Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WduYrpUMXBF7xo1UleLk1PE1Jgs.roa
File: WduYrpUMXBF7xo1UleLk1PE1Jgs.roa (raw, json)
Hash identifier: 4jL2k2mWOis8b0P/cBGkvZWSesEiv3fXY8NIudJ2sOA=
Subject key identifier: 59:DB:98:AE:95:0C:5C:11:7B:C6:8D:54:95:E2:E4:D4:F1:35:26:0B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1406373D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WduYrpUMXBF7xo1UleLk1PE1Jgs.roa
Signing time: Tue 26 Apr 2022 18:35:24 +0000
ROA not before: Tue 26 Apr 2022 18:35:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211522
IP address blocks: 2a10:cc44:201::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335951677 (0x1406373d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 26 18:35:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59db98ae950c5c117bc68d5495e2e4d4f135260b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e4:dd:a8:06:c3:44:69:91:6b:bd:a3:28:a5:
7c:24:2d:76:20:ec:b5:b1:84:53:e7:7d:b8:01:c8:
1a:f7:19:50:7c:65:c3:bc:0a:f6:42:e7:5c:25:d9:
ce:e2:d6:79:1d:62:76:77:e7:d8:8b:3c:02:8a:29:
e8:7f:05:80:28:b5:39:5d:0e:b7:a3:a8:b3:65:bd:
5e:05:e8:9d:f1:6e:ad:ea:46:2b:01:30:0a:32:01:
f3:dc:f6:0c:61:a4:98:48:5e:17:ab:15:f3:1d:10:
14:93:5a:47:b2:cf:20:a1:77:39:66:f8:35:e7:0d:
1a:62:c1:22:e7:a2:2f:e9:6d:5c:a0:d2:ca:e2:00:
dc:80:92:df:99:d7:67:43:e6:ca:b2:55:49:4c:ef:
f5:1a:73:69:f4:06:2b:a2:0d:ca:e5:25:36:7f:4a:
09:f9:c0:b9:38:a7:15:8c:39:64:1a:43:f0:1d:e4:
6b:0b:a3:da:67:ed:81:c7:d0:16:30:5d:09:61:07:
2b:85:05:4a:1b:cc:c3:a8:4f:cd:48:c9:5b:37:16:
04:6a:a3:d7:24:51:d8:dd:09:e1:55:88:bc:18:d9:
eb:f4:81:ae:d7:c2:a8:14:57:b0:f1:64:6b:4b:2f:
d1:c7:3d:4b:f5:63:b5:60:d5:ac:d7:6c:37:01:27:
b4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DB:98:AE:95:0C:5C:11:7B:C6:8D:54:95:E2:E4:D4:F1:35:26:0B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WduYrpUMXBF7xo1UleLk1PE1Jgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc44:201::/48
Signature Algorithm: sha256WithRSAEncryption
96:68:e1:b7:f2:fe:45:f7:c2:00:80:b1:b3:02:3b:6e:7a:10:
df:d6:dc:7f:55:6f:f2:0f:1b:84:3f:db:2a:c9:82:9c:55:3e:
1e:7f:31:34:c3:1a:ab:8d:8f:e8:ee:ec:c9:c0:48:74:19:f4:
8d:6d:50:cf:52:1c:d1:89:4c:5c:39:69:da:18:e6:36:a4:5b:
43:cb:bd:d0:e9:1a:83:e5:79:0c:cc:36:96:69:aa:91:63:24:
57:cd:47:ea:a7:a7:5e:ec:b2:ee:c1:34:09:64:fc:47:36:9d:
52:9a:91:c5:fd:32:ba:25:54:23:07:c8:21:90:3e:aa:7d:dc:
e1:31:39:6a:2b:ab:9e:13:ef:9f:06:bc:c4:fb:e8:7a:2c:c3:
db:e6:b5:4e:91:fc:0a:99:09:58:29:e7:75:e0:62:ae:f2:97:
3f:6f:55:eb:d8:a5:62:c1:70:11:11:e3:2b:3b:a1:90:f0:88:
08:74:80:63:63:7f:6c:ef:0c:32:a9:a5:d3:1d:fd:1d:7a:af:
b3:06:d3:82:db:af:0e:66:b0:09:a9:64:d1:4a:04:60:88:43:
94:36:bb:d6:5f:36:bc:4a:6b:88:0f:e4:d6:bc:c7:a6:26:4f:
7e:3b:0f:6f:76:8c:c0:4d:54:09:cd:b8:13:dc:bd:09:be:94:
c0:2f:00:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org