Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dqxeBzuijH9bsKACaBfr82P2TPk.roa
File: dqxeBzuijH9bsKACaBfr82P2TPk.roa (raw, json)
Hash identifier: n3Ic5gAFR0QoNInviuHvu2Cv6GxLQLMGDbYaZuta29I=
Subject key identifier: 76:AC:5E:07:3B:A2:8C:7F:5B:B0:A0:02:68:17:EB:F3:63:F6:4C:F9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10E209C6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dqxeBzuijH9bsKACaBfr82P2TPk.roa
Signing time: Sat 01 Jan 2022 09:05:47 +0000
ROA not before: Sat 01 Jan 2022 09:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212508
IP address blocks: 2a0e:b107:dd0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283249094 (0x10e209c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76ac5e073ba28c7f5bb0a0026817ebf363f64cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:07:e1:36:d6:f3:83:1d:18:82:26:d8:93:12:
97:51:66:cc:a8:71:ca:f6:21:41:ea:75:f3:a0:c5:
57:9a:04:c8:fe:e3:be:be:ff:1d:6a:44:d9:78:5f:
54:76:9d:87:ca:20:42:ad:95:a7:1f:cd:d1:a7:68:
99:65:1c:89:28:50:72:c1:7b:8d:22:8c:73:d4:78:
d1:0a:0b:89:0f:28:47:70:88:8d:79:0b:59:98:b8:
0f:01:ed:44:5b:76:74:c5:0b:f6:5e:24:28:8e:aa:
d5:ee:3e:57:80:2f:d1:48:be:df:23:d8:4c:63:f6:
d5:42:aa:dd:52:81:7e:d4:17:63:fe:68:13:75:36:
9d:58:1b:14:12:7e:95:89:4f:64:e4:fe:4c:72:dc:
da:5e:20:96:50:28:3b:df:d5:48:75:19:e0:09:97:
d5:a7:7c:f1:3e:56:b7:ac:59:70:d5:c2:2c:61:09:
00:2d:3e:02:91:c0:56:63:07:cf:a8:3b:09:ce:94:
41:8e:06:61:fc:39:6b:98:33:90:6c:34:9a:26:68:
b7:74:79:52:7b:31:48:1c:71:de:bd:fa:a2:36:68:
d6:f0:73:49:31:6b:d1:6a:eb:62:1e:11:97:e8:c0:
e9:41:76:6b:72:f4:a5:82:db:e6:f7:31:ee:cf:95:
64:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AC:5E:07:3B:A2:8C:7F:5B:B0:A0:02:68:17:EB:F3:63:F6:4C:F9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dqxeBzuijH9bsKACaBfr82P2TPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:dd0::/44
Signature Algorithm: sha256WithRSAEncryption
4c:d1:7c:09:8b:60:1d:fc:e0:a4:09:11:c4:20:71:8d:93:84:
9b:7d:9a:6f:d0:b0:a3:89:48:1b:5b:ac:73:e1:94:c4:91:27:
94:d6:cd:a6:f7:6a:49:18:1b:bf:b7:46:4d:29:5f:b2:78:1e:
e9:3c:a3:85:b4:f7:2f:5c:33:b8:ec:7d:23:4b:93:d6:83:16:
46:1d:f3:a2:04:2d:ab:64:9b:f9:90:1d:ff:77:3b:5f:de:15:
27:ce:63:de:f0:b5:84:ed:90:42:b6:f2:a3:3a:a9:70:77:f0:
6b:cb:d3:25:c0:00:07:71:06:0b:9b:36:f1:46:08:d6:f6:a6:
c8:54:ba:a2:71:28:1d:40:ef:c8:74:a4:77:e0:98:20:0a:05:
da:44:20:3d:98:66:29:32:55:74:dc:f3:cd:8e:3f:b4:07:1f:
4f:10:07:06:ab:e6:a3:e9:70:04:f9:5c:94:e4:33:1c:ca:28:
6f:75:09:6a:bb:d2:e2:48:d1:c2:a2:64:ad:71:cf:94:e0:7e:
78:8b:71:8b:4f:3b:51:c7:04:03:02:56:70:11:b1:96:45:e1:
26:0d:82:e4:a4:d2:5f:15:f6:1d:59:72:37:a3:e8:2e:0a:41:
63:86:bc:4f:d6:c1:40:4a:e3:3e:9d:bb:f5:0b:e1:de:5a:ff:
a4:89:07:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org