Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eczmI4Tr5QgfAlAFlzEuMHdl1GE.roa
File: eczmI4Tr5QgfAlAFlzEuMHdl1GE.roa (raw, json)
Hash identifier: fQpGimhyypzV9NRBQh0EgoS0Q9hGsxVM1NLMgwbjm80=
Subject key identifier: 79:CC:E6:23:84:EB:E5:08:1F:02:50:05:97:31:2E:30:77:65:D4:61
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183DA3912E354B087601F16666A76A639BE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eczmI4Tr5QgfAlAFlzEuMHdl1GE.roa
Signing time: Sat 15 Oct 2022 05:58:36 +0000
ROA not before: Sat 15 Oct 2022 05:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212948
IP address blocks: 2a0e:b107:cb0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:da:39:12:e3:54:b0:87:60:1f:16:66:6a:76:a6:39:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 15 05:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79cce62384ebe5081f02500597312e307765d461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:86:de:d0:e0:86:50:2f:a0:72:19:fe:ba:39:
58:b3:0f:30:ff:8f:93:ee:f9:73:a4:7f:75:a3:fd:
0c:35:11:9c:54:a9:9c:ab:a4:2f:38:2b:66:40:db:
8e:dd:3e:22:8f:84:88:94:89:22:f0:6c:0b:ef:73:
a3:93:24:6e:b0:0b:2a:60:54:ca:ba:38:03:24:75:
c9:a9:21:2c:e8:7f:b8:93:5d:a4:45:a7:ed:ba:6b:
aa:5e:f7:51:bb:57:d0:72:28:70:59:90:54:0b:e9:
9f:77:e8:40:9f:86:bb:6e:50:e7:7a:04:85:7a:1d:
ea:ba:cf:54:56:ea:4c:09:92:d5:3c:78:d9:e9:71:
81:71:9e:a7:41:5c:18:30:86:e6:20:4c:05:b1:ea:
9d:72:0a:76:41:b1:28:59:e3:ca:ac:81:2f:1e:30:
35:4b:05:1e:16:bf:93:49:32:67:00:3c:92:a8:ee:
f7:09:e8:5d:f0:4d:f8:80:a9:0e:6a:c8:7f:a8:3d:
aa:57:e4:7c:7c:d3:42:f7:9e:49:d7:66:b4:db:59:
00:c6:fd:f5:69:08:6c:d7:b2:33:10:48:ac:d6:83:
86:da:72:36:1c:3f:13:cf:d4:82:71:ce:e8:2c:2b:
18:8e:53:f1:2e:9d:fc:d0:f9:79:35:af:32:95:ba:
68:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CC:E6:23:84:EB:E5:08:1F:02:50:05:97:31:2E:30:77:65:D4:61
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eczmI4Tr5QgfAlAFlzEuMHdl1GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:cb0::/44
Signature Algorithm: sha256WithRSAEncryption
90:96:2d:1e:25:d1:12:8c:c7:ff:59:6b:a7:05:90:de:0e:29:
47:36:3a:1f:0e:e1:db:ef:68:a1:a5:46:29:df:99:b7:7e:6a:
64:f2:42:dc:46:93:4d:48:67:75:38:16:4c:2b:6f:73:2c:8d:
36:ff:3b:a9:8f:05:a9:dc:c6:f1:ad:fe:cc:d8:d3:b5:5b:da:
53:bf:92:30:fe:a7:c9:4d:28:be:9a:b9:c1:11:95:18:71:79:
81:61:6f:e8:38:37:32:bb:7a:77:0d:1a:04:ed:fb:30:fa:d0:
8d:e7:a1:39:d0:83:7d:bf:35:7c:dd:97:8b:9a:23:b0:a0:e2:
6b:74:ad:6f:2b:4f:5c:fd:7f:29:91:09:be:46:ba:ff:f6:78:
66:83:b0:e9:55:d8:75:c3:b9:44:d6:83:01:97:9c:c3:9f:22:
a1:9e:e6:af:82:65:ad:36:8a:b9:42:c3:77:cb:ce:99:ea:5b:
d9:5b:c4:07:4c:1c:54:94:a6:85:83:de:1b:6a:90:9f:b6:8e:
cb:8d:e4:11:a1:af:24:0a:9b:ea:e2:b0:3b:27:cb:56:ad:2d:
8e:df:0f:34:31:3c:e7:d3:60:fd:a1:13:67:4a:6f:85:cb:70:
7c:69:e6:59:a3:f7:2d:12:2c:5b:ec:ee:2d:93:65:d9:24:4c:
66:2a:d1:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org