Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/b2apuPfCAwTbUeWeJUnMqaj5zvg.roa
File: b2apuPfCAwTbUeWeJUnMqaj5zvg.roa (raw, json)
Hash identifier: Rhs9gbkd+SGwFWUZOByi2f3O8/CX/ign+0GixaBrFNE=
Subject key identifier: 6F:66:A9:B8:F7:C2:03:04:DB:51:E5:9E:25:49:CC:A9:A8:F9:CE:F8
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 15537900
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/b2apuPfCAwTbUeWeJUnMqaj5zvg.roa
Signing time: Mon 27 Jun 2022 11:06:48 +0000
ROA not before: Mon 27 Jun 2022 11:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204693
IP address blocks: 2a0e:b107:1ad0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357792000 (0x15537900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 27 11:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f66a9b8f7c20304db51e59e2549cca9a8f9cef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5e:45:e2:7f:84:7a:d3:d4:23:88:ac:26:1e:
39:ab:28:70:9f:c0:58:4f:fc:4f:a7:d7:6c:2e:49:
36:a7:4f:44:91:a1:a1:10:4f:fa:5e:70:3c:2f:b6:
46:32:6a:2d:e6:98:fe:1e:82:98:09:f8:04:0b:ad:
1c:15:42:43:c7:73:59:3e:ad:99:3a:d2:69:80:1a:
d0:2f:f5:97:c2:40:2d:1c:d5:de:34:72:23:32:21:
b9:38:f0:ad:82:74:9f:b5:7d:7f:84:36:08:96:c3:
02:f3:6d:63:a3:0b:7c:7f:66:36:2c:d8:15:fe:16:
a5:7d:d2:ec:6e:eb:2d:29:bb:33:19:08:d5:6d:59:
58:de:88:6e:b7:23:92:a3:cb:1d:46:f5:a2:99:18:
f6:07:41:5a:93:42:b9:de:1d:82:8e:48:46:64:36:
3e:4c:92:1f:5d:88:35:8b:59:ce:f4:b2:56:f1:b4:
16:fb:d1:37:ba:a7:22:6b:82:d2:93:1c:27:86:e8:
c8:da:c0:ed:b5:a0:78:50:8f:c2:63:d1:ec:c8:15:
cb:49:47:b9:64:51:68:6c:39:fc:d7:59:dd:bd:bc:
59:13:24:37:86:e4:4e:e5:52:22:21:38:b6:2c:3e:
f6:21:37:dc:97:c9:f0:c4:38:f1:45:21:d3:17:78:
c1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:66:A9:B8:F7:C2:03:04:DB:51:E5:9E:25:49:CC:A9:A8:F9:CE:F8
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/b2apuPfCAwTbUeWeJUnMqaj5zvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1ad0::/44
Signature Algorithm: sha256WithRSAEncryption
a2:2e:5c:10:46:26:dd:81:c7:3e:8a:fb:a0:fc:c0:fc:3e:e5:
44:69:2e:2e:09:65:53:fb:5d:5a:e5:1f:ad:f0:54:b1:66:66:
bf:8d:c2:2b:b6:b9:00:0b:4a:91:9a:a3:ce:59:0c:f1:98:a1:
bb:dc:04:4d:23:43:c8:97:25:14:9e:33:97:fc:74:3b:5a:25:
22:ed:e2:af:d8:7a:d4:a3:2a:5e:53:6e:4c:18:e5:e3:b7:1b:
d2:8b:f4:a2:d4:95:0f:7c:5d:c7:89:fe:1c:f1:5d:2f:25:b2:
32:35:68:07:d9:61:0f:eb:46:fe:45:e7:07:bf:1a:0f:03:69:
37:96:fb:d6:5d:af:0e:27:b5:71:48:46:00:65:db:8f:4c:6a:
56:07:5f:b4:0b:28:64:c8:63:4d:43:5d:59:93:05:e5:3d:69:
4c:1f:d0:c7:16:31:1a:f0:55:bc:ee:42:67:40:67:93:60:99:
a4:14:ea:c7:e0:7e:61:4f:a2:26:24:b3:e9:f8:ef:3b:a8:93:
a9:53:08:7c:63:50:b4:b0:ff:e6:e9:a7:fa:7e:c5:cb:04:a0:
1a:e1:6b:10:b2:0c:c8:1d:31:63:54:3d:07:82:22:22:1c:3d:
53:8d:bf:fe:1f:0b:b6:d2:42:30:3c:31:cd:d7:ac:93:3c:bc:
a8:09:7e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org