Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TU0DVaJ6TKAX0OLTeYeZNiV9fWM.roa
File: TU0DVaJ6TKAX0OLTeYeZNiV9fWM.roa (raw, json)
Hash identifier: mzZPCqm6IA58Sp9LquPb7wHAJuKOIZR02iZTcWW89WA=
Subject key identifier: 4D:4D:03:55:A2:7A:4C:A0:17:D0:E2:D3:79:87:99:36:25:7D:7D:63
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 11E0994E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TU0DVaJ6TKAX0OLTeYeZNiV9fWM.roa
Signing time: Thu 10 Feb 2022 10:47:38 +0000
ROA not before: Thu 10 Feb 2022 10:47:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211946
IP address blocks: 2a0e:97c0:143::/48 maxlen: 48
2a0e:97c0:141::/48 maxlen: 48
2a0e:97c0:144::/48 maxlen: 48
2a0e:97c0:142::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299931982 (0x11e0994e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 10 10:47:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d4d0355a27a4ca017d0e2d379879936257d7d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:97:87:94:85:58:89:14:74:5a:4b:6a:ff:88:
96:84:a6:d4:c1:09:a5:08:7d:b4:b1:a5:eb:fc:81:
42:69:66:fa:14:84:39:42:b4:d4:9d:8e:c3:68:ac:
f4:d2:97:2e:b2:1a:4d:71:55:bb:cd:00:16:c1:f2:
dc:0d:2d:7a:b2:f2:b7:45:b3:6f:8d:c9:4a:8f:0a:
12:7e:2f:28:48:bd:a5:53:89:c5:21:af:fa:6d:51:
a6:fa:62:f9:44:64:c0:ba:de:9a:35:3b:a9:ec:d3:
9f:32:70:dd:20:ea:f0:bf:b4:0e:6d:b5:3a:92:dc:
1c:10:61:7f:e4:d4:d9:76:65:d5:74:64:9e:74:f9:
8f:21:32:90:41:fd:ce:12:12:ff:f4:de:5f:c5:1f:
f1:77:c6:6a:ef:4f:f8:29:71:5c:94:94:61:b0:21:
22:b6:ad:83:7a:4f:04:f1:85:81:fd:ff:c5:bf:01:
5a:bd:c2:ff:fd:a0:3f:fe:5a:6b:7a:e3:c8:52:cd:
51:4f:96:e5:d4:af:f3:14:9b:36:ae:be:92:38:24:
1f:a8:d8:59:b2:5a:5d:f3:be:7a:ce:b6:f5:18:f6:
ae:b0:9c:06:b2:00:7e:5e:f9:f8:2b:f8:2f:7c:ec:
5a:14:5b:a5:b0:17:c9:40:4d:18:63:9c:fa:b6:10:
cd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4D:03:55:A2:7A:4C:A0:17:D0:E2:D3:79:87:99:36:25:7D:7D:63
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TU0DVaJ6TKAX0OLTeYeZNiV9fWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:141::-2a0e:97c0:144:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
ca:77:81:8e:e7:8b:b2:18:91:d5:ca:5c:9e:d0:74:3d:32:1e:
01:8e:03:e2:bf:f0:18:55:a0:14:e3:4e:f4:da:e4:2b:f9:e3:
99:4e:c4:72:2b:e0:56:10:08:00:7a:2b:5a:18:b6:f0:8b:c7:
f1:0f:6e:af:22:c1:b6:54:73:c0:76:7f:31:9a:b4:4a:21:74:
21:a6:48:ea:b6:c5:22:1d:bb:f4:1c:4a:78:1a:ac:9e:36:bc:
af:2d:39:80:ac:54:aa:aa:60:35:0b:66:fd:c0:ca:fb:66:44:
a4:6a:a8:37:22:ed:d3:c4:2a:7d:29:c4:81:bd:1f:13:a0:9f:
ac:a4:fb:51:8c:5d:bc:7a:ae:30:e1:d2:34:b0:ed:8d:1a:7f:
0d:a2:3e:05:26:37:74:48:6e:32:b3:c4:87:0a:dd:3d:bf:bb:
46:90:b0:80:64:6a:44:e7:db:03:88:db:e3:48:fe:c7:73:8c:
e3:67:5a:7f:7c:27:2b:31:a2:b1:0a:96:6e:81:3d:5d:6c:a5:
5c:55:b8:a9:53:7a:2d:7f:95:e5:e7:67:54:df:89:5e:f1:31:
37:25:5e:cc:b9:31:c9:c6:5a:fd:f9:02:ac:f1:15:69:05:20:
aa:61:77:ad:5f:d7:eb:44:05:de:4b:80:10:d4:f1:2e:79:a5:
8c:4c:06:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org