Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TmWpdNRDisM9ruoDXEUG5-kO7i8.roa
File: TmWpdNRDisM9ruoDXEUG5-kO7i8.roa (raw, json)
Hash identifier: 6v+fT9gBCvGL4N0dMdfsVr02WWfxOTVTE5wi4Ja5PLQ=
Subject key identifier: 4E:65:A9:74:D4:43:8A:C3:3D:AE:EA:03:5C:45:06:E7:E9:0E:EE:2F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183CD66E926EE5C89A5DD97F8579A2D4A42
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TmWpdNRDisM9ruoDXEUG5-kO7i8.roa
Signing time: Wed 12 Oct 2022 18:13:37 +0000
ROA not before: Wed 12 Oct 2022 18:13:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147016
IP address blocks: 2a0e:b107:19c9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:66:e9:26:ee:5c:89:a5:dd:97:f8:57:9a:2d:4a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 12 18:13:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e65a974d4438ac33daeea035c4506e7e90eee2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:58:d6:ae:85:7b:32:92:cc:83:94:ff:9c:
ba:77:5e:67:af:26:2c:49:47:88:21:e4:fd:33:f3:
d0:cb:84:3a:fa:7b:0b:bd:ff:13:8e:09:94:66:e8:
0d:0b:75:c0:bd:b8:92:d3:08:c1:8b:c6:46:5a:9a:
03:a0:6d:2c:6e:95:98:c4:b3:b3:f0:69:0b:86:d5:
df:14:76:8d:16:3e:f4:e0:9f:7b:6a:f9:f9:f2:df:
d3:d1:70:56:52:d0:aa:b6:dc:05:7f:14:cf:a3:fd:
ac:27:7b:d2:99:1f:d9:22:b9:02:fe:70:05:e6:28:
6c:1a:41:7f:e4:2a:7a:3c:ca:73:84:46:6f:39:9a:
72:7e:1a:1e:d2:b5:89:2a:0c:0c:5c:be:89:72:41:
0f:03:93:1c:35:73:ea:e6:0d:2e:3c:bb:e6:c9:2a:
0c:d4:b2:0d:1f:94:25:c6:7d:a9:2f:7a:25:33:32:
a7:74:c8:80:e2:9a:5d:65:0d:af:9f:e2:47:7e:a5:
57:d0:49:ee:bf:67:7e:b3:a6:6b:d4:6c:92:26:57:
6d:2e:21:b6:1d:40:41:65:58:02:52:f2:93:d6:a1:
17:8b:0c:f7:be:c6:b9:2f:ce:39:04:df:fb:3d:e0:
2b:8b:51:67:6e:c7:6d:53:b0:0f:52:85:f4:5d:77:
d6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:65:A9:74:D4:43:8A:C3:3D:AE:EA:03:5C:45:06:E7:E9:0E:EE:2F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TmWpdNRDisM9ruoDXEUG5-kO7i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19c9::/48
Signature Algorithm: sha256WithRSAEncryption
b4:b7:e0:28:78:8e:4d:82:c8:7e:c3:64:1c:ec:90:94:64:98:
b9:ed:fb:a5:99:7f:0b:1e:71:68:b6:e2:18:de:85:23:14:5e:
1f:74:bc:f5:2b:71:d8:e1:4a:3e:49:63:61:58:e2:b9:fa:61:
be:34:83:83:61:8b:c0:3b:43:e0:38:24:5c:ba:88:e7:00:57:
02:31:92:76:74:5a:f2:40:fd:19:61:02:b2:d0:11:fd:eb:f2:
1e:90:c6:4a:e9:1b:ac:f1:69:c9:da:84:40:0b:82:ec:3f:4b:
ce:d1:c7:2b:b8:24:30:a4:91:24:15:9d:b0:a2:e9:53:46:8a:
35:bc:d7:6a:ec:4d:39:9a:be:81:0e:9c:61:91:09:7f:4c:73:
24:f6:92:53:66:96:9a:74:b7:0e:08:32:31:0c:25:23:42:30:
b2:83:de:3a:9d:d7:c3:34:dc:11:4e:8c:e0:4f:81:53:51:d2:
f2:5a:f3:53:67:32:41:c7:08:86:af:e2:07:e5:f4:6b:13:62:
e5:2a:dc:ac:21:e7:a6:f7:71:86:dc:a6:c9:66:93:2a:fd:97:
55:bb:c4:00:ba:78:10:a3:c9:3f:d0:1b:0f:ad:bd:e8:fb:10:
20:78:72:fd:b1:17:05:48:bb:37:86:38:65:6c:85:c9:6b:c3:
f1:42:1e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org