Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aLwWgsYU5EXbrz61zzPdvCj1Yv4.roa
File: aLwWgsYU5EXbrz61zzPdvCj1Yv4.roa (raw, json)
Hash identifier: 6TTj3VtpAlDzXjAvvEX0U+F6LJSE1tM5ssBPVY3kI5w=
Subject key identifier: 68:BC:16:82:C6:14:E4:45:DB:AF:3E:B5:CF:33:DD:BC:28:F5:62:FE
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13FE56C9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aLwWgsYU5EXbrz61zzPdvCj1Yv4.roa
Signing time: Sun 24 Apr 2022 19:53:33 +0000
ROA not before: Sun 24 Apr 2022 19:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212895
IP address blocks: 2a0e:b102:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335435465 (0x13fe56c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 24 19:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68bc1682c614e445dbaf3eb5cf33ddbc28f562fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:24:cb:38:64:85:a6:59:d3:6e:b8:d6:57:56:
4d:18:9e:f9:16:ac:ac:4f:6e:a4:74:68:b0:76:3b:
b3:93:d9:20:4e:6a:ff:65:61:b4:64:89:56:5e:01:
05:e0:05:c1:18:dc:9e:79:be:00:7d:61:06:1e:c0:
3e:c8:18:9b:1e:43:3a:fa:90:5f:5d:d1:9d:33:01:
30:29:60:2e:75:82:9a:9a:df:96:ec:2f:d4:ab:e1:
d1:36:0b:ba:c8:33:71:45:f0:66:e3:b7:e6:34:15:
8d:99:d9:40:53:7c:95:46:18:ea:c9:f4:ac:aa:f8:
a3:cd:47:07:ec:76:9f:ee:27:0a:b0:2b:69:82:b1:
40:30:9b:21:9f:a2:7a:18:2a:5b:8a:95:2a:ff:23:
85:ce:64:e0:07:ec:ea:74:10:46:30:70:12:bc:4b:
24:90:4d:c6:e5:dc:88:42:05:db:8e:0b:79:76:ff:
5e:78:04:f4:b0:02:fd:40:33:7b:94:91:8c:63:0b:
ea:1b:87:c0:84:a2:30:b3:34:e9:b0:e9:6c:b5:01:
8f:62:33:aa:29:80:af:bb:c9:e3:39:24:b3:f3:a9:
40:c6:d3:25:10:88:4d:9b:26:68:7b:ed:30:f9:de:
d4:83:60:dc:09:d9:44:83:22:80:7a:0b:07:4c:19:
64:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BC:16:82:C6:14:E4:45:DB:AF:3E:B5:CF:33:DD:BC:28:F5:62:FE
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aLwWgsYU5EXbrz61zzPdvCj1Yv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b102:100::/44
Signature Algorithm: sha256WithRSAEncryption
25:80:29:f7:c3:ca:21:8a:d5:8d:6d:cd:3b:b0:5d:6a:4e:64:
c1:5f:d4:a3:81:5c:73:f0:95:11:36:55:c5:40:8a:fe:15:8a:
b8:7e:ed:02:07:e3:6e:93:08:81:8e:d0:56:7f:4a:9c:3f:b0:
26:2b:11:9a:b4:44:3f:97:eb:6a:83:29:04:28:47:db:e2:39:
c8:6e:d1:2d:1a:ff:be:96:a0:d9:10:76:01:b6:b3:80:dd:b0:
ce:4e:f3:6b:01:6a:b7:22:7b:c2:d1:9b:05:82:42:79:ca:b2:
5c:43:bc:e6:22:01:e3:c6:42:30:47:ff:68:66:b4:53:5b:26:
ff:af:ee:d6:b8:51:90:b9:52:59:7c:36:18:87:92:ed:cb:1c:
cd:d8:7b:48:c0:f1:85:cf:8c:19:9f:c6:87:b2:ac:cf:ec:d2:
7f:6a:8d:16:d9:ce:f2:0d:c7:f7:6c:66:ee:50:86:4d:31:19:
5b:a3:14:15:58:37:1e:f1:45:42:2b:74:c9:36:4d:5e:ac:dd:
8c:8f:5e:bc:15:35:63:84:fd:be:a1:8b:86:bc:f1:c8:e3:a4:
e2:d8:f1:15:09:ca:a0:08:28:d2:8c:bb:16:b6:70:44:44:b0:
20:c1:47:09:85:41:4e:65:2a:4f:21:1c:e0:3d:3a:07:c1:1d:
f6:9f:01:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org