Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SrtAOdz4kZbhcZiNh_LSYcv_zzU.roa
File: SrtAOdz4kZbhcZiNh_LSYcv_zzU.roa (raw, json)
Hash identifier: xP0jbp/zvfJysSQpiV7gKPnwoE15KVwWONNiuGDKyXc=
Subject key identifier: 4A:BB:40:39:DC:F8:91:96:E1:71:98:8D:87:F2:D2:61:CB:FF:CF:35
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10A9FE03
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SrtAOdz4kZbhcZiNh_LSYcv_zzU.roa
Signing time: Sat 01 Jan 2022 09:05:15 +0000
ROA not before: Sat 01 Jan 2022 09:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210537
IP address blocks: 2a0e:97c0:600::/44 maxlen: 48
2a0e:b107:17c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279576067 (0x10a9fe03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4abb4039dcf89196e171988d87f2d261cbffcf35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:cb:40:35:d9:e0:a1:2d:2f:fb:0a:0d:e6:ba:
c1:ee:af:46:e3:ae:a4:23:d4:0d:44:cc:f2:40:66:
f3:be:93:b7:97:c4:22:f3:f0:d4:67:9f:4a:17:e3:
f7:7d:b4:27:bd:56:85:d2:68:0f:f9:83:10:7d:bb:
eb:f2:d1:92:dd:fc:e2:84:39:a6:db:6b:e5:73:5e:
ae:72:7d:e5:0f:1f:fd:65:43:3b:bf:f5:01:32:dc:
d8:50:93:4d:e3:a4:76:c2:d8:dc:8e:c5:f3:c3:ab:
8a:5e:9d:f7:44:09:12:07:ee:ab:11:90:8b:db:4d:
71:ea:1c:00:c5:80:5d:17:99:1b:55:e8:84:b4:f3:
a4:27:74:a6:84:e1:3f:90:6c:a2:c7:05:6d:5a:8f:
a0:90:a1:08:b5:0a:76:46:0f:33:50:c9:84:48:a7:
cf:38:46:9b:b9:df:b7:19:ec:18:92:08:b4:88:82:
5e:44:9b:50:ee:8c:91:8e:41:54:9c:62:17:b5:1c:
6d:31:bb:f5:82:a3:42:00:7c:1e:b0:cb:64:fd:6f:
17:e5:c7:88:d1:a6:19:0f:77:17:5d:2b:b4:49:50:
31:37:a1:42:64:58:08:12:5d:e5:d5:1b:9c:45:75:
e6:d3:51:12:f4:f6:18:ac:35:49:c3:2d:27:be:79:
21:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BB:40:39:DC:F8:91:96:E1:71:98:8D:87:F2:D2:61:CB:FF:CF:35
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SrtAOdz4kZbhcZiNh_LSYcv_zzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:600::/44
2a0e:b107:17c0::/44
Signature Algorithm: sha256WithRSAEncryption
79:ec:0f:78:20:1c:30:61:e4:76:38:8a:72:2a:f3:81:4f:78:
bb:ab:82:22:3a:e6:89:33:c1:d2:64:43:d6:20:d6:06:52:66:
94:8e:01:2f:a7:49:6a:8e:07:c2:15:31:15:60:db:58:3c:28:
a6:e2:02:78:da:19:7f:d7:b5:a3:da:90:3c:42:05:e0:36:d4:
f9:bf:19:28:70:ed:bf:3b:41:a6:8d:db:46:5b:3f:61:64:f2:
6e:25:a8:b6:ab:9b:2f:26:b1:1f:ee:c3:52:ed:15:58:b6:cd:
51:c7:c7:5e:e5:ea:04:48:9d:ac:b5:44:39:20:8d:22:ae:7b:
e1:f1:33:6f:bf:34:52:14:9b:c4:7a:34:ee:c0:9f:d2:66:61:
31:31:16:4d:46:4d:20:35:33:93:02:04:01:44:83:9a:c9:95:
4f:1d:a5:41:96:c2:c5:32:8c:bf:6f:63:10:6a:10:9d:15:4d:
73:7b:05:df:23:0d:ca:62:4d:98:c8:54:33:e6:e1:28:c3:ca:
d5:92:7f:13:56:5f:72:b5:4e:82:fa:d6:cc:bf:f8:46:47:91:
17:f9:b2:70:58:96:47:5f:c2:b8:7a:fe:f5:a7:25:87:c9:1c:
41:06:bd:a3:2c:8b:3d:39:60:9d:05:c2:9f:65:0f:ef:05:7f:
5b:83:65:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org