Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UwyhsVg7dwYKLdXoBsdGByDDJ9M.roa
File: UwyhsVg7dwYKLdXoBsdGByDDJ9M.roa (raw, json)
Hash identifier: +db38y3Pp/yxS7PCyRYfAGQY4HyarUOHyjFz8hXi5k0=
Subject key identifier: 53:0C:A1:B1:58:3B:77:06:0A:2D:D5:E8:06:C7:46:07:20:C3:27:D3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01834D3FC3310631CD29E8425EBAD7C5690A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UwyhsVg7dwYKLdXoBsdGByDDJ9M.roa
Signing time: Sat 17 Sep 2022 20:59:27 +0000
ROA not before: Sat 17 Sep 2022 20:59:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202941
IP address blocks: 2a10:2f00:187::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4d:3f:c3:31:06:31:cd:29:e8:42:5e:ba:d7:c5:69:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 17 20:59:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=530ca1b1583b77060a2dd5e806c7460720c327d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c9:bb:53:98:79:cf:2c:73:33:4b:a1:5a:8c:
a8:5b:65:39:a5:a7:f5:67:9c:66:f8:bc:d4:09:a2:
72:56:4e:8d:23:3e:81:e0:a1:bc:13:a3:45:8b:57:
76:df:f2:98:bf:38:cf:8d:17:81:f6:9f:8d:66:c1:
ee:79:bf:9a:00:eb:ce:4c:e9:3e:70:e1:66:2f:72:
56:0b:5a:61:94:99:fb:22:4b:b4:8c:41:ac:c0:ad:
ce:d1:02:58:4e:50:33:29:e1:1f:60:fe:8b:51:42:
fb:91:db:80:6c:d7:f0:94:d9:e8:cb:c8:16:2f:19:
37:07:34:24:e7:f8:84:6d:b0:18:80:0d:f7:d2:cb:
cf:6d:9c:2f:1c:a8:65:23:29:31:9b:b2:4a:d2:64:
57:0c:f9:01:24:8c:e4:c5:29:1a:fe:28:71:d6:f7:
88:e2:36:13:4b:b6:13:a6:1b:96:e5:dd:1f:23:30:
0c:c2:51:9a:b8:df:bc:b9:62:69:96:ea:32:9d:2e:
51:c2:ff:61:27:4c:ed:44:75:09:1e:a8:8b:0a:58:
96:1f:92:79:11:28:4b:a3:80:93:50:e2:44:df:fc:
7e:c3:86:2d:b7:8b:33:10:ed:c5:bc:f0:0e:10:12:
fb:6a:bd:87:98:58:9d:8d:39:d6:99:66:c9:ba:6d:
7b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0C:A1:B1:58:3B:77:06:0A:2D:D5:E8:06:C7:46:07:20:C3:27:D3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UwyhsVg7dwYKLdXoBsdGByDDJ9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:187::/48
Signature Algorithm: sha256WithRSAEncryption
1f:ed:08:d6:5f:08:67:0f:e9:12:0f:bc:dd:77:c1:c8:f1:b1:
e5:22:aa:77:8b:1c:31:f2:ce:9e:d6:57:4c:a8:71:70:e0:d3:
6d:41:a9:34:3d:4c:24:1c:19:2e:33:86:cc:cf:fa:58:3b:7c:
f1:f1:ca:08:3b:f9:45:b7:b9:54:1d:54:88:57:1f:57:9d:01:
4d:87:5e:b7:37:38:5c:18:3f:55:cf:ee:07:33:10:ca:b3:f0:
48:6b:ac:5f:a2:49:0c:15:d7:ac:17:d8:e2:b8:4d:f9:23:e9:
c9:d2:ef:18:d0:76:8d:46:b7:7a:3e:70:9a:e6:44:20:2a:83:
28:c7:f7:87:b1:b3:bd:0e:8d:c8:8d:52:56:4f:5c:02:b4:c5:
47:5e:cd:b0:65:3b:0b:65:8a:2a:40:41:12:21:9d:05:5f:fa:
13:24:6d:a8:71:f0:e8:b6:cb:a7:e0:5e:2a:e3:8b:5e:22:df:
e2:89:a6:b0:b3:9e:78:6c:a7:ff:a6:46:68:c9:94:e1:ed:37:
50:a3:8a:43:42:b7:ce:24:93:f3:18:28:fc:e8:14:af:72:cf:
7b:e6:fd:eb:1a:44:c9:cc:55:40:24:de:63:bf:e6:85:01:1a:
fb:cb:28:8c:8e:af:a1:d8:2d:33:06:81:98:c5:1d:f4:67:bd:
cd:8f:df:44
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYNNP8MxBjHNKehCXrrXxWkKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIwOTE3MjA1OTI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzBjYTFiMTU4M2I3NzA2MGEyZGQ1ZTgwNmM3NDYwNzIwYzMyN2QzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsm7U5h5zyxzM0uhWoyoW2U5paf1
Z5xm+LzUCaJyVk6NIz6B4KG8E6NFi1d23/KYvzjPjReB9p+NZsHueb+aAOvOTOk+
cOFmL3JWC1phlJn7Iku0jEGswK3O0QJYTlAzKeEfYP6LUUL7kduAbNfwlNnoy8gW
Lxk3BzQk5/iEbbAYgA330svPbZwvHKhlIykxm7JK0mRXDPkBJIzkxSka/ihx1veI
4jYTS7YTphuW5d0fIzAMwlGauN+8uWJpluoynS5Rwv9hJ0ztRHUJHqiLCliWH5J5
EShLo4CTUOJE3/x+w4Ytt4szEO3FvPAOEBL7ar2HmFidjTnWmWbJum17PwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFMMobFYO3cGCi3V6AbHRgcgwyfTMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvVXd5aHNWZzdkd1lLTGRYb0JzZEdCeURESjlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAGH
MA0GCSqGSIb3DQEBCwUAA4IBAQAf7QjWXwhnD+kSD7zdd8HI8bHlIqp3ixwx8s6e
1ldMqHFw4NNtQak0PUwkHBkuM4bMz/pYO3zx8coIO/lFt7lUHVSIVx9XnQFNh163
NzhcGD9Vz+4HMxDKs/BIa6xfokkMFdesF9jiuE35I+nJ0u8Y0HaNRrd6PnCa5kQg
KoMox/eHsbO9Do3IjVJWT1wCtMVHXs2wZTsLZYoqQEESIZ0FX/oTJG2ocfDotsun
4F4q44teIt/iiaaws554bKf/pkZoyZTh7TdQo4pDQrfOJJPzGCj86BSvcs975v3r
GkTJzFVAJN5jv+aFARr7yyiMjq+h2C0zBoGYxR30Z73Nj99E
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:04 2024 by rpki-client on console-ams.rpki-client.org