Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eW3WXlAfOcF4q6OwFZe-IcD01Eo.roa
File: eW3WXlAfOcF4q6OwFZe-IcD01Eo.roa (raw, json)
Hash identifier: G2VZTDumKMINCvV80B1pYlfI5wYojYP8fXzAP84urNw=
Subject key identifier: 79:6D:D6:5E:50:1F:39:C1:78:AB:A3:B0:15:97:BE:21:C0:F4:D4:4A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1385BECD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eW3WXlAfOcF4q6OwFZe-IcD01Eo.roa
Signing time: Thu 07 Apr 2022 11:20:14 +0000
ROA not before: Thu 07 Apr 2022 11:20:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134478
IP address blocks: 2a0e:b107:6d0::/44 maxlen: 48
2a0e:b107:ea2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327532237 (0x1385becd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 7 11:20:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=796dd65e501f39c178aba3b01597be21c0f4d44a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4e:3e:28:a7:09:fd:95:bb:93:87:5e:50:a8:
a4:64:f9:86:4d:77:80:3c:27:41:2a:d3:23:d6:45:
1c:00:53:24:2a:2a:33:a6:9a:8c:5e:4e:4d:dd:a3:
73:49:91:b6:84:f8:87:4f:c3:e2:7c:25:c9:4a:45:
e9:61:e3:bf:b7:ef:b1:40:0b:af:70:68:60:a9:e7:
07:ca:60:00:58:c3:6d:c5:e0:fd:40:69:98:5a:16:
85:3a:50:be:96:a4:da:a2:8b:ad:0f:6d:3b:f3:bb:
57:7d:8d:65:d4:59:f4:cc:cc:de:bf:10:ae:4e:1d:
4c:4e:28:ab:71:e3:28:06:2d:53:c8:8b:40:b2:bf:
21:fe:6d:43:64:1a:7f:74:76:88:cf:d0:a5:a0:e0:
74:04:a3:c5:ad:e4:11:2f:91:cf:9f:ce:12:62:a0:
e7:88:6c:90:36:0a:2e:1e:f2:23:6a:48:8c:1c:85:
0b:c4:09:57:65:8b:a2:f3:d7:36:36:03:4e:5e:6d:
fa:ce:ea:d0:c6:a5:03:44:f1:b5:ce:34:0f:0d:55:
de:42:39:21:84:47:28:00:9b:e2:06:5a:71:18:c6:
ac:42:95:67:64:7b:e7:5a:5f:b0:ec:86:64:20:80:
1e:b7:e7:42:20:79:ee:02:61:09:5b:ba:c4:9c:db:
a7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6D:D6:5E:50:1F:39:C1:78:AB:A3:B0:15:97:BE:21:C0:F4:D4:4A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eW3WXlAfOcF4q6OwFZe-IcD01Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:6d0::/44
2a0e:b107:ea2::/48
Signature Algorithm: sha256WithRSAEncryption
cd:a1:d9:4d:19:d8:ff:4b:94:b8:87:b7:e8:29:4d:5d:cd:4f:
d6:79:94:4a:56:1a:23:30:3a:27:4e:49:00:c3:42:14:e6:6e:
e8:5b:70:cc:cb:08:f4:d3:cb:11:0d:68:f2:3c:70:7a:82:d4:
f4:bb:0d:9b:a9:be:b3:ad:9b:ff:4d:52:ae:6b:90:a0:dc:c0:
8d:76:5d:31:d6:a0:84:dc:7d:34:77:d6:6e:0a:78:26:6c:23:
fd:9d:0e:5b:ca:db:80:ab:62:da:4f:c8:40:bd:65:05:5b:73:
48:d0:41:62:d8:8f:11:52:8f:e0:93:07:b8:9b:e8:c8:e0:ad:
68:f9:10:0b:4e:13:a8:45:e4:69:fc:ef:05:d3:00:55:b5:4a:
75:48:73:f1:74:c7:c2:ee:30:ca:46:55:c3:38:c5:82:55:46:
ff:6a:db:c0:74:30:dc:00:c2:1d:42:df:f9:6f:7e:5c:5b:93:
c9:bb:c5:11:e7:12:4c:3a:cc:04:63:a5:d1:02:8c:90:13:fa:
85:57:c8:a7:a0:56:4b:dc:f8:30:b0:1c:2a:b2:fc:98:2b:5b:
65:81:4d:8c:9e:7b:40:b7:f4:69:6e:41:16:79:ab:9c:5e:5b:
90:93:34:34:76:e0:e9:a3:c9:37:64:59:f0:ef:63:9b:c5:8c:
77:e0:3a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:02 2023 by rpki-client on console-ams.rpki-client.org