Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_ks1wkeT9I1ESzzLz1Ud1orMfUs.roa
File: _ks1wkeT9I1ESzzLz1Ud1orMfUs.roa (raw, json)
Hash identifier: TbBuLo9gY8Ptf2W8j7BaE2nyjqa+m4U0pGO4kjHWKoA=
Subject key identifier: FE:4B:35:C2:47:93:F4:8D:44:4B:3C:CB:CF:55:1D:D6:8A:CC:7D:4B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12CAB5D0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_ks1wkeT9I1ESzzLz1Ud1orMfUs.roa
Signing time: Wed 09 Mar 2022 13:45:21 +0000
ROA not before: Wed 09 Mar 2022 13:45:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208548
IP address blocks: 2a0e:b107:1408::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315274704 (0x12cab5d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 9 13:45:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe4b35c24793f48d444b3ccbcf551dd68acc7d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ac:d5:c2:df:e2:7e:23:26:d8:4e:2c:24:8c:
d5:38:69:78:97:89:da:bb:61:16:1e:50:4d:7d:74:
54:eb:2b:02:35:0a:6c:24:f7:0c:8c:f9:4e:37:f6:
a6:fd:7e:63:98:24:a7:37:29:4e:9c:fa:9d:e4:ad:
49:c3:6e:45:7e:d2:93:5f:70:af:61:82:91:1d:4f:
76:63:85:30:26:85:d5:73:c8:e7:95:87:18:43:c4:
de:66:e1:f0:74:02:2c:68:1d:49:72:ea:a4:ec:7c:
47:55:bb:23:9d:39:2c:33:d9:ad:06:16:69:eb:e4:
04:62:62:56:74:1d:fb:65:dc:b1:ef:0f:87:08:3a:
87:4d:71:f5:22:3f:c2:a7:3f:a5:d8:6b:33:5c:e3:
99:63:09:60:41:eb:e4:9a:4d:4b:b0:80:04:2d:8d:
aa:b0:37:55:93:33:b7:46:8e:c2:2a:0f:6d:d5:4a:
25:56:22:82:33:8b:73:db:2b:91:60:9b:a3:31:12:
a3:ac:f9:b7:6a:21:f2:0f:cc:d8:93:09:fa:4b:0b:
a9:b9:92:07:34:4f:63:09:95:3c:be:97:7d:b4:43:
ad:cc:2b:5a:1e:a8:31:51:90:c2:ee:4e:71:bb:90:
47:a8:45:27:38:36:c5:a2:a6:95:92:07:0b:4e:46:
be:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4B:35:C2:47:93:F4:8D:44:4B:3C:CB:CF:55:1D:D6:8A:CC:7D:4B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_ks1wkeT9I1ESzzLz1Ud1orMfUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1408::/48
Signature Algorithm: sha256WithRSAEncryption
19:bc:1e:6d:b8:96:b4:9a:8a:33:02:67:ab:44:08:3d:15:e5:
ce:d0:03:bd:24:84:b9:e7:4d:f3:43:2c:87:b4:16:15:29:4d:
a0:b7:b8:fc:63:bd:75:af:b7:b4:9c:a4:10:5b:13:80:43:be:
34:4f:55:cd:67:ec:64:c5:cc:b6:7e:df:49:5e:5d:b2:9e:60:
7d:30:0b:30:a0:42:6a:52:b4:b7:22:ff:4f:91:fa:54:9f:f2:
70:2e:5f:e1:fb:55:d9:eb:fa:b8:91:7b:06:97:c9:fb:47:75:
d4:5d:3f:2e:1b:0d:c8:ea:71:7c:0f:01:df:44:9e:be:89:34:
14:dc:b1:85:e9:6b:1a:f0:5b:4e:0a:49:8e:88:91:2c:30:9b:
a2:ef:00:ab:cb:fe:c9:bc:b2:49:6d:18:94:81:5b:fa:34:fa:
7e:e2:88:60:ab:1c:f2:0d:31:f6:59:08:08:02:0e:94:96:fa:
23:1e:28:53:a6:6c:0a:77:2a:48:93:91:a7:80:92:56:b2:90:
03:c1:fc:ce:af:4d:d4:3f:ce:1f:7d:47:81:a9:c1:a0:72:f2:
94:d0:72:e5:9e:c2:9e:f3:30:b2:75:41:be:70:65:c4:8f:80:
aa:5e:3d:8c:7c:c4:70:17:d1:8d:a6:dc:65:e4:e4:a2:44:9f:
50:21:8b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org