Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/T0ZE6p6UuXcwW9MYbnLf8erF_G8.roa
File: T0ZE6p6UuXcwW9MYbnLf8erF_G8.roa (raw, json)
Hash identifier: aRxYPaos8OqVB89SzbD5i2Xijf605IY6+svvfy+BUK0=
Subject key identifier: 4F:46:44:EA:9E:94:B9:77:30:5B:D3:18:6E:72:DF:F1:EA:C5:FC:6F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13984A96
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/T0ZE6p6UuXcwW9MYbnLf8erF_G8.roa
Signing time: Fri 08 Apr 2022 10:03:43 +0000
ROA not before: Fri 08 Apr 2022 10:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206233
IP address blocks: 2a0e:b107:19c2::/48 maxlen: 48
2a10:2f00:183::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328747670 (0x13984a96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 8 10:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f4644ea9e94b977305bd3186e72dff1eac5fc6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:19:4d:c3:ad:27:b0:db:22:b5:8e:ad:b4:37:
e4:6b:dc:9d:4c:23:fe:8a:0d:b9:d6:0d:77:36:21:
f1:04:e8:22:ef:d6:a0:93:8f:03:70:3a:9a:b1:a0:
b1:d6:9e:ca:1c:05:f6:12:ad:27:01:51:8d:91:e9:
f2:ea:d7:ba:a3:97:c8:a5:38:d9:bc:46:11:f5:44:
df:01:07:2c:77:97:54:e7:26:f5:92:9f:22:34:1f:
33:a1:49:4d:c6:57:39:16:a4:6e:f7:89:a9:11:49:
ea:98:98:6d:fd:0b:a0:40:05:73:75:36:34:e9:6b:
e7:33:9f:2a:56:4c:63:fe:56:45:45:27:07:22:e1:
f2:ec:e9:21:98:54:26:36:fa:52:e4:d1:56:d0:f8:
45:5a:e6:fc:42:ce:97:e8:96:53:90:55:e0:c4:c2:
ac:68:99:c6:61:4a:19:9c:07:73:3f:c7:5d:a0:90:
42:5a:83:05:d8:af:e8:20:ad:15:79:4b:95:5f:38:
4f:5e:ea:a6:f8:32:64:f9:8c:11:65:c6:b1:fb:c9:
e6:3d:59:74:b9:24:5b:73:e0:d4:88:8d:7b:a0:c0:
08:57:7b:47:c6:bd:9c:16:7a:12:6a:4b:1a:7a:07:
73:23:74:88:42:12:ac:19:52:e6:8e:8f:55:91:5d:
2f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:46:44:EA:9E:94:B9:77:30:5B:D3:18:6E:72:DF:F1:EA:C5:FC:6F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/T0ZE6p6UuXcwW9MYbnLf8erF_G8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19c2::/48
2a10:2f00:183::/48
Signature Algorithm: sha256WithRSAEncryption
97:fc:b3:70:73:3e:42:0e:71:cb:35:ff:84:79:bf:ef:64:a7:
3c:ca:2f:51:f8:1d:2e:8f:87:a6:3b:dc:31:f0:41:ba:ce:9f:
89:42:dd:df:03:59:4b:d7:b8:f7:13:a8:06:1c:2d:0c:7d:8d:
69:a4:04:4a:fe:e4:b5:38:4d:9e:54:a5:0b:27:c4:0a:f0:73:
0a:9c:55:8a:24:49:c1:e3:c1:ff:7d:98:41:87:b9:11:d3:52:
7c:e8:f5:df:9a:3e:57:43:f0:99:d4:ca:bd:78:9f:32:df:f8:
9d:91:5f:0a:f6:f6:ce:dc:a9:d0:44:af:f3:19:2a:4f:fc:28:
e6:7b:d7:d9:0d:5f:11:33:4e:2f:46:01:29:1f:25:f9:88:fb:
24:6a:79:0b:a0:2b:99:84:dc:2f:c1:f6:99:e6:75:d1:1f:e7:
53:49:a7:2e:6e:7a:0f:8e:6a:b7:3e:ec:93:f5:e9:eb:eb:ec:
97:6f:da:66:f0:04:02:0f:19:1c:92:de:c3:4c:d7:d2:f6:ed:
39:ec:1b:e4:72:5a:dc:6b:43:9a:d4:ad:30:82:83:fa:fc:bc:
c1:83:75:c1:4b:99:27:60:b7:72:b8:55:9d:be:ed:05:28:31:
4f:eb:b3:a6:c3:f7:88:3c:b1:ce:0b:9c:71:64:e5:a1:62:b9:
93:8f:a3:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org