Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dvTQeklyF1XmFu2s4rL97-WVuiw.roa
File: dvTQeklyF1XmFu2s4rL97-WVuiw.roa (raw, json)
Hash identifier: 52IJ2TVCy6hOTPGC1l/0cOjTSvdc0qVf3/pNZpnIIgM=
Subject key identifier: 76:F4:D0:7A:49:72:17:55:E6:16:ED:AC:E2:B2:FD:EF:E5:95:BA:2C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182B7978497C40AD83C211EFFC570788913
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dvTQeklyF1XmFu2s4rL97-WVuiw.roa
Signing time: Fri 19 Aug 2022 19:32:16 +0000
ROA not before: Fri 19 Aug 2022 19:32:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204617
IP address blocks: 2a0e:97c0:b40::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b7:97:84:97:c4:0a:d8:3c:21:1e:ff:c5:70:78:89:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 19 19:32:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76f4d07a49721755e616edace2b2fdefe595ba2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ec:dc:de:bb:7f:b7:e8:d9:22:00:63:40:88:
b7:49:ec:f0:ea:bc:59:67:5b:3e:c4:fb:8e:22:7a:
0c:1b:4b:42:62:05:d7:a3:89:7e:19:62:84:5e:0b:
01:5a:bb:c3:cf:d5:34:66:ef:2b:a8:c5:4e:2f:f5:
fb:15:dd:55:11:45:0e:1d:3e:64:a7:10:f1:0a:3c:
d2:44:95:95:25:68:28:6e:d1:7e:29:f2:fc:c5:6c:
aa:b0:7e:c9:a0:5c:8c:35:10:da:09:f4:8e:28:6f:
f6:ad:bf:62:fd:30:7f:ab:7a:ae:ba:74:7e:cd:39:
f2:4a:12:84:62:ed:8b:ef:db:a9:09:ea:9a:ea:a6:
0e:7d:9c:73:3c:b2:62:77:19:5f:e0:bc:bf:bd:8b:
fd:77:db:d7:90:0b:de:19:d3:af:17:83:90:8a:12:
06:a2:25:3d:d5:9b:35:78:65:e4:39:f6:24:58:63:
3c:a7:33:d1:c9:57:f0:61:02:eb:20:8b:89:2d:c8:
6b:bc:c2:64:9f:b5:60:b5:38:09:40:04:be:9e:fd:
1d:91:36:ff:34:d3:91:4f:cd:36:a4:98:bc:9a:30:
55:6e:e4:51:51:a7:d7:fb:79:b1:21:62:c3:c9:8c:
88:6d:a5:fa:ec:ba:8f:6a:ed:9b:1c:75:04:4e:ac:
51:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F4:D0:7A:49:72:17:55:E6:16:ED:AC:E2:B2:FD:EF:E5:95:BA:2C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dvTQeklyF1XmFu2s4rL97-WVuiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:b40::/44
Signature Algorithm: sha256WithRSAEncryption
04:13:f0:8e:da:08:d0:f4:1c:e9:3a:50:57:3a:ec:47:3e:06:
62:15:7a:23:97:4e:33:c8:8d:d3:e7:ad:36:07:3b:cd:8e:45:
11:da:8e:a9:09:8d:28:9f:c1:90:b7:1d:53:5e:ee:fc:f9:09:
a3:05:82:4f:50:87:01:e0:41:78:7f:28:71:95:a7:4f:b5:eb:
29:33:f1:eb:f8:02:7c:fb:73:17:e9:51:5e:5f:11:e6:fd:b4:
dd:65:8b:d8:4c:88:b6:ef:e1:2b:64:de:e3:89:b5:c1:96:f4:
76:40:44:68:17:e7:72:21:90:40:e2:fa:f8:48:fa:36:2b:55:
79:31:57:d3:ad:0f:d9:55:96:5f:14:35:54:f0:21:2b:50:56:
00:d7:3e:68:62:98:59:db:14:e2:7b:8c:13:ff:a7:4c:4e:68:
f5:12:23:11:b8:64:58:50:25:3e:15:0a:23:d9:dc:1d:3f:51:
e4:74:00:74:36:c9:b6:4a:78:17:ba:70:43:e3:9a:3a:63:6b:
46:36:16:cd:75:ef:85:33:49:bf:4a:57:e4:a5:8a:40:97:55:
95:25:3f:7f:af:74:3e:b4:c3:65:67:7a:27:67:0c:b0:1a:ec:
a7:54:e9:10:3a:d4:fa:2f:18:c7:2c:85:f2:3b:76:79:ad:61:
3d:19:96:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:35 2024 by rpki-client on console-fra.rpki-client.org