Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dVUDe5MV-Neaz15ZXOE0zUqPi6k.roa
File: dVUDe5MV-Neaz15ZXOE0zUqPi6k.roa (raw, json)
Hash identifier: 9JUEreo8nOue66w/ovRXFHMaitEEntty2QSYjF3lx1Y=
Subject key identifier: 75:55:03:7B:93:15:F8:D7:9A:CF:5E:59:5C:E1:34:CD:4A:8F:8B:A9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12933E06
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dVUDe5MV-Neaz15ZXOE0zUqPi6k.roa
Signing time: Sat 05 Mar 2022 03:37:37 +0000
ROA not before: Sat 05 Mar 2022 03:37:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213383
IP address blocks: 2a0e:b107:800::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311639558 (0x12933e06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 5 03:37:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7555037b9315f8d79acf5e595ce134cd4a8f8ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6a:e4:aa:83:c7:d1:78:6e:95:54:df:38:d4:
63:94:98:8a:39:f2:ad:20:e6:7a:c3:30:8b:69:c3:
98:fe:66:5c:44:92:0d:24:d7:57:af:8f:97:04:13:
80:b0:5c:49:70:f1:61:fe:4d:9c:11:fd:d1:69:79:
3e:ad:31:08:25:28:d1:52:9d:72:1c:96:b2:70:69:
1b:ba:66:bb:00:d0:3e:02:1a:d2:2e:69:f8:55:51:
44:ce:af:93:58:81:d3:43:fc:89:4f:01:b1:d1:b0:
fe:fa:66:08:ef:46:7f:e8:0b:51:40:a7:a2:e1:17:
7c:c4:39:49:83:89:49:cd:17:c4:fe:dc:58:24:8d:
a6:1d:46:ec:2b:12:62:be:b2:01:f9:a8:ea:d8:e2:
87:ba:0c:67:28:ad:19:62:34:85:c8:9c:e3:50:a2:
19:dd:23:19:64:5e:8f:bd:92:c3:07:ae:8f:b6:0a:
c8:18:44:3f:12:52:c1:6d:dd:d0:f7:1d:a8:bb:30:
1b:ec:d7:bc:be:06:80:a1:fe:2d:b6:d1:83:d1:86:
ed:e2:c1:c6:01:b6:43:b4:ae:9f:9a:5f:c3:73:ec:
e9:ed:c3:ad:3c:f6:af:a5:3f:03:81:71:76:3d:92:
b5:a1:ed:9f:74:97:b3:68:2d:a2:97:82:de:a9:97:
55:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:55:03:7B:93:15:F8:D7:9A:CF:5E:59:5C:E1:34:CD:4A:8F:8B:A9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dVUDe5MV-Neaz15ZXOE0zUqPi6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:800::/44
Signature Algorithm: sha256WithRSAEncryption
3c:71:d2:4d:a2:59:8a:0c:aa:f7:24:c1:ab:45:b8:65:0d:31:
23:7b:12:c4:11:59:4d:8f:9f:2c:d6:23:80:73:7f:2a:7a:6a:
cc:c3:90:72:3c:e0:10:c4:d6:3b:a1:da:65:ac:c3:48:8b:41:
fa:cd:db:48:96:44:9a:89:f1:bd:c1:ec:7e:87:5b:c4:67:bd:
eb:63:64:00:43:80:94:40:3f:25:f4:08:28:41:6a:4e:c9:63:
78:75:72:ae:34:bb:ef:1a:da:04:c9:2e:25:d0:c7:6b:33:9e:
05:2d:57:e8:1c:d6:32:a2:48:32:fd:16:c7:a0:a2:5f:71:ae:
e3:14:b3:e1:4f:8d:97:66:3a:88:04:b6:b8:ac:be:21:cf:cd:
0e:ab:38:c9:34:64:f0:4d:ee:94:5c:79:61:d1:bb:c7:e6:ab:
f1:24:5a:40:c6:d0:aa:0f:d7:68:fd:4a:1d:45:91:b9:83:38:
b2:6c:4e:25:09:00:ba:f5:41:cc:7e:0f:c6:f2:2e:32:44:a1:
f5:7c:5e:dc:9e:d1:b2:a2:ec:9c:cd:47:82:0a:0b:ce:b7:36:
60:54:1f:7d:bf:7e:70:69:cb:53:fb:ae:12:44:e4:e6:e5:d1:
d1:11:76:ff:b8:9f:6f:1a:02:65:18:bf:ee:1c:14:33:94:5d:
87:58:2e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org