Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/edDPAUFYBtEF9UMtSSqh8B-4I2Y.roa
File: edDPAUFYBtEF9UMtSSqh8B-4I2Y.roa (raw, json)
Hash identifier: 62ZK/+9+rGY1u4wAESuOoNynQJVbpdvDISob0UeEb18=
Subject key identifier: 79:D0:CF:01:41:58:06:D1:05:F5:43:2D:49:2A:A1:F0:1F:B8:23:66
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13AC2718
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/edDPAUFYBtEF9UMtSSqh8B-4I2Y.roa
Signing time: Tue 12 Apr 2022 13:05:24 +0000
ROA not before: Tue 12 Apr 2022 13:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206569
IP address blocks: 2a0e:b107:19b0::/48 maxlen: 48
2a0e:b107:19b1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330049304 (0x13ac2718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 12 13:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79d0cf01415806d105f5432d492aa1f01fb82366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:64:f7:e2:e1:db:a2:d8:4e:56:c6:f4:49:ce:
20:45:31:f4:d5:d8:25:e7:e1:cc:5a:f8:89:04:37:
16:9b:53:3b:bd:c1:85:e3:f3:a1:b4:3e:63:6d:ed:
ad:71:e7:6a:8e:5f:76:f6:28:d0:39:82:8f:a3:94:
a6:67:32:b7:78:41:00:b9:f9:4e:91:fe:2d:b7:53:
a6:e5:aa:ae:a5:05:7f:24:f6:cd:eb:5b:20:49:66:
77:53:6d:b1:49:6c:4c:81:82:c2:1f:76:65:81:15:
e0:c0:0b:d9:4f:de:97:57:fa:6d:ce:72:c8:a5:a7:
88:61:fa:61:4e:65:c8:8a:f6:2b:c1:49:9c:fb:4c:
48:ff:fa:cb:67:93:33:bf:2c:d1:3a:2b:eb:94:e6:
9f:1c:bb:59:16:49:ca:67:4f:43:50:f9:a7:34:3f:
e3:c6:55:9b:b9:74:8b:39:41:be:58:2e:3a:2a:18:
7a:0b:e9:b9:aa:ed:95:8f:15:f3:60:5a:9e:b4:9e:
f8:bf:1e:93:fc:5c:95:94:06:0a:b1:04:cb:19:1a:
ca:b2:e0:96:90:f8:5c:5e:15:9a:dc:a6:39:85:2c:
a8:d5:23:11:1e:8a:52:24:f7:de:52:95:8a:ff:1e:
cb:92:18:cc:55:df:f0:75:68:19:c9:02:bd:1c:ee:
7a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D0:CF:01:41:58:06:D1:05:F5:43:2D:49:2A:A1:F0:1F:B8:23:66
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/edDPAUFYBtEF9UMtSSqh8B-4I2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19b0::/47
Signature Algorithm: sha256WithRSAEncryption
5c:49:bd:13:41:03:a5:d9:13:7a:f2:a9:d8:bc:72:32:1b:48:
e3:04:1b:66:ef:93:a0:c7:a8:05:12:21:ee:a8:63:80:2b:a8:
ef:3b:9a:bb:35:2d:89:d6:e4:ef:d5:18:44:55:d4:25:a5:09:
79:ab:ab:56:e4:3b:22:ae:2e:4d:31:94:b2:b9:f4:d3:7c:03:
31:02:c4:ca:fc:b6:6c:fb:91:63:11:3b:24:88:ce:17:8b:2e:
24:f0:5b:8e:13:63:40:40:4b:24:a3:d4:b1:be:2f:54:ab:07:
a2:85:e4:4a:cc:e5:bd:c6:3a:f9:25:97:5c:17:a7:6a:94:79:
32:58:53:8d:a7:29:d0:43:d0:04:86:83:0a:db:0b:0d:5a:c2:
a0:bc:3f:78:5f:f8:d4:7c:0f:d8:ed:4c:c1:d4:b3:aa:a9:62:
71:9d:ee:7a:8a:4c:be:f7:7c:3d:99:08:ce:d2:de:3d:b5:c2:
de:62:ef:e2:36:dd:25:d6:53:9a:95:b8:5a:ee:8d:07:78:46:
3b:5c:ff:2c:8e:d2:25:d3:be:3a:c4:63:db:e9:aa:e3:90:32:
a5:db:f2:11:95:a4:bb:8f:9d:56:b4:ca:2e:f2:e2:1c:78:a4:
bd:4e:f9:bd:50:7d:be:56:c3:b5:a8:eb:40:b0:11:98:39:65:
20:e4:8f:4a
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEE6wnGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDQx
MjEzMDUyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzlkMGNmMDE0MTU4
MDZkMTA1ZjU0MzJkNDkyYWExZjAxZmI4MjM2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJpk9+Lh26LYTlbG9EnOIEUx9NXYJefhzFr4iQQ3FptTO73B
hePzobQ+Y23trXHnao5fdvYo0DmCj6OUpmcyt3hBALn5TpH+LbdTpuWqrqUFfyT2
zetbIElmd1NtsUlsTIGCwh92ZYEV4MAL2U/el1f6bc5yyKWniGH6YU5lyIr2K8FJ
nPtMSP/6y2eTM78s0Tor65Tmnxy7WRZJymdPQ1D5pzQ/48ZVm7l0izlBvlguOioY
egvpuartlY8V82BanrSe+L8ek/xclZQGCrEEyxkayrLglpD4XF4VmtymOYUsqNUj
ER6KUiT33lKViv8ey5IYzFXf8HVoGckCvRzuevkCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR50M8BQVgG0QX1Qy1JKqHwH7gjZjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L2VkRFBBVUZZQnRFRjlVTXRTU3FoOEItNEkyWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASoOsQcZsDANBgkqhkiG9w0BAQsF
AAOCAQEAXEm9E0EDpdkTevKp2LxyMhtI4wQbZu+ToMeoBRIh7qhjgCuo7zuauzUt
idbk79UYRFXUJaUJeaurVuQ7Iq4uTTGUsrn003wDMQLEyvy2bPuRYxE7JIjOF4su
JPBbjhNjQEBLJKPUsb4vVKsHooXkSszlvcY6+SWXXBenapR5MlhTjacp0EPQBIaD
CtsLDVrCoLw/eF/41HwP2O1MwdSzqqlicZ3ueopMvvd8PZkIztLePbXC3mLv4jbd
JdZTmpW4Wu6NB3hGO1z/LI7SJdO+OsRj2+mq45AypdvyEZWku4+dVrTKLvLiHHik
vU75vVB9vlbDtajrQLARmDllIOSPSg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:02 2023 by rpki-client on console-ams.rpki-client.org