Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Sq-yDxGByzsCata3b3hDNcHnEeU.roa
File: Sq-yDxGByzsCata3b3hDNcHnEeU.roa (raw, json)
Hash identifier: wPt+l05rALSuTLXADdDakniCWYaj7eXJ9ch9Cs1hPGc=
Subject key identifier: 4A:AF:B2:0F:11:81:CB:3B:02:6A:D6:B7:6F:78:43:35:C1:E7:11:E5
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10E04967
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Sq-yDxGByzsCata3b3hDNcHnEeU.roa
Signing time: Sat 01 Jan 2022 09:05:46 +0000
ROA not before: Sat 01 Jan 2022 09:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212360
IP address blocks: 2a0e:b107:1350::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283134311 (0x10e04967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4aafb20f1181cb3b026ad6b76f784335c1e711e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:33:7a:70:69:9b:ac:c5:07:c6:7c:c3:86:f0:
8b:cf:ca:d4:1d:4f:96:72:6f:66:39:bf:2c:51:30:
ed:cf:5a:f7:dc:63:12:9a:7d:f3:20:fd:5c:c4:13:
43:ad:a4:3d:80:1f:45:62:82:e2:7c:c8:b9:60:f3:
e0:ee:25:b7:0a:7a:df:d3:62:26:01:80:a2:69:67:
5c:32:50:1d:6d:4f:83:54:74:02:df:27:32:89:b7:
d7:56:fd:85:91:5a:97:79:7f:03:e9:4e:a7:8b:dd:
48:46:24:d2:a1:71:60:da:94:3e:35:43:c3:e2:50:
2a:c8:f7:d4:43:3f:3f:1e:0f:88:ab:ba:ed:12:64:
6b:6d:bb:e9:8c:62:9d:a3:f9:da:5b:51:45:cb:e6:
49:80:43:a1:8b:f7:66:52:e7:75:e0:07:1a:99:98:
f4:e6:70:a1:97:dc:f6:31:f3:d7:2a:9c:ba:03:a2:
3a:9a:81:0b:7d:9c:02:ea:87:20:63:40:47:23:d9:
da:a3:fa:05:87:e6:8e:e8:8d:e9:38:41:ee:d8:92:
ec:7a:04:ac:c4:f2:39:b9:1e:dc:9b:3c:25:30:e9:
59:08:35:ee:14:55:9c:cd:96:27:0b:b3:bb:7e:8c:
a9:7f:a9:52:c9:a1:83:91:6d:d2:44:98:2a:18:ed:
06:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AF:B2:0F:11:81:CB:3B:02:6A:D6:B7:6F:78:43:35:C1:E7:11:E5
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Sq-yDxGByzsCata3b3hDNcHnEeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1350::/44
Signature Algorithm: sha256WithRSAEncryption
bd:a7:1e:cb:0a:ba:78:85:c3:c1:6c:b3:b4:85:45:e1:f0:12:
6d:f0:d8:cb:e6:80:ff:05:54:3b:97:ff:8a:ad:af:99:7b:f8:
a1:34:86:dd:01:06:8a:72:23:c4:0f:11:81:ab:61:a8:05:bd:
21:2e:36:ed:fb:05:9d:68:9a:ab:41:af:a2:4a:1e:cc:43:9b:
94:44:ab:3e:4b:ff:da:c4:8e:1e:8b:d7:9f:b0:8e:2a:2e:4f:
25:6e:09:74:a1:4d:ef:46:bb:09:96:80:d0:3f:49:0b:87:f0:
e2:66:0a:55:d1:79:9e:02:c5:70:14:20:b5:5c:27:0b:f5:cd:
8f:84:46:ed:9c:43:11:24:3d:d4:ad:6a:69:73:98:05:94:d7:
9a:6d:8b:75:9a:28:26:51:12:53:84:03:67:fd:d0:3e:92:9a:
97:da:8b:4c:5a:b7:0d:99:96:0f:fa:54:ee:13:9e:4d:04:fe:
6b:ae:5f:40:16:85:d9:25:97:46:bc:eb:c8:81:9c:fa:d3:c9:
73:b0:16:2b:33:79:aa:84:92:ff:fc:99:88:fc:24:03:fc:12:
90:a8:c7:b8:3d:a0:54:8d:0e:bd:13:0e:99:8c:77:cc:d8:ca:
a0:fc:0d:18:03:cd:2f:0b:02:7c:dc:da:7a:76:60:71:a5:d8:
c0:61:d4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:31 2024 by rpki-client on console-fra.rpki-client.org