Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xph4xr1HjOl0LFa3V7gTHwPJK8o.roa
File: Xph4xr1HjOl0LFa3V7gTHwPJK8o.roa (raw, json)
Hash identifier: g+Wetf5h9SLJDCT4qtA4cq72maf+ps/irEMQqcIVyXc=
Subject key identifier: 5E:98:78:C6:BD:47:8C:E9:74:2C:56:B7:57:B8:13:1F:03:C9:2B:CA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185409BFC29C81DBDE89E9EEF45E58860A8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xph4xr1HjOl0LFa3V7gTHwPJK8o.roa
Signing time: Fri 23 Dec 2022 20:10:42 +0000
ROA not before: Fri 23 Dec 2022 20:10:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209101
IP address blocks: 2a0e:b107:510::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:40:9b:fc:29:c8:1d:bd:e8:9e:9e:ef:45:e5:88:60:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 23 20:10:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e9878c6bd478ce9742c56b757b8131f03c92bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:95:f8:1b:54:03:03:76:c3:dc:55:e1:0d:f8:
e7:5e:00:3d:a0:9e:10:a1:5d:2f:7b:72:21:ad:72:
7d:6f:c5:32:67:3d:44:7f:d0:6c:c5:c1:50:1f:e6:
b9:3f:49:75:48:71:4a:70:6a:98:a2:81:09:5d:0a:
96:ae:a9:d6:d6:4a:6b:f8:96:5e:b6:25:e6:23:d7:
3d:32:c1:aa:b7:8c:0b:6c:a9:ae:63:98:f5:9f:c8:
f2:a9:42:6b:16:a9:13:7c:19:77:d3:5c:46:e6:90:
80:75:32:87:02:f2:af:b0:89:b4:b9:74:cf:2c:1b:
b0:b4:5a:b1:64:f7:98:2d:85:81:7d:00:35:65:51:
3c:bf:22:d4:a6:bf:b8:35:24:d4:88:86:44:55:60:
06:24:1d:ae:2f:48:1e:5a:77:d3:d1:cf:21:97:e9:
d9:de:f9:61:a8:f8:7d:ad:12:09:25:2b:50:50:12:
22:be:e2:eb:2c:54:bf:44:39:62:d3:63:28:df:74:
aa:81:06:8a:d5:76:ee:3a:b4:f8:0c:a1:74:b8:a4:
f1:8e:0d:6c:ff:4a:84:d3:cb:ae:5b:72:59:4f:74:
4e:27:41:66:33:d7:f8:5c:5a:b3:be:bc:55:9d:e3:
fb:4c:5e:8c:8f:5d:f1:2a:f1:a7:4d:38:30:3c:b5:
55:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:98:78:C6:BD:47:8C:E9:74:2C:56:B7:57:B8:13:1F:03:C9:2B:CA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xph4xr1HjOl0LFa3V7gTHwPJK8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:510::/44
Signature Algorithm: sha256WithRSAEncryption
8b:62:2c:a2:57:88:f1:85:c3:16:f7:d7:2d:39:6c:3a:f0:49:
3c:21:56:81:47:f2:b4:fb:57:4a:1e:f2:ec:92:b4:57:49:e5:
48:ce:d1:10:c1:a4:dc:56:11:fe:76:3d:50:88:0a:be:38:03:
78:07:9c:bc:e3:af:a7:13:33:da:53:1c:1a:9a:fa:da:56:bd:
42:2d:07:a9:77:0b:ba:a6:3e:da:3b:15:35:b5:8c:3a:1d:64:
84:6c:3f:37:37:a5:a9:55:f5:ab:6d:d1:a0:75:b4:29:5b:4b:
a7:77:a8:b7:4a:7d:ee:3c:5a:a5:6c:6b:7e:e3:53:5f:21:97:
5f:04:ab:f5:de:dc:b9:f3:72:05:1b:2b:61:13:2a:7c:90:04:
79:13:aa:b2:3e:82:21:8d:e9:39:fb:d0:fe:35:af:32:cc:30:
b6:3d:14:de:a8:5e:ee:bf:03:22:e9:a1:ef:96:dc:4f:4a:81:
02:d5:ea:0a:f3:f3:7b:0c:a4:34:ba:5c:27:e8:a2:5e:7a:7a:
ae:7a:e9:c9:ae:f3:59:d2:30:7c:40:d6:59:d4:13:7c:14:e4:
1d:6b:5f:2c:05:af:58:c9:f3:3b:43:65:5a:9a:a0:57:58:db:
9f:0a:25:56:58:98:71:50:af:de:52:86:6b:0a:38:55:33:93:
6d:a9:6e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org