:06:37:6e:fb:8a:d1:59:22:05:7a:6f:
67:a2:c2:0d:86:0e:db:a8:6c:49:7c:80:d2:4c:f7:
e8:b2:b1:13:92:c1:00:fa:b4:9a:0f:62:9a:52:d8:
5b:21:f8:b4:f7:5c:b5:5f:30:55:92:43:28:60:f8:
94:20:ba:ce:26:a0:5f:f9:46:1e:b3:07:31:19:9c:
b3:91:1b:d5:53:cb:6d:95:17:b9:67:15:ec:13:9a:
de:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C0:F1:B1:BC:07:47:5F:F6:CC:60:98:B0:40:A1:23:C2:F4:4D:40
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SMDxsbwHR1_2zGCYsEChI8L0TUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:100::/43
Signature Algorithm: sha256WithRSAEncryption
8f:85:60:f8:e4:90:0e:a1:58:ea:34:ae:4a:c3:83:e5:2e:ab:
8f:f2:cd:59:d6:c3:b8:b0:1c:de:83:6c:69:8e:35:30:35:4a:
25:a0:51:d1:e4:de:19:37:c3:c1:10:fa:ec:e1:bb:5a:3d:6b:
a2:59:0c:8d:3c:55:6f:15:fa:f6:13:c3:1b:67:3b:39:4f:58:
63:7e:4a:61:bc:85:0c:5b:84:b0:90:46:1c:70:c1:21:fe:a8:
86:63:5c:8f:43:8b:46:fb:02:a2:5a:8a:26:68:72:8f:5d:22:
2f:35:b3:f1:a4:05:b2:4e:ee:00:25:73:09:a8:90:e5:fa:ae:
26:d5:69:7b:b1:6f:e7:30:a0:00:66:ee:0a:4d:ba:bc:b6:d0:
d6:24:0f:ea:ff:29:6d:c8:a7:6f:3d:44:9c:b9:5b:ec:82:b9:
6d:b7:5f:c0:da:64:13:9f:5c:ff:32:0c:b4:9e:ca:bc:1d:c0:
be:c6:55:dc:92:3e:d8:e4:ee:1e:ed:18:f2:e0:af:71:d1:36:
d9:72:fe:3a:82:b2:73:f8:f0:82:67:33:62:0a:f8:b5:2f:a6:
7b:b3:2a:1a:84:28:71:23:c3:b3:5e:47:25:35:f1:51:a1:14:
e7:d3:ad:cd:b9:4e:0e:38:c8:45:27:99:16:cb:30:a2:2d:70:
31:bf:2d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org