Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_WY202BcPlyWKoMjkXgOAZw4EOY.roa
File: _WY202BcPlyWKoMjkXgOAZw4EOY.roa (raw, json)
Hash identifier: jmYpHfmrecDGb/COYdMEPrPuDJuv5ESYGksyWCTFjgs=
Subject key identifier: FD:66:36:D3:60:5C:3E:5C:96:2A:83:23:91:78:0E:01:9C:38:10:E6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10F10FEA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_WY202BcPlyWKoMjkXgOAZw4EOY.roa
Signing time: Sat 01 Jan 2022 09:05:56 +0000
ROA not before: Sat 01 Jan 2022 09:05:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213069
IP address blocks: 2a10:2f00:13a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284233706 (0x10f10fea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd6636d3605c3e5c962a832391780e019c3810e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:77:92:9c:3a:9f:41:24:47:b5:a0:a4:bf:95:
df:be:bd:8e:fa:84:dc:5d:44:cd:b6:21:d7:7e:93:
06:8c:50:bc:04:28:f9:00:cb:22:56:5d:0f:96:6a:
01:a0:14:d7:10:e1:66:bb:2a:05:6c:c2:5f:4d:fb:
7f:09:f5:42:93:6b:7a:bf:3b:26:7a:d5:e1:e5:6f:
e4:47:ff:a4:81:0a:f4:06:bc:28:15:71:40:96:4a:
7a:a6:89:d4:f3:41:99:ae:44:52:90:94:67:16:23:
da:4e:e0:0b:ce:7e:6f:7c:5f:75:e0:34:47:5c:80:
12:bd:a5:94:16:70:8f:70:88:86:5c:15:ef:20:d7:
ef:f5:9a:1e:c5:a0:7e:1b:1b:1d:3a:91:8c:62:41:
20:c7:60:52:c8:3e:02:9e:5b:f6:90:26:c2:c6:b7:
53:b7:22:c1:cf:61:c6:75:2b:53:c9:37:17:66:c8:
67:e5:e5:ca:37:c2:d5:f3:24:ed:67:9f:90:a6:8d:
24:f6:d1:8c:24:6c:88:4b:91:4b:b3:cf:d8:d4:14:
c6:2f:13:0e:29:61:8e:4c:62:25:34:6d:de:e2:e7:
42:eb:d4:41:8e:d2:e4:32:f2:99:d7:d5:45:4a:ae:
a2:3c:0a:5b:2a:fb:c5:07:35:5a:8d:9f:e6:58:2e:
fd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:66:36:D3:60:5C:3E:5C:96:2A:83:23:91:78:0E:01:9C:38:10:E6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_WY202BcPlyWKoMjkXgOAZw4EOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:13a::/48
Signature Algorithm: sha256WithRSAEncryption
42:bf:5a:a9:52:62:f1:e9:f0:6b:56:36:b3:85:8a:e4:a1:61:
11:8c:19:3a:57:72:eb:20:41:f0:19:cc:11:db:4f:bc:e5:1f:
c1:34:17:f3:c9:8e:54:75:46:8d:21:2d:b9:43:c1:ff:a3:9c:
47:d9:69:61:16:85:29:c6:9b:8d:0a:14:55:3a:d9:38:cf:02:
f2:91:54:d0:bd:b7:d4:19:c8:15:2c:8f:56:3c:ff:36:50:8b:
06:0c:2c:3a:18:43:b6:ad:c8:a5:0e:37:a9:c8:00:a8:74:38:
49:82:59:13:51:73:12:c8:c9:8a:87:9f:ea:24:51:ac:92:25:
99:32:e2:77:f9:5c:bf:f7:b9:28:e6:fb:ab:50:13:1d:d0:5f:
8a:9a:a4:75:2a:9f:2f:45:e9:b9:fa:00:44:fa:c2:fd:7b:66:
30:88:a4:c4:7f:84:75:53:89:48:a6:2e:ab:2f:86:57:e3:66:
06:0a:93:34:33:b2:74:88:94:75:9f:2c:1d:c7:d0:a7:d0:20:
14:b6:50:71:ae:23:10:ba:ea:3a:b2:5d:15:6b:14:70:2b:a5:
35:96:90:2a:7d:6c:6e:c0:1b:fe:ce:e8:ea:b8:df:e9:1e:fd:
57:3f:c3:3c:f0:09:d6:04:55:5c:f1:6d:f2:e6:d0:9b:d2:0d:
ad:3a:5c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:34 2024 by rpki-client on console-fra.rpki-client.org