Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_531mwrG4AjmSfkyJ_0xr2RAMVI.roa
File: _531mwrG4AjmSfkyJ_0xr2RAMVI.roa (raw, json)
Hash identifier: Jt3rtAOYSWCLNN5usxhkrShceWrxgGt2S+4CR9DihKw=
Subject key identifier: FF:9D:F5:9B:0A:C6:E0:08:E6:49:F9:32:27:FD:31:AF:64:40:31:52
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14DEE2A5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_531mwrG4AjmSfkyJ_0xr2RAMVI.roa
Signing time: Fri 27 May 2022 11:45:15 +0000
ROA not before: Fri 27 May 2022 11:45:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210013
IP address blocks: 2a0e:97c0:6cd::/48 maxlen: 48
2a0e:97c0:6c0::/44 maxlen: 48
2a0e:97c0:6c8::/48 maxlen: 48
2a0e:97c0:6c3::/48 maxlen: 48
2a0e:97c0:6ce::/48 maxlen: 48
2a0e:97c0:6c1::/48 maxlen: 48
2a0e:97c0:6cc::/48 maxlen: 48
2a0e:97c0:6c7::/48 maxlen: 48
2a0e:97c0:6c2::/48 maxlen: 48
2a0e:97c0:6c5::/48 maxlen: 48
2a0e:97c0:6c0::/48 maxlen: 48
2a0e:97c0:6cb::/48 maxlen: 48
2a0e:97c0:6c6::/48 maxlen: 48
2a0e:97c0:6c9::/48 maxlen: 48
2a0e:97c0:6c4::/48 maxlen: 48
2a0e:97c0:6cf::/48 maxlen: 48
2a0e:97c0:6ca::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350151333 (0x14dee2a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 27 11:45:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff9df59b0ac6e008e649f93227fd31af64403152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:18:8f:21:57:91:0c:51:4b:2f:6a:d5:2a:e6:
c0:d9:76:26:e2:12:f7:92:94:2a:39:68:7a:2a:8b:
f1:7f:70:9b:03:6b:90:bb:5e:9a:e0:2b:70:aa:a3:
2b:ae:0c:ee:d8:33:f8:50:51:d7:99:9e:dd:11:ae:
95:b9:29:88:bc:82:54:0e:47:7b:df:80:e3:ea:3e:
0c:a9:78:af:74:5b:af:82:42:07:5d:84:5e:43:a2:
70:de:6e:40:3b:51:45:d3:19:d5:9e:13:66:ce:81:
fc:31:b3:75:56:a0:94:75:a0:71:69:cd:ba:9e:e5:
3d:50:c8:59:a6:f5:36:ce:8b:15:32:46:23:20:15:
26:40:0f:da:4d:28:e7:43:42:80:78:13:4a:84:a4:
80:42:c0:c8:88:eb:2f:ba:a2:23:d4:05:f2:61:96:
26:3b:45:5e:84:68:58:19:ea:1f:82:f6:e3:7a:3b:
b1:16:c6:0f:66:02:b1:e7:0f:8c:ae:26:ea:c4:14:
23:3e:59:f3:d8:2c:8d:92:bf:db:4f:fb:68:36:a0:
12:22:cf:86:25:23:5a:b3:e6:68:dc:b2:cb:cb:49:
01:a6:83:bb:28:17:ad:22:5c:55:a3:7b:a9:31:b3:
b9:26:91:c8:0d:d4:10:63:fd:2a:b6:5d:46:2f:ca:
b0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9D:F5:9B:0A:C6:E0:08:E6:49:F9:32:27:FD:31:AF:64:40:31:52
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_531mwrG4AjmSfkyJ_0xr2RAMVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:6c0::/44
Signature Algorithm: sha256WithRSAEncryption
3e:6a:ff:1a:d8:e1:76:2f:73:04:a0:bb:ab:ed:3c:f2:bd:b0:
e0:bf:c8:32:be:e7:17:80:1f:61:2d:28:2f:5a:60:03:42:66:
ef:ad:25:e7:37:6f:6c:a1:dd:40:19:1e:3a:e8:84:53:ee:0c:
fe:93:dc:9a:cf:72:92:ab:b1:80:17:64:2d:18:eb:05:fe:21:
4a:94:d4:54:da:8b:fa:07:95:77:bc:eb:ed:55:e3:c7:97:af:
7b:9d:91:33:6a:ea:05:3b:66:7a:89:d9:15:7f:0b:18:c3:b7:
09:85:7b:3f:cf:4b:64:5b:2b:72:57:31:2a:7d:df:23:13:43:
d6:d4:dd:e8:b8:56:63:98:c3:02:a7:71:13:41:a2:ae:e4:8e:
fc:dd:c2:de:74:db:e2:f8:19:ec:cb:d4:6f:6c:81:64:a5:c9:
9d:0c:7d:70:52:70:59:8b:f7:9a:3e:f3:8f:50:8a:b4:5c:f3:
e0:2f:00:63:c8:96:33:6b:e7:6c:57:81:f5:a3:65:65:5b:86:
90:9b:0f:00:b4:29:8c:d6:ed:dc:84:37:2c:48:e2:38:3c:a9:
29:bc:7a:5d:29:32:12:af:18:d2:9e:bc:8f:67:1e:d7:5e:c5:
35:c3:43:f7:7e:89:df:49:fb:56:a9:fc:7f:62:2e:b6:5a:01:
ea:d5:93:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org