Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/U_o8SGzKSu0oHQYxa7J7bDyG4Ho.roa
File: U_o8SGzKSu0oHQYxa7J7bDyG4Ho.roa (raw, json)
Hash identifier: 9sgf4RmqLMqsiqF714O142ngf2MNZMTCCfutICI6vig=
Subject key identifier: 53:FA:3C:48:6C:CA:4A:ED:28:1D:06:31:6B:B2:7B:6C:3C:86:E0:7A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185028224496D186486E2FC84141ECA1B8A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/U_o8SGzKSu0oHQYxa7J7bDyG4Ho.roa
Signing time: Sun 11 Dec 2022 18:46:01 +0000
ROA not before: Sun 11 Dec 2022 18:46:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 655500
IP address blocks: 2a0e:b107:1d05::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:02:82:24:49:6d:18:64:86:e2:fc:84:14:1e:ca:1b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 11 18:46:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53fa3c486cca4aed281d06316bb27b6c3c86e07a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ea:35:a4:63:bd:42:10:16:fd:1d:d0:fb:8d:
f8:05:20:a3:29:98:6e:3d:d8:a3:06:a6:53:b3:51:
a1:aa:ce:c6:7e:9d:fe:43:45:fd:5f:e4:59:08:48:
05:f6:96:68:ea:e6:f6:25:9f:a8:fd:83:b1:2e:90:
eb:87:b8:49:af:f6:56:4e:4d:75:6d:22:36:16:fd:
a7:0f:ae:e5:b6:fb:80:86:6b:90:ef:c0:fb:e3:3a:
70:1a:b1:d9:e9:82:5a:f4:28:98:7d:b9:b4:47:2c:
02:95:55:ff:4b:09:95:03:e5:5a:0d:28:5c:5a:75:
aa:1a:ad:04:5d:9e:3d:d9:e4:48:16:35:ff:79:ea:
ea:e3:ca:22:f2:df:9b:a6:2b:dd:b6:6c:6b:da:b0:
39:a2:85:41:00:dd:8d:35:22:e9:09:52:ca:2b:61:
2a:52:21:14:4a:1e:aa:7a:e1:de:b5:75:f7:c5:a8:
c1:9a:ee:bd:82:39:5b:79:08:fa:fe:1a:46:1e:e7:
cc:0e:cb:c2:d2:9f:6c:c2:05:a0:34:02:07:0c:8d:
06:10:0f:a5:60:e3:45:7a:e3:80:60:7a:bf:e0:85:
58:bb:f7:5e:92:6e:18:6d:c6:5e:17:3d:8b:50:42:
81:52:e1:39:a0:11:93:d7:45:d6:65:b4:49:95:39:
1c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FA:3C:48:6C:CA:4A:ED:28:1D:06:31:6B:B2:7B:6C:3C:86:E0:7A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/U_o8SGzKSu0oHQYxa7J7bDyG4Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1d05::/48
Signature Algorithm: sha256WithRSAEncryption
0b:b0:6b:08:ae:4f:5d:26:62:55:a6:7b:93:0d:c2:3a:4a:56:
b1:07:46:3d:19:12:54:d7:c1:f2:3f:cc:72:98:8f:d0:7a:73:
16:8f:8e:65:54:2e:07:23:d1:fe:1e:4b:88:cd:fd:0b:ca:dc:
f5:71:45:5c:e7:63:58:e4:d5:27:22:21:21:fa:5c:a6:e8:47:
84:47:35:c8:c4:19:79:b2:70:69:89:33:c0:f8:51:84:d7:16:
55:13:d1:7e:0c:5d:08:54:86:62:d3:9f:07:1f:ba:0e:40:21:
e2:87:65:98:a9:7d:00:13:21:11:06:5e:66:92:6b:31:f0:93:
fd:af:84:3b:ad:6c:51:82:85:06:1b:c3:a3:ed:55:88:20:92:
dc:19:17:f9:8e:6d:33:b2:3c:3c:7f:72:5b:74:a1:11:4b:63:
17:2a:68:19:b2:2a:89:d6:10:57:7a:c4:86:3b:49:52:6b:7d:
2e:f9:1f:0c:21:4d:c5:95:75:98:51:aa:a5:cf:11:88:d9:ae:
8c:15:90:f6:e5:59:c2:ea:b4:4b:3f:62:af:1c:c9:1e:ac:b2:
84:8c:7a:7c:31:4b:69:2f:19:6f:8d:18:b9:b7:2e:6e:d3:0b:
47:b5:a9:b1:6a:23:e0:9a:95:00:42:b3:bf:72:07:b0:c9:36:
11:23:fa:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org