Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dmYP-dAMdlcb8Bz9mIh_xdRqJwA.roa
File: dmYP-dAMdlcb8Bz9mIh_xdRqJwA.roa (raw, json)
Hash identifier: ntE6YoVFy6OmgedyGQdekkQs0I/yVAyQ4CsN+GZvk3s=
Subject key identifier: 76:66:0F:F9:D0:0C:76:57:1B:F0:1C:FD:98:88:7F:C5:D4:6A:27:00
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10AE6AA5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dmYP-dAMdlcb8Bz9mIh_xdRqJwA.roa
Signing time: Sat 01 Jan 2022 09:05:17 +0000
ROA not before: Sat 01 Jan 2022 09:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210631
IP address blocks: 2a0e:b107:1770::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279866021 (0x10ae6aa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76660ff9d00c76571bf01cfd98887fc5d46a2700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1f:72:eb:62:5c:45:e6:73:10:62:01:6a:7a:
dc:96:9a:92:e1:11:c3:68:e8:00:c9:5b:c8:c5:e4:
3c:0d:7f:4a:0b:c2:09:c9:8a:ab:14:e9:6a:c2:d2:
ac:73:44:f2:f8:37:1c:65:b7:8a:df:3f:ea:32:9d:
4b:97:a3:a5:d1:56:4e:74:3c:14:7e:f4:98:85:0e:
72:17:73:6a:f5:5d:7a:00:7a:e9:6d:fb:8c:bd:ed:
f9:1e:fd:cd:f1:ae:e3:d6:a9:be:5d:99:ed:2a:1e:
48:d8:1d:c0:09:09:c7:fb:39:9e:94:96:a2:48:20:
d8:14:a8:54:81:d4:77:1e:65:65:49:d3:7d:38:4e:
25:57:35:83:79:4a:18:2b:fa:4a:8c:f1:dd:7c:a6:
0e:d4:d1:b4:8f:b7:a9:9c:a7:40:f9:4f:36:a8:91:
79:5c:c9:be:d4:61:5d:7b:58:47:ec:95:2c:68:4a:
8b:ac:f8:8c:26:16:8c:64:c2:20:fd:e4:e8:32:3b:
e5:89:2a:08:a2:bb:91:56:48:ca:ff:6c:68:5f:1d:
0b:73:4e:8f:44:d3:e5:b0:10:5f:ae:a0:72:12:dc:
68:2d:bf:03:5e:64:40:14:97:1a:64:65:e7:4e:c1:
e4:bc:61:ca:3b:d1:0f:54:1b:42:16:7c:57:c3:11:
5a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:66:0F:F9:D0:0C:76:57:1B:F0:1C:FD:98:88:7F:C5:D4:6A:27:00
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dmYP-dAMdlcb8Bz9mIh_xdRqJwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1770::/44
Signature Algorithm: sha256WithRSAEncryption
83:41:34:5b:9e:a3:9f:02:65:27:64:13:4c:44:27:dd:d8:4c:
f2:ea:bc:45:2f:5d:b3:4d:44:ab:2b:10:bc:a2:9f:0b:dd:1e:
26:4b:88:ab:02:b6:4b:97:05:24:f9:f3:c4:ba:5e:0a:08:f6:
cf:84:32:25:67:7d:3d:50:9b:f2:90:2a:8f:6d:e8:e3:3f:49:
ad:77:1d:aa:e0:58:2c:0b:57:d1:cc:69:5e:d7:bf:4e:2a:c9:
e5:04:cc:33:37:bf:52:34:de:fd:e8:41:51:22:38:e4:74:e2:
03:4d:e2:23:7e:2b:92:61:59:82:16:ba:db:f1:94:d6:9f:ec:
0b:83:5a:18:9d:cd:d5:82:2a:2e:ee:be:35:06:3a:10:0d:f5:
d7:2b:43:77:41:42:34:02:01:41:5e:cf:06:78:19:4f:d3:ad:
78:64:95:66:b3:c3:e0:2d:1e:cc:47:a7:dc:07:9a:25:43:3c:
44:26:e1:5d:13:09:db:75:d8:a3:d2:20:0e:37:cc:cd:ec:47:
ea:d4:a6:bd:5c:9e:d3:f6:90:87:43:2e:53:80:33:75:6c:3e:
42:76:15:80:24:bf:56:51:7f:bb:62:2f:d1:08:f5:05:b6:c9:
00:42:3b:f8:8c:0b:72:65:32:ef:12:ea:31:df:b1:70:3d:5d:
75:07:a2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org