Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xl0iLTZMyYSYJc33HpVoUq7DUMk.roa
File: Xl0iLTZMyYSYJc33HpVoUq7DUMk.roa (raw, json)
Hash identifier: LahvNruRUZ+o/mkZGAms9e8VJ9fit/GjhspOqM4nqxo=
Subject key identifier: 5E:5D:22:2D:36:4C:C9:84:98:25:CD:F7:1E:95:68:52:AE:C3:50:C9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 15022B6E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xl0iLTZMyYSYJc33HpVoUq7DUMk.roa
Signing time: Mon 06 Jun 2022 12:24:20 +0000
ROA not before: Mon 06 Jun 2022 12:24:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 2a0e:97c0:3e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352463726 (0x15022b6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 6 12:24:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e5d222d364cc9849825cdf71e956852aec350c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1d:82:43:5c:56:39:4f:6e:c1:3e:8a:1d:7d:
9d:c0:1c:b1:8b:8c:9a:09:26:10:90:c2:90:ba:f3:
04:4b:f6:ed:6e:4f:87:5b:e9:2a:71:28:44:8e:a9:
ca:bf:11:63:b6:f9:d8:18:d2:ff:6f:86:58:04:f9:
e9:3f:5d:1a:f7:4a:fe:33:30:6a:a8:f7:e0:b3:47:
02:84:97:4e:46:5c:f7:cc:21:fa:a3:8d:4e:ac:aa:
87:7a:72:9b:0a:2a:2a:79:aa:59:ad:14:11:10:c2:
bf:db:17:a2:a0:f8:0d:b4:af:58:1b:dc:03:2b:fa:
14:99:e4:b3:46:b3:d5:25:d2:52:77:3c:0c:6d:1b:
9f:f2:aa:a7:d4:8f:ee:cd:f4:a4:cf:56:0f:01:94:
71:ba:ed:8f:cc:99:e3:ea:e1:51:e9:2d:33:17:6f:
7b:20:de:5a:6b:9d:59:ee:81:99:09:48:87:50:36:
0c:ec:74:f3:d3:66:ff:fe:f4:dd:ce:f6:2f:29:00:
e1:ca:fd:3e:35:2f:17:98:23:99:3f:0e:bd:73:d4:
8f:4e:83:f1:47:8c:57:9b:d8:29:c6:2c:85:f6:7a:
67:a6:65:ae:8c:0d:2d:01:61:a2:50:e8:ec:8e:79:
8e:84:26:9c:ce:84:19:3d:77:c2:87:d3:c4:63:08:
2b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5D:22:2D:36:4C:C9:84:98:25:CD:F7:1E:95:68:52:AE:C3:50:C9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xl0iLTZMyYSYJc33HpVoUq7DUMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:3e0::/48
Signature Algorithm: sha256WithRSAEncryption
1e:a5:46:9a:2c:2e:39:39:e9:fb:1d:da:a9:2b:aa:d4:2a:42:
f6:43:d0:1a:aa:98:b9:3f:b1:38:b5:1e:37:ef:ea:3f:ad:09:
e8:5c:f0:d1:02:40:ae:43:27:89:b5:3c:61:2f:31:2d:0d:a5:
f8:60:3e:b7:8f:9c:7e:55:74:02:c4:d8:23:3c:05:aa:cb:ca:
5e:0a:4c:e6:50:fa:c4:a0:43:ef:a8:41:96:f9:71:97:86:c1:
8b:ec:0b:73:32:29:fe:f1:24:35:aa:ba:a8:a4:47:0f:fa:64:
c0:24:1f:38:02:f7:9f:4b:70:01:e9:23:db:50:04:13:07:23:
c0:f2:e1:84:e5:9f:8b:05:b0:cc:4e:36:70:d3:9a:2a:f4:c7:
54:53:53:66:2e:5c:3d:a7:8d:36:32:b8:9e:7e:40:0e:40:22:
a6:f5:43:0f:09:f9:44:f0:c0:08:50:cb:13:33:8e:16:34:78:
1a:ab:b1:91:24:84:01:6d:7f:52:90:64:90:f6:b3:a6:9e:b6:
38:9d:d5:4c:40:1f:a4:42:49:da:d5:7f:26:72:ff:24:0c:1b:
30:7c:4e:c7:70:3f:10:94:b0:ea:28:51:68:72:6b:00:36:50:
39:1c:c7:ad:62:9d:b3:9c:bd:24:26:08:fe:9f:db:a8:fc:a6:
7d:5f:4d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org