Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WgNxcnhu64NY0yHF3DYPifzQKuw.roa
File: WgNxcnhu64NY0yHF3DYPifzQKuw.roa (raw, json)
Hash identifier: T0vL8oAJO/XB5exQKVXsotpIfzC3CD5tLaxZLqiKeXU=
Subject key identifier: 5A:03:71:72:78:6E:EB:83:58:D3:21:C5:DC:36:0F:89:FC:D0:2A:EC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183F5FAB88DD890FD67FA1914C0D78C8103
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WgNxcnhu64NY0yHF3DYPifzQKuw.roa
Signing time: Thu 20 Oct 2022 15:19:52 +0000
ROA not before: Thu 20 Oct 2022 15:19:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211946
IP address blocks: 2a0e:b107:1c35::/48 maxlen: 48
2a0e:97c0:148::/48 maxlen: 48
2a0e:b107:1c3a::/48 maxlen: 48
2a0e:97c0:143::/48 maxlen: 48
2a0e:b107:1c3f::/48 maxlen: 48
2a0e:b107:1c34::/48 maxlen: 48
2a0e:97c0:141::/48 maxlen: 48
2a0e:b107:1c39::/48 maxlen: 48
2a0e:b107:1c3e::/48 maxlen: 48
2a0e:b107:1c33::/48 maxlen: 48
2a0e:97c0:142::/48 maxlen: 48
2a0e:b107:1c38::/48 maxlen: 48
2a0e:97c0:145::/48 maxlen: 48
2a0e:b107:1c3d::/48 maxlen: 48
2a0e:b107:1c32::/48 maxlen: 48
2a0e:b107:1c37::/48 maxlen: 48
2a0e:97c0:146::/48 maxlen: 48
2a0e:b107:1c3c::/48 maxlen: 48
2a0e:b107:1c31::/48 maxlen: 48
2a0e:97c0:144::/48 maxlen: 48
2a0e:b107:1c36::/48 maxlen: 48
2a0e:b107:1c3b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f5:fa:b8:8d:d8:90:fd:67:fa:19:14:c0:d7:8c:81:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 20 15:19:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a037172786eeb8358d321c5dc360f89fcd02aec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:00:df:f6:95:76:59:9a:97:60:90:7f:3f:dd:
91:35:07:38:de:03:9d:c9:e4:15:5d:1a:67:1b:74:
71:4b:51:9d:7e:51:a3:a7:a1:58:61:37:49:d2:60:
13:b6:e0:b1:09:ed:de:de:cb:5e:95:7c:8b:ee:21:
ee:b2:3e:b1:57:25:df:cc:eb:f7:79:e2:3d:1e:9b:
0b:30:60:6b:16:09:01:ef:6b:87:96:ef:98:78:cc:
47:a2:b4:d6:e3:cb:70:01:d6:02:38:a1:27:52:77:
73:4d:7f:73:c3:8c:1b:32:3e:b9:a8:d6:53:c4:54:
54:3b:db:1e:d3:56:cb:72:73:f8:04:e4:d5:a2:81:
3e:64:de:33:3d:b1:07:bb:10:73:16:7f:65:ba:68:
4f:33:f3:e9:60:5e:b1:0f:7b:2b:ab:c6:7d:cf:28:
6d:9c:2b:2a:d7:49:d7:3e:69:4b:36:29:fd:0f:ad:
f1:07:d1:e4:78:53:b1:9b:75:fd:34:e6:5d:cd:c0:
41:b3:10:98:ff:44:3c:69:6a:17:c0:a4:f4:b9:42:
48:83:cf:5e:bc:6f:a9:21:e6:f5:94:d2:f9:e5:d5:
6f:80:40:49:44:65:5c:00:cf:15:56:9c:eb:9e:e0:
2e:6d:91:83:ec:ac:6b:1a:da:38:ca:ea:72:be:fa:
24:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:03:71:72:78:6E:EB:83:58:D3:21:C5:DC:36:0F:89:FC:D0:2A:EC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WgNxcnhu64NY0yHF3DYPifzQKuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:141::-2a0e:97c0:146:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:148::/48
2a0e:b107:1c31::-2a0e:b107:1c3f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
85:79:a7:b7:7a:c2:e1:5c:f4:69:89:b9:6e:04:8a:55:6b:cb:
bf:ad:26:f7:6c:5d:65:d5:99:89:a1:38:07:bc:d1:54:35:f0:
09:e9:44:93:f2:20:30:bd:b4:41:de:7b:c3:84:57:37:af:c0:
35:e3:83:20:f6:8e:bd:e4:6d:3f:56:65:37:44:04:44:fb:ec:
6d:40:92:7d:71:64:48:fc:a3:06:0a:49:98:82:e1:c2:67:c6:
64:f5:20:0e:f1:26:4d:59:8a:dd:e9:16:07:1d:3a:fd:d1:b0:
ed:78:45:79:70:b3:29:02:a8:2e:e8:21:89:a1:cf:09:dd:ef:
a2:2a:f7:3a:74:c8:1e:71:95:8a:3b:d6:f7:fb:2d:b6:50:ae:
d3:70:2d:48:4d:c0:b5:f5:3b:22:63:a2:88:85:bc:dd:81:8e:
1c:69:3c:ec:b3:ea:85:87:2e:76:ba:44:da:fb:a3:5d:97:a8:
5f:1d:ca:89:fd:5e:e6:8c:47:6e:37:81:4f:b2:07:6b:48:41:
57:34:ef:91:08:50:b2:eb:7b:a5:11:d1:6a:d8:98:e2:f3:29:
d7:77:c9:c1:f8:19:69:74:51:23:67:b8:5f:12:4b:74:fe:7e:
f8:d8:16:45:73:51:5d:a3:1e:08:26:af:90:e6:eb:4e:8f:ee:
37:92:4b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org