Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Z8nS9pYMAsNyGfF1sd15v7winOY.roa
File: Z8nS9pYMAsNyGfF1sd15v7winOY.roa (raw, json)
Hash identifier: g+dhsYaDbaJYLWm7swM0RqBDIn6S78LYKPsQJll+TiE=
Subject key identifier: 67:C9:D2:F6:96:0C:02:C3:72:19:F1:75:B1:DD:79:BF:BC:22:9C:E6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1093A11D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Z8nS9pYMAsNyGfF1sd15v7winOY.roa
Signing time: Sat 01 Jan 2022 09:05:02 +0000
ROA not before: Sat 01 Jan 2022 09:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204446
IP address blocks: 2a0e:b107:938::/48 maxlen: 48
2a0e:b107:930::/44 maxlen: 48
2a0e:b107:93a::/48 maxlen: 48
2a0e:b107:934::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278110493 (0x1093a11d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67c9d2f6960c02c37219f175b1dd79bfbc229ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f9:83:45:3b:d9:41:ff:b6:9a:7c:b8:7a:23:
3c:cf:26:d8:06:75:68:c9:0a:5f:6a:8c:18:0b:04:
8a:22:7c:ee:ca:d8:81:46:57:dd:12:2e:6c:d0:98:
db:43:64:2f:5a:8d:13:ca:dd:12:7c:f1:13:0f:11:
ab:8e:64:c6:d4:a6:3c:0e:8b:0c:96:37:70:21:5f:
95:48:53:da:af:db:42:bd:a4:92:29:6d:ce:ae:e9:
8e:ee:7d:49:fd:aa:c5:15:06:54:8a:ca:d8:31:2b:
bb:fe:4e:77:db:5a:79:e0:c9:40:83:9e:c5:3a:70:
b6:1b:5c:fc:00:64:11:d7:90:24:11:c9:2a:e3:5f:
c6:38:bc:98:db:0e:d8:62:a6:d5:f4:79:30:40:e1:
a0:d1:d7:9e:93:0f:91:f8:6d:6e:1f:7c:9f:f5:78:
e1:32:41:f8:c3:c9:31:16:1e:bc:f7:f4:db:2a:69:
27:19:08:c1:02:0c:98:5f:f1:2b:08:53:3b:f4:cd:
86:9c:bc:55:79:17:9d:4c:75:ce:db:29:70:d4:54:
b7:7f:34:f7:04:95:8c:35:98:10:12:0b:00:6d:b7:
38:4f:80:73:fc:52:ac:61:e8:8b:c6:31:1b:eb:45:
44:f4:e1:81:df:06:12:e6:6b:73:47:7d:d5:92:45:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C9:D2:F6:96:0C:02:C3:72:19:F1:75:B1:DD:79:BF:BC:22:9C:E6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Z8nS9pYMAsNyGfF1sd15v7winOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:930::/44
Signature Algorithm: sha256WithRSAEncryption
4c:0b:27:cc:56:1e:52:ee:04:9d:bc:60:0e:f2:a9:88:2a:c1:
05:09:8e:61:7f:1d:0e:93:b0:d6:5b:8f:ba:c9:2e:a7:c7:86:
bb:a5:92:ed:b3:5d:4d:1b:23:38:cb:f7:8c:a9:f1:dd:30:dc:
04:e2:4e:a7:74:57:e4:27:ee:12:58:70:6d:5b:48:8f:33:8c:
cc:c2:7a:50:66:d5:68:ef:de:c9:49:43:e3:7c:19:ab:65:69:
60:7d:bd:14:e1:70:f6:d3:fb:ae:ca:e8:1f:12:ef:20:f1:68:
f6:d9:8a:75:d0:a2:87:c8:df:33:0e:a2:b4:2d:28:b2:a0:cd:
8a:e4:20:eb:06:74:58:01:44:c1:f0:68:d1:be:0e:44:0c:2b:
b5:60:a2:90:41:e8:ce:b4:6d:29:38:2b:55:f5:23:57:b5:39:
80:d1:e2:85:23:60:a5:00:c6:1a:42:4e:e6:77:73:c9:31:bb:
53:30:22:91:a7:3f:93:d9:a6:b9:99:b8:23:ca:a6:03:60:12:
e6:25:71:56:8f:df:1f:0d:80:cb:ab:83:f3:18:3c:14:6d:f2:
47:b7:62:3d:c8:b3:29:e7:7b:a9:e4:7d:66:42:86:3a:08:65:
f8:84:4b:cc:7a:2b:71:75:98:24:80:cd:71:68:f8:58:9a:07:
2c:06:88:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org