Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d6Jx05FqB0ap1cv5GeyyKDLX22I.roa
File: d6Jx05FqB0ap1cv5GeyyKDLX22I.roa (raw, json)
Hash identifier: zPW1a3+clErYHVTaBqFtF2Xl+mJ6nz3Wb9/+TbFj8Is=
Subject key identifier: 77:A2:71:D3:91:6A:07:46:A9:D5:CB:F9:19:EC:B2:28:32:D7:DB:62
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184EA41F6DE0825F6102A3473595CD64792
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d6Jx05FqB0ap1cv5GeyyKDLX22I.roa
Signing time: Wed 07 Dec 2022 01:45:02 +0000
ROA not before: Wed 07 Dec 2022 01:45:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212164
IP address blocks: 2a0e:b107:1d20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ea:41:f6:de:08:25:f6:10:2a:34:73:59:5c:d6:47:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 7 01:45:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77a271d3916a0746a9d5cbf919ecb22832d7db62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:06:3a:96:f3:47:f7:a3:21:4d:d3:64:c1:61:
58:10:98:0a:d5:40:13:3a:a5:2e:3a:e8:08:c9:81:
ed:46:2e:9f:4e:b5:a4:6d:7b:b2:e2:91:da:82:a6:
17:ad:8e:82:b8:4f:dc:e8:ed:4a:57:c2:cb:2e:2f:
d8:7f:79:28:ec:37:69:c4:38:37:d2:26:68:14:ff:
b3:3f:90:57:11:e2:1a:e5:22:05:76:cd:7c:61:fd:
d0:11:0e:b5:9c:80:fa:30:d2:aa:47:1b:32:d1:d3:
2e:c1:00:1a:be:5c:83:e2:05:a2:bc:14:05:e0:8e:
72:4d:c2:3b:63:46:1b:10:62:42:46:9c:67:f4:ce:
80:72:b1:ec:a6:47:91:29:dd:d0:34:9f:f7:e6:7d:
97:d2:33:6d:c1:35:66:e4:77:52:05:c4:9f:ef:ea:
f2:96:6d:f7:41:9b:00:47:78:e9:e5:31:e8:81:e7:
89:e8:d2:c1:05:ba:61:53:98:20:11:da:b1:c5:ed:
93:30:a0:4e:2f:99:65:a7:8f:08:aa:42:7f:76:a1:
ca:13:ad:09:2f:73:4f:ef:2d:08:72:9a:1d:50:2f:
1d:28:8b:0a:19:f7:f3:67:23:81:5f:71:d7:20:9e:
1d:3b:a0:e2:10:51:f0:cb:11:d3:77:a3:37:5a:6b:
32:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A2:71:D3:91:6A:07:46:A9:D5:CB:F9:19:EC:B2:28:32:D7:DB:62
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d6Jx05FqB0ap1cv5GeyyKDLX22I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1d20::/48
Signature Algorithm: sha256WithRSAEncryption
51:ee:8d:e6:97:2f:bb:70:71:80:04:f1:6e:94:c6:fa:90:4b:
0a:41:83:00:df:b2:fa:11:e0:c3:b3:b4:d9:35:5c:2e:63:25:
0d:60:99:bf:43:6f:13:1d:bc:61:d0:1c:c7:91:76:45:1b:b1:
51:95:73:71:91:ec:93:27:9a:33:b8:33:a2:ca:41:06:f8:75:
41:ed:db:48:13:09:82:63:82:dd:b2:56:86:e1:bb:42:56:88:
a7:17:92:16:df:43:94:66:a2:58:67:32:f3:00:a5:5f:bd:d9:
ed:e3:8f:88:a0:03:e9:e6:d3:c5:61:d9:1c:5e:c6:cd:94:67:
5d:cf:fe:e4:c0:03:8b:a2:f3:43:6e:6d:2b:24:36:ca:8e:a1:
3f:08:5e:54:c7:01:f0:6a:d0:a5:af:21:62:04:4c:5e:12:69:
b5:0a:3d:fe:03:be:da:c6:3b:42:d2:28:a2:cc:ff:53:ff:f4:
bb:dd:1a:6c:6a:26:df:96:3b:46:06:76:7f:2c:9c:50:dc:d0:
ce:76:9c:4f:ed:c6:19:53:5f:2b:d2:28:87:13:f0:8d:41:fa:
be:34:eb:ed:4b:58:44:fa:e6:4c:42:f8:55:68:20:c1:0b:b8:
c7:da:d1:99:a5:02:d7:ad:f9:7d:3a:3d:e9:2d:74:46:ff:da:
6a:cb:49:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org