Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d5ezTGYd9CEo6Yxi7jE91rgooZM.roa
File: d5ezTGYd9CEo6Yxi7jE91rgooZM.roa (raw, json)
Hash identifier: 7LdPmxOUDwxpkkmVN6Av2U/NyaDZ960Tolb5O5HFgmY=
Subject key identifier: 77:97:B3:4C:66:1D:F4:21:28:E9:8C:62:EE:31:3D:D6:B8:28:A1:93
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 151107F9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d5ezTGYd9CEo6Yxi7jE91rgooZM.roa
Signing time: Thu 09 Jun 2022 11:10:03 +0000
ROA not before: Thu 09 Jun 2022 11:10:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204750
IP address blocks: 2a0e:97c0:3d0::/48 maxlen: 48
2a0e:97c0:3d1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353437689 (0x151107f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 9 11:10:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7797b34c661df42128e98c62ee313dd6b828a193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6b:52:93:49:84:1b:ea:f8:1b:cf:f1:80:3b:
cb:f7:bd:82:81:19:47:7d:59:96:d1:85:c8:ee:69:
1f:f1:76:bf:ed:e5:4b:0c:7f:7e:9c:14:7d:72:23:
ba:ec:1b:2a:4a:f2:0d:80:17:89:a9:95:69:61:45:
34:76:05:37:ce:bd:17:41:80:1e:2a:82:ec:8e:7a:
6e:fe:e7:4f:5a:49:3b:b1:14:39:5c:65:ac:71:79:
c2:ff:f8:0c:1d:3c:12:d9:c2:a4:62:7d:24:dc:13:
66:d6:d9:46:6f:11:ad:c9:97:00:bc:36:26:e0:d5:
3f:09:1a:36:86:f5:4f:a2:93:d7:a2:0f:7a:05:c9:
89:5b:8d:07:f2:5c:27:62:b0:d8:1f:ff:af:6a:2c:
f8:95:ba:61:d5:ba:d9:77:91:bd:62:43:21:64:f5:
57:d5:c7:29:ec:ee:f7:2a:e1:ed:7c:d9:86:0e:ce:
75:91:fb:83:e7:18:49:ca:ca:5b:70:dd:01:e4:ea:
6a:dd:95:c4:d9:64:2a:3f:d9:46:b2:c3:51:90:7f:
3a:a0:2b:fd:7f:ec:cc:3f:7d:aa:d1:37:cc:ab:06:
4c:e7:7c:78:1a:19:9f:17:d2:ee:9a:8c:de:cc:34:
91:b4:fa:49:6c:8a:da:28:22:0f:21:4e:36:93:b6:
db:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:97:B3:4C:66:1D:F4:21:28:E9:8C:62:EE:31:3D:D6:B8:28:A1:93
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d5ezTGYd9CEo6Yxi7jE91rgooZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:3d0::/47
Signature Algorithm: sha256WithRSAEncryption
cb:74:77:70:32:fd:dd:3d:20:12:c4:8e:83:09:70:25:43:7d:
b0:6f:53:7e:f6:10:a1:9c:31:fd:5a:98:57:da:3d:88:d4:14:
8a:c0:e5:44:cc:06:36:70:e3:7b:11:7c:4b:20:c5:e5:9a:7b:
13:1b:02:96:18:4d:4b:7b:3e:a6:dd:d7:81:a9:fe:a2:92:61:
62:12:0f:a4:62:f6:4d:c6:e5:d6:a6:6c:82:15:bc:4b:40:ac:
f4:dd:0e:22:e6:80:aa:3b:6d:f3:a9:48:8b:c8:c0:85:78:42:
e8:94:e3:5e:1e:fd:ef:20:61:47:3b:3f:fb:44:49:9b:2a:2e:
12:77:56:d9:9c:45:4a:aa:21:a0:79:71:2f:09:88:8c:e0:0b:
0c:2a:b4:ed:9e:c5:9f:6d:3c:de:e5:36:c1:cd:ad:2f:a2:03:
d5:3c:3c:1a:99:5f:ae:35:28:b5:ce:d1:59:1a:4d:d6:ef:54:
f2:83:ca:4b:7f:d4:2b:43:9c:b2:84:a3:08:48:61:73:c3:3a:
8e:89:d1:c3:14:06:84:32:be:98:41:d4:2e:6d:da:21:08:38:
43:b2:ca:bc:3b:50:9d:02:13:5c:04:ab:8f:2b:d9:d9:4f:10:
f1:b0:74:74:fb:b4:a4:22:2b:b7:ef:2a:56:96:41:04:44:fe:
02:18:3e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org