Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aiR9m-wmbE2PasWXK_6JkWCBnGg.roa
File: aiR9m-wmbE2PasWXK_6JkWCBnGg.roa (raw, json)
Hash identifier: NGesBcZe/z0icFkFTRZNjvAaMe98S/SxIKEEjf1xveo=
Subject key identifier: 6A:24:7D:9B:EC:26:6C:4D:8F:6A:C5:97:2B:FE:89:91:60:81:9C:68
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12FEAC26
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aiR9m-wmbE2PasWXK_6JkWCBnGg.roa
Signing time: Sun 20 Mar 2022 00:24:20 +0000
ROA not before: Sun 20 Mar 2022 00:24:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208529
IP address blocks: 2a0e:b107:178a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 318680102 (0x12feac26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 20 00:24:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a247d9bec266c4d8f6ac5972bfe899160819c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d9:c1:19:21:31:84:95:5d:96:8d:72:9a:07:
9f:c5:7a:58:05:74:bb:a3:ba:c1:8d:2a:a5:ed:91:
d3:41:0f:06:ea:28:5e:63:ec:d2:2e:5a:a5:7f:29:
2b:3f:fc:51:95:bc:4f:55:cc:b1:e0:95:64:1f:9f:
d5:0d:d4:ee:30:87:26:e3:3a:b7:20:31:f2:87:39:
5c:9f:5a:eb:b6:69:7d:77:ae:5e:54:de:e9:fc:45:
ba:0b:60:46:7f:e0:84:77:7b:cb:03:7d:62:7b:1c:
d6:60:a8:c4:f6:b7:74:72:6d:c0:d2:74:50:db:f5:
d3:a4:b4:83:18:55:2b:e6:23:61:1e:77:86:a7:c6:
36:2f:b1:4c:f0:83:80:71:57:56:62:ad:c4:76:d8:
d6:a5:bb:82:93:f9:21:df:26:12:0c:2a:26:e7:e1:
63:37:b6:de:aa:92:f4:ed:6f:f0:35:04:de:7a:9a:
35:64:22:0d:fa:85:90:e2:ce:c9:6f:7e:6d:d5:b5:
1b:f0:57:05:96:16:de:2b:45:f9:8e:11:fd:91:12:
24:1e:35:53:6a:b0:0c:d1:d9:8a:09:da:20:df:83:
9b:8e:a5:fa:2d:1f:79:34:ec:24:76:10:55:44:ef:
7e:cb:f8:0e:99:75:0a:9c:bd:f8:13:5c:d1:3f:74:
d6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:24:7D:9B:EC:26:6C:4D:8F:6A:C5:97:2B:FE:89:91:60:81:9C:68
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aiR9m-wmbE2PasWXK_6JkWCBnGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:178a::/48
Signature Algorithm: sha256WithRSAEncryption
c8:43:e9:ae:4a:0a:ff:40:10:38:76:ea:48:91:f5:74:0f:b3:
d7:70:55:85:65:e0:65:67:a4:c4:88:b8:38:18:2b:5a:2f:47:
17:07:9b:a7:90:67:21:e6:75:e8:66:a7:24:3d:03:99:9c:7b:
cd:3a:e1:8b:26:5f:30:59:28:24:4d:71:c4:d8:0c:28:d4:d5:
3b:29:b6:d3:47:9f:fb:8c:76:ef:11:30:ea:c8:78:50:97:3c:
0b:cc:ad:39:dc:3c:2f:1d:33:eb:ee:23:a6:71:7b:62:6e:cc:
d4:a3:c1:70:f9:4f:1d:d4:ce:0b:46:09:8a:32:bb:d8:cf:f5:
72:b3:3d:44:56:73:ee:e7:d9:94:2b:64:2e:45:37:b0:3f:13:
bc:71:ee:21:e9:cb:4a:03:57:5b:e4:a8:40:a5:61:22:48:8e:
ba:08:1d:3c:fb:1a:27:b9:32:12:17:be:91:7b:ba:05:a6:9f:
ff:2b:42:7c:13:e8:81:ad:f5:dd:a5:c9:2a:cd:08:91:ad:27:
d4:d2:21:db:5e:73:57:c5:0e:34:e5:ca:de:e2:ca:76:b1:a7:
d8:a2:ea:21:91:7c:99:f4:be:7e:23:30:99:c8:60:ae:2b:be:
bf:b7:b6:3f:9a:4a:f9:fe:1a:16:0b:7f:a6:77:d7:65:42:62:
9b:24:f3:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org