Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_s-A7ZG6yUV_i-JTeEBIWA5XS7s.roa
File: _s-A7ZG6yUV_i-JTeEBIWA5XS7s.roa (raw, json)
Hash identifier: twATgoK6wwcJQ5Fye98IL180a3j+7VYMDawjrR585JU=
Subject key identifier: FE:CF:80:ED:91:BA:C9:45:7F:8B:E2:53:78:40:48:58:0E:57:4B:BB
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13253DCA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_s-A7ZG6yUV_i-JTeEBIWA5XS7s.roa
Signing time: Thu 24 Mar 2022 12:24:24 +0000
ROA not before: Thu 24 Mar 2022 12:24:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209105
IP address blocks: 2a10:2f00:17f::/48 maxlen: 48
2a0e:b102:180::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321207754 (0x13253dca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 24 12:24:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fecf80ed91bac9457f8be253784048580e574bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:97:5d:00:d9:26:25:ca:06:26:ba:1d:72:37:
a3:6b:4d:55:76:ad:b6:28:14:63:a9:de:32:74:f8:
3d:7d:df:d4:fe:08:6c:96:a2:1c:97:37:ab:f7:00:
02:98:34:8b:3f:84:e4:d9:03:0d:c5:bc:ee:b9:c0:
12:11:69:23:97:f6:d4:f4:18:0e:26:58:78:5a:ae:
0d:08:c0:c7:06:24:26:08:da:ad:9c:e4:93:d6:b9:
c1:01:de:6d:cc:1c:dc:3b:c6:aa:f0:4b:76:a0:38:
61:4a:e5:c1:9c:e0:6a:89:b1:7b:5e:e4:5c:9d:b7:
e0:33:57:03:59:a4:76:0b:5f:4d:6b:63:2a:dd:ef:
d6:a5:1a:3a:94:62:2a:07:3e:8e:6f:55:5b:dd:95:
80:a0:79:cc:fe:ba:e4:52:07:ce:14:d4:cf:14:4e:
f0:9c:da:87:ac:65:1d:74:29:6d:ce:1b:63:1a:f8:
ee:8c:21:43:0c:b5:57:9d:52:b9:24:2d:f9:c4:52:
2a:b1:e9:0c:fb:a6:f3:ce:28:b7:ed:c3:bb:e3:fc:
22:f3:28:4a:2a:8f:ea:0f:81:b7:96:a6:01:38:cc:
d4:c8:56:27:89:58:f0:58:e8:0e:e3:82:20:34:82:
91:f0:53:f0:7d:61:76:d9:a2:45:59:2a:0f:c0:02:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:CF:80:ED:91:BA:C9:45:7F:8B:E2:53:78:40:48:58:0E:57:4B:BB
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_s-A7ZG6yUV_i-JTeEBIWA5XS7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b102:180::/44
2a10:2f00:17f::/48
Signature Algorithm: sha256WithRSAEncryption
36:56:34:f3:b7:ff:cc:c8:a7:bb:e0:52:47:b6:73:ff:2d:03:
df:cd:46:3a:8d:b6:8d:45:bb:50:73:d2:ae:0f:80:79:78:66:
05:d3:7c:bf:79:a9:49:85:e7:a0:b6:8f:39:db:8c:9b:7b:b9:
e2:0e:53:7f:e9:b4:11:96:f6:c0:f8:7b:72:da:83:e3:5d:d7:
24:e7:3f:9e:41:4f:11:00:0b:39:a0:7f:58:81:f7:d0:68:ab:
dd:6f:8d:b6:ee:35:04:a1:0f:40:1f:c2:a4:91:7f:a2:b4:95:
da:d0:20:b1:d8:cd:22:6f:15:aa:4b:7b:55:9d:0e:d4:21:0a:
b2:19:8e:e6:df:e7:44:b3:5a:c7:b8:d2:76:d8:f8:50:ca:da:
03:78:1f:58:33:8f:c7:f0:d3:94:27:81:3d:a3:00:ef:8f:9f:
b9:f2:7d:6d:42:d8:6c:f0:9b:0e:bf:cc:5a:ac:22:0a:6c:8b:
5f:db:ea:31:f9:12:17:05:87:9a:f6:e0:21:8b:f8:20:12:61:
e8:42:73:7d:ab:dd:4c:37:a1:cc:8a:89:c9:74:01:3b:86:57:
f9:bd:6b:4a:7d:5f:74:5c:6d:1e:e9:c5:7f:be:9a:bb:e6:1a:
ad:84:cf:02:53:f4:7c:1a:5a:4d:e8:b2:dc:61:be:f0:f5:2b:
ba:03:44:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org