Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/c-ZTe3nnh9gm0kU8VDZJ46F4M7w.roa
File: c-ZTe3nnh9gm0kU8VDZJ46F4M7w.roa (raw, json)
Hash identifier: I9tMb0vqVzNkhcv419m6pU77Nkzr9snzZQjPfmNmnH8=
Subject key identifier: 73:E6:53:7B:79:E7:87:D8:26:D2:45:3C:54:36:49:E3:A1:78:33:BC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10EF3C35
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/c-ZTe3nnh9gm0kU8VDZJ46F4M7w.roa
Signing time: Sat 01 Jan 2022 09:05:56 +0000
ROA not before: Sat 01 Jan 2022 09:05:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213045
IP address blocks: 2a0e:b107:1030::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284113973 (0x10ef3c35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73e6537b79e787d826d2453c543649e3a17833bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:49:0d:bc:b0:57:8d:b0:1d:b8:27:fa:54:da:
29:e8:36:df:ef:7d:2a:12:35:bf:05:76:6b:ec:38:
bc:e5:09:cc:a5:0b:ae:24:31:cb:5a:c8:e1:3d:21:
a8:9b:8b:80:3b:fb:32:e2:0d:d8:45:e9:95:f6:26:
fd:88:61:0a:a0:65:75:44:0c:c9:92:32:3e:b5:a3:
e8:04:57:d5:12:7f:09:6d:bd:3f:06:99:aa:49:66:
73:45:c2:bb:cd:4c:b9:c1:e3:f4:38:5b:5e:27:b6:
a0:5a:e5:46:1c:3b:58:72:50:2c:ef:98:e0:54:98:
a9:87:37:de:03:16:00:2d:37:fe:42:f6:e9:25:70:
75:90:35:09:4e:15:79:a7:2a:0a:d6:51:5a:8d:11:
e1:ff:c6:dc:30:3c:f5:d4:ba:8a:81:b2:c8:01:10:
c6:27:7c:3d:16:20:bb:5c:41:4a:09:3f:8c:8f:e0:
e1:96:54:9c:f0:c9:3e:98:59:a8:1a:77:ec:d2:27:
ac:6b:7e:47:50:bf:4e:eb:87:4c:70:03:cb:00:62:
2e:48:9f:2d:3b:db:c6:41:8f:b2:b6:b2:32:b1:94:
27:d2:93:ac:99:2d:8c:fb:7d:ff:ea:63:0b:57:8d:
28:b2:93:36:35:7d:b0:16:31:5f:33:19:06:26:c0:
a1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E6:53:7B:79:E7:87:D8:26:D2:45:3C:54:36:49:E3:A1:78:33:BC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/c-ZTe3nnh9gm0kU8VDZJ46F4M7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1030::/48
Signature Algorithm: sha256WithRSAEncryption
bb:90:21:c5:0b:90:6f:94:35:45:20:36:ad:10:b6:c7:7c:f6:
4d:12:b7:a1:32:d6:14:13:d8:c8:0c:27:12:5a:37:26:bc:63:
6a:d1:79:9c:c5:e6:85:8f:b6:a4:ae:00:28:91:3d:85:7e:5a:
a0:00:4e:d3:85:21:16:97:8d:83:19:c2:14:e2:40:9c:32:1b:
95:f2:42:1c:a7:b5:af:d7:72:db:19:fc:c3:be:0e:c3:4a:f7:
f0:35:6b:c5:11:18:e8:55:87:f6:57:cf:b0:cd:08:8d:4f:76:
2f:b5:42:6a:11:07:d8:f5:46:44:c7:0b:6d:f5:9e:d7:d0:40:
62:36:7b:07:2e:d9:76:37:7e:43:2c:f4:51:c4:1a:61:69:63:
fe:2f:2b:82:fe:85:2f:ac:65:02:14:22:66:6b:b4:06:b8:b3:
ad:60:08:06:45:35:70:9f:80:f5:6e:13:9f:1d:7d:63:82:90:
dc:84:2a:54:af:4d:b2:a7:37:fa:5e:b9:a7:f7:73:fe:78:39:
e0:cf:79:1c:c4:1d:42:0a:2b:70:e7:92:23:e1:cb:b9:1d:49:
8d:04:98:c0:18:88:f0:b2:cd:36:3d:1c:62:bc:dd:da:2a:b8:
b1:03:36:a1:92:d2:b3:87:a8:a8:97:97:bb:0f:2c:9d:df:02:
72:e0:62:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org