Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TD1KPNwNg7G6H2jJe2Q34CLTvlc.roa
File: TD1KPNwNg7G6H2jJe2Q34CLTvlc.roa (raw, json)
Hash identifier: g5P/cwUY7W0BEUhKn78Sj0Sy/EqdI/R1Y4p9TVwkJXM=
Subject key identifier: 4C:3D:4A:3C:DC:0D:83:B1:BA:1F:68:C9:7B:64:37:E0:22:D3:BE:57
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183FA1794A1F30B727955E8910FB3B2DDD1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TD1KPNwNg7G6H2jJe2Q34CLTvlc.roa
Signing time: Fri 21 Oct 2022 10:29:52 +0000
ROA not before: Fri 21 Oct 2022 10:29:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202184
IP address blocks: 2a0e:97c0:c20::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:17:94:a1:f3:0b:72:79:55:e8:91:0f:b3:b2:dd:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 21 10:29:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c3d4a3cdc0d83b1ba1f68c97b6437e022d3be57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6a:7a:03:07:2a:3f:ed:16:b0:be:70:0b:1d:
c6:2d:27:7f:65:9e:e5:b4:2a:ba:b9:7e:46:2c:15:
e7:cc:51:73:ee:0a:10:75:ee:97:38:ad:47:88:48:
3e:c5:34:8d:03:26:77:51:33:0d:59:9c:25:77:a3:
09:1b:b9:a0:5a:3c:54:45:63:c3:e0:d2:2d:e3:56:
20:6c:38:81:b1:4c:48:ea:eb:51:cb:e2:98:3e:72:
67:62:06:4f:07:a5:1c:ff:10:fb:73:f4:6f:21:19:
af:c7:34:0a:3b:df:24:b4:d4:74:82:1d:d5:1a:d1:
82:06:20:3a:7e:67:ba:de:02:1d:a9:e5:ab:d9:50:
06:59:37:79:20:39:f9:5f:e6:f9:23:6c:4c:d2:a7:
0f:af:4f:cf:e1:dd:19:cc:8a:8d:0f:ea:bd:b4:7f:
c9:4e:f5:8e:4b:68:de:72:a4:c6:4d:ec:68:8d:bd:
8a:6c:1e:0b:21:a0:40:2b:aa:7e:a6:6c:08:95:b8:
a2:ea:aa:e7:2a:4e:12:d0:20:df:e6:82:42:ce:ac:
14:e8:bb:f7:6e:3f:37:17:7d:19:ba:aa:03:84:24:
39:98:86:6a:d8:fd:74:af:fb:78:09:72:bf:a9:f7:
4b:f2:3c:78:34:af:68:1f:61:ed:ee:04:72:25:cf:
e2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3D:4A:3C:DC:0D:83:B1:BA:1F:68:C9:7B:64:37:E0:22:D3:BE:57
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TD1KPNwNg7G6H2jJe2Q34CLTvlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:c20::/44
Signature Algorithm: sha256WithRSAEncryption
a7:71:4f:cd:69:73:8c:44:86:73:09:6d:29:91:5f:d9:eb:90:
d6:ca:dc:b8:e6:a7:b4:48:cb:19:22:31:70:52:42:a7:e8:ab:
91:86:80:a1:d9:34:0a:a3:7a:bb:0d:c0:73:d8:6e:15:57:50:
14:24:b2:0e:6a:bc:5a:be:c8:34:4b:52:79:0a:53:04:8e:1e:
12:06:8c:19:bc:1d:e5:68:d3:88:62:68:00:2c:f1:83:f6:6f:
81:c3:6b:4f:a2:ec:25:28:3d:89:29:e0:b7:3f:8b:0c:13:4e:
35:c2:37:bd:cf:ca:56:ce:ab:a8:47:d8:36:e6:d1:01:9d:dd:
32:d2:32:72:6a:5d:e3:88:83:e2:e6:b0:4a:0f:29:d7:0a:2d:
d7:0c:03:04:b7:6c:90:f9:6f:6a:56:5d:87:bd:f7:b2:eb:66:
a8:c0:53:d6:0f:75:fa:24:72:50:10:7b:47:77:4a:a0:56:b4:
a1:30:1c:bd:91:aa:4c:57:42:76:f1:4b:a7:04:90:2e:7d:fe:
b2:0d:f7:67:43:9a:48:62:6b:05:e8:e6:48:9b:81:8d:55:0f:
35:75:d5:a6:60:2e:ed:88:ff:6f:2b:a5:a4:e8:8b:a6:c1:ca:
89:c7:a9:65:fa:5d:c2:41:c1:bc:c8:c2:27:10:7c:a0:97:33:
ce:85:5e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org