Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e5jXB850pjpK6NvltoSdSTWXBnw.roa
File: e5jXB850pjpK6NvltoSdSTWXBnw.roa (raw, json)
Hash identifier: bgxczVqAUjo8TnTZM6rsA93UyS/8ijMcWmDn8WUe85s=
Subject key identifier: 7B:98:D7:07:CE:74:A6:3A:4A:E8:DB:E5:B6:84:9D:49:35:97:06:7C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184AA62CDC687F537D3CC2B996DAD916804
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e5jXB850pjpK6NvltoSdSTWXBnw.roa
Signing time: Thu 24 Nov 2022 16:05:12 +0000
ROA not before: Thu 24 Nov 2022 16:05:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209391
IP address blocks: 2a0e:b107:1c90::/48 maxlen: 48
2a10:cc40:1cf::/48 maxlen: 48
2a0e:b107:1c95::/48 maxlen: 48
2a10:cc40:1ca::/48 maxlen: 48
2a0e:b107:1c9a::/48 maxlen: 48
2a10:cc40:1c5::/48 maxlen: 48
2a0e:b107:1c9f::/48 maxlen: 48
2a10:cc40:1c0::/48 maxlen: 48
2a10:cc40:1c3::/48 maxlen: 48
2a0e:b107:1c93::/48 maxlen: 48
2a0e:b107:1c98::/48 maxlen: 48
2a10:cc40:1c7::/48 maxlen: 48
2a0e:b107:1c9d::/48 maxlen: 48
2a10:cc40:1c2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 48
2a0e:b107:1c91::/48 maxlen: 48
2a0e:b107:1c96::/48 maxlen: 48
2a0e:b107:1c9b::/48 maxlen: 48
2a10:cc40:1cc::/48 maxlen: 48
2a0e:b107:1c94::/48 maxlen: 48
2a0e:b107:1c99::/48 maxlen: 48
2a10:cc40:1ce::/48 maxlen: 48
2a0e:b107:1c9e::/48 maxlen: 48
2a10:cc40:1c9::/48 maxlen: 48
2a10:cc40:1c4::/48 maxlen: 48
2a0e:b107:1c92::/48 maxlen: 48
2a10:cc40:1cd::/48 maxlen: 48
2a0e:b107:1c97::/48 maxlen: 48
2a10:cc40:1c8::/48 maxlen: 48
2a0e:b107:1c9c::/48 maxlen: 48
2a10:cc40:1cb::/48 maxlen: 48
2a10:cc40:1c6::/48 maxlen: 48
2a10:cc40:1c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:62:cd:c6:87:f5:37:d3:cc:2b:99:6d:ad:91:68:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 24 16:05:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b98d707ce74a63a4ae8dbe5b6849d493597067c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:fa:f9:dc:9c:fc:49:0d:32:e8:f9:3d:4c:
38:42:a4:4c:41:2a:89:df:8d:eb:87:60:f0:ac:00:
d2:d8:85:96:a2:9e:3f:73:8e:93:bf:e2:0b:b9:9d:
55:c5:69:da:5a:b2:9b:ab:7d:9c:4c:0f:f2:db:2f:
47:97:a6:8d:14:2e:7e:e4:3a:4d:0d:eb:74:e6:ea:
96:34:03:5c:67:b6:c0:60:d1:84:56:b6:04:57:08:
c4:c7:f3:19:56:25:f3:66:cc:3b:16:71:ad:e6:8d:
47:86:03:c5:5d:e9:ca:76:f0:cf:be:04:4f:3a:ff:
db:8d:c5:1d:17:a9:16:38:93:59:6e:c0:ab:18:09:
30:38:d6:df:66:37:c2:49:fa:3b:26:98:0b:64:98:
4f:6c:5c:63:d4:52:b0:db:cb:0a:4b:13:b4:f4:52:
e6:81:84:55:90:3f:0b:2a:ae:a1:96:12:12:e8:2a:
0f:8e:63:13:a0:07:94:4f:4e:b3:a6:56:1d:8d:43:
7f:0e:a9:3c:d1:cb:68:ed:79:7b:53:9f:56:28:92:
71:26:c2:81:50:28:95:04:2d:94:4e:36:63:3a:15:
bf:9e:1b:90:89:22:88:34:56:4f:8f:90:b4:c1:ca:
72:c5:f7:0c:51:f0:52:c0:c1:c3:0c:04:b5:99:45:
5b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:98:D7:07:CE:74:A6:3A:4A:E8:DB:E5:B6:84:9D:49:35:97:06:7C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e5jXB850pjpK6NvltoSdSTWXBnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1c90::/44
2a10:cc40:1c0::/44
Signature Algorithm: sha256WithRSAEncryption
71:7c:4d:2e:8e:a1:a6:a7:bd:61:c7:26:4c:6d:4d:84:b9:c3:
1c:50:90:1e:4c:6b:b0:8a:6d:9e:d2:b9:0b:a2:57:99:07:18:
64:ed:be:60:0d:91:6e:06:85:70:2c:a7:e4:7f:a6:25:08:22:
65:95:69:9c:fe:fe:f4:6f:44:d9:5b:58:25:b5:f5:82:63:9e:
82:ff:eb:78:1c:6c:d5:2d:a8:50:45:71:57:dd:d3:f3:52:4e:
85:75:03:7d:6a:09:9b:7a:f0:1e:3a:e1:d0:06:f9:e4:2d:5d:
7b:07:67:c2:38:4d:0b:85:01:d0:4a:51:ab:63:71:36:41:73:
83:0b:ec:5a:a8:e4:63:02:e3:d2:bb:ab:be:3d:44:51:c5:f9:
02:9a:64:15:0b:a6:00:7c:82:fe:b0:18:d6:df:d1:e4:c4:df:
b5:a4:d2:db:2e:2b:8e:95:2e:e6:f9:5f:51:fe:d4:49:d4:89:
a5:7f:fd:b7:cb:d4:cb:de:c0:e0:6d:d1:fb:60:dc:fc:32:d3:
db:a1:5b:91:68:42:4a:fb:fc:f2:81:41:99:2d:16:9b:38:1e:
34:c7:76:e7:7f:f8:8c:b7:03:ac:17:92:62:83:db:dd:f8:a7:
cc:67:75:e3:14:cc:3b:19:4d:41:35:de:2a:d7:77:6e:eb:be:
7e:91:c1:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org