Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dI84g9i78lS2-71IkyCFb2AUP-E.roa
File: dI84g9i78lS2-71IkyCFb2AUP-E.roa (raw, json)
Hash identifier: LPKVF7wXrUr+W66+3n2rTO7WkjhvWuAew2P15WkizD0=
Subject key identifier: 74:8F:38:83:D8:BB:F2:54:B6:FB:BD:48:93:20:85:6F:60:14:3F:E1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01842E4C6B50FF7F6AB66269361BFAD8F83C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dI84g9i78lS2-71IkyCFb2AUP-E.roa
Signing time: Mon 31 Oct 2022 13:47:50 +0000
ROA not before: Mon 31 Oct 2022 13:47:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212514
IP address blocks: 2a0e:b107:9b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2e:4c:6b:50:ff:7f:6a:b6:62:69:36:1b:fa:d8:f8:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 31 13:47:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=748f3883d8bbf254b6fbbd489320856f60143fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:53:a6:81:04:e8:1d:48:1d:a7:b5:0e:96:9e:
70:d4:08:d6:d9:36:73:69:aa:f4:78:24:75:ca:24:
31:98:90:ba:d5:d7:4e:ef:98:da:a1:59:0e:59:16:
ba:2f:c6:1e:fc:88:1b:f0:4e:f0:ff:b9:42:4e:91:
4f:47:f1:0b:54:63:54:dc:41:f5:ee:db:bf:43:ca:
3f:85:6f:8c:f6:76:fa:54:b9:22:39:37:35:b9:f3:
50:b4:b7:98:fd:b2:c2:65:51:de:f8:82:eb:68:aa:
31:93:88:08:dc:bf:15:bf:e5:04:53:41:1e:4c:e7:
b7:9e:3c:8d:f8:1d:46:d0:91:52:2e:a2:c0:6f:19:
ca:0c:13:1a:19:7f:90:14:02:e6:a8:d2:a7:7f:fa:
a5:f9:4d:fb:88:96:7c:4d:af:d2:a3:b3:44:21:81:
8a:38:e2:2f:27:47:75:cf:1b:3f:38:06:10:88:19:
7e:95:8a:26:e5:7b:22:cc:08:11:07:b7:c5:79:2d:
b7:5b:11:03:e4:fe:b1:0c:6d:9a:f0:92:66:9e:3e:
ae:8e:13:d2:98:36:b8:76:f5:9f:bc:56:b1:08:00:
be:f7:4a:5e:d0:99:d6:da:81:0c:92:4f:bb:55:02:
df:e0:b2:11:c6:08:58:9f:46:c2:2e:21:5a:28:a0:
24:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8F:38:83:D8:BB:F2:54:B6:FB:BD:48:93:20:85:6F:60:14:3F:E1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dI84g9i78lS2-71IkyCFb2AUP-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:9b0::/44
Signature Algorithm: sha256WithRSAEncryption
30:4a:c8:05:da:e1:2b:76:3f:00:cb:44:3a:af:53:bb:05:a8:
16:66:ff:91:79:a0:8c:6d:98:4c:93:85:4c:e2:21:76:1a:65:
c2:37:6d:06:d0:3e:26:f7:b2:70:90:b6:71:9b:43:62:7c:6f:
f3:6f:52:a9:4e:7e:0a:49:57:4c:fe:e3:8e:21:fe:91:12:10:
3a:32:4a:85:53:9a:a3:2e:16:94:61:1e:0f:0f:79:87:6d:f6:
c4:7f:be:e8:07:eb:c5:08:18:c9:d9:5f:8d:9e:f3:11:d1:10:
bc:13:e0:24:f6:83:04:ae:7c:49:e4:2a:2d:12:a4:fc:af:7f:
cb:fc:cb:ee:48:77:0a:d1:df:19:66:1c:a3:e3:ae:c2:09:bb:
83:5e:5e:b8:a5:25:e7:24:c8:61:2a:b5:9a:73:df:65:a5:b2:
f1:7c:be:41:85:b3:ad:61:52:d8:9a:0f:85:ca:40:74:01:40:
df:7e:9f:9c:77:f0:e4:cb:94:20:e2:57:6b:50:09:5d:87:bb:
8f:22:ac:d2:1f:93:9c:82:39:6b:8b:1e:2c:b0:7d:e0:bd:6f:
96:1f:f9:bc:bc:dc:b0:3c:47:13:88:db:a8:73:16:e3:28:0e:
a7:fe:38:74:10:3a:ef:03:55:7a:91:12:c3:32:25:44:ce:c7:
dc:74:08:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org