Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_lzbecAG7aC3Ga1pJcB_Nq0evnE.roa
File: _lzbecAG7aC3Ga1pJcB_Nq0evnE.roa (raw, json)
Hash identifier: EYo0TQ05lRlBTz0c5Un7IO4X2CpqxjIx3LW1WyiUYu4=
Subject key identifier: FE:5C:DB:79:C0:06:ED:A0:B7:19:AD:69:25:C0:7F:36:AD:1E:BE:71
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10DF7E63
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_lzbecAG7aC3Ga1pJcB_Nq0evnE.roa
Signing time: Sat 01 Jan 2022 09:05:45 +0000
ROA not before: Sat 01 Jan 2022 09:05:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212292
IP address blocks: 2a10:2f00:15c::/48 maxlen: 48
2a0e:b107:e70::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283082339 (0x10df7e63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe5cdb79c006eda0b719ad6925c07f36ad1ebe71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2f:0c:15:1c:04:9e:c6:fa:64:c4:ea:6b:19:
a9:35:e3:b9:b3:65:5a:c1:11:cc:93:8a:36:57:0f:
67:10:54:93:94:9e:06:09:c2:41:39:06:c7:45:4a:
b1:62:2a:2a:2f:64:c8:31:fb:f8:1d:0d:b6:26:42:
6c:8a:da:7f:b2:25:05:32:61:e4:c9:11:b1:fe:fb:
3c:3f:1d:07:10:f8:cc:22:c1:6f:99:60:c2:ba:e7:
70:ed:8a:6a:4f:53:c6:ca:30:6a:a4:8f:f8:25:88:
08:f6:ea:d8:ca:aa:28:07:6f:09:67:9c:ed:1b:78:
2f:42:53:83:64:2a:2c:f0:e7:65:04:50:36:6a:26:
c6:ef:f4:9c:63:5c:b2:ea:23:a0:88:fd:ef:cd:3a:
9d:86:eb:64:bb:6e:af:e4:d7:72:11:39:54:06:da:
7c:28:4b:39:47:03:33:67:25:3b:7a:01:ae:b1:ae:
96:99:2f:fb:5f:a6:6a:b9:0a:e6:63:e3:8d:23:71:
da:f1:b6:16:cf:97:ac:69:bb:57:ef:74:ba:4d:68:
2c:04:29:67:70:07:52:74:46:ae:f0:bf:78:07:84:
76:f8:50:0c:cb:8c:2f:66:12:94:2d:c9:b7:a2:03:
12:b5:bd:60:5e:20:e4:ff:77:8a:75:4c:cd:f6:bb:
5d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:5C:DB:79:C0:06:ED:A0:B7:19:AD:69:25:C0:7F:36:AD:1E:BE:71
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_lzbecAG7aC3Ga1pJcB_Nq0evnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:e70::/44
2a10:2f00:15c::/48
Signature Algorithm: sha256WithRSAEncryption
a4:37:32:ef:c2:10:e0:f6:6d:d3:0c:53:c5:50:22:df:cd:0d:
b1:d2:50:8b:8a:f1:9a:d0:27:b7:d4:ba:57:a2:eb:59:e3:67:
3e:ed:a8:f1:b2:d6:d4:4f:dc:cd:af:2d:2c:1b:87:98:ae:90:
2f:a5:04:c6:a3:ef:7e:7e:35:85:38:ca:79:07:8e:ef:0b:e8:
b2:9a:37:2e:99:9c:bd:21:57:c2:57:87:10:6b:35:0a:be:da:
ab:b3:67:9f:5b:29:c9:9b:22:af:65:68:c5:2c:7d:2f:c1:99:
2b:f0:21:24:7e:9f:92:22:7c:e1:bc:ed:ef:f8:14:f2:89:18:
02:1e:01:a3:e3:89:72:35:b1:2d:ea:f6:aa:de:8b:15:dd:7a:
38:91:9f:c6:b3:a8:fb:0c:81:64:e8:f2:10:89:29:0b:bb:c5:
c6:23:5c:28:c0:f5:4e:b7:6d:3b:f5:ae:4a:a7:ce:c2:be:f0:
27:26:90:dc:9b:ba:16:31:89:9c:40:15:46:b2:57:42:d0:b1:
01:5c:6a:41:ce:6f:4d:ec:b5:99:08:5f:88:fa:e9:f1:0f:08:
ad:34:bb:09:cd:c8:c5:f5:66:be:ed:f8:a7:80:e2:de:10:05:
bd:fc:a9:93:c0:8c:3b:97:df:07:26:25:96:26:5b:0d:25:ec:
08:74:21:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org