Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/euhP2Drch41WNZ4vWpBpwT4nHek.roa
File: euhP2Drch41WNZ4vWpBpwT4nHek.roa (raw, json)
Hash identifier: xZwaizmxmzw825MUtQEK78b5FAmkneuIl3Rpx7sTWK8=
Subject key identifier: 7A:E8:4F:D8:3A:DC:87:8D:56:35:9E:2F:5A:90:69:C1:3E:27:1D:E9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183CFE162763E65B63189D4F91DD6E31573
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/euhP2Drch41WNZ4vWpBpwT4nHek.roa
Signing time: Thu 13 Oct 2022 05:46:37 +0000
ROA not before: Thu 13 Oct 2022 05:46:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 2a10:cc42:1000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cf:e1:62:76:3e:65:b6:31:89:d4:f9:1d:d6:e3:15:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 13 05:46:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ae84fd83adc878d56359e2f5a9069c13e271de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:44:8f:bb:27:b8:69:bd:41:e1:9d:ee:2d:d4:
8f:fb:5f:ad:74:38:a0:84:08:fc:9f:60:72:a8:f8:
b7:d5:84:74:09:3d:7b:eb:6e:5f:37:b3:25:89:6d:
62:76:c7:26:c5:11:a0:83:1f:aa:bd:2c:35:37:49:
3b:eb:35:30:22:47:5c:97:ca:40:28:d6:7a:6b:24:
a2:01:f0:af:e3:7b:56:e3:d1:5e:01:39:24:43:21:
76:7f:8d:a1:32:e2:ab:c7:d6:06:3b:d4:2c:0c:81:
25:76:c6:40:a8:cd:bb:e2:9d:36:3d:5a:bc:d9:70:
e8:60:8d:22:49:0b:49:31:9f:ab:62:23:ed:c5:e1:
ae:84:81:bc:70:a1:01:b2:f4:bc:44:fa:16:a2:62:
97:39:e3:cd:ee:3c:93:b5:a7:07:da:ad:80:71:b1:
ba:8d:7c:63:24:31:3d:69:4a:26:f0:f5:7f:3a:1b:
14:74:de:2c:b6:40:2d:38:8b:fb:f3:d3:0d:4d:71:
44:69:5f:df:88:4a:33:98:42:e2:3a:e9:46:5c:02:
dd:33:58:5e:5d:28:1f:a9:b3:a1:10:c1:67:17:0d:
d6:c7:7d:b6:fc:ac:64:57:ea:55:99:f9:87:f3:c7:
ea:a5:66:c9:75:4b:ef:e3:98:7b:3d:74:4c:f5:5d:
73:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E8:4F:D8:3A:DC:87:8D:56:35:9E:2F:5A:90:69:C1:3E:27:1D:E9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/euhP2Drch41WNZ4vWpBpwT4nHek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc42:1000::/36
Signature Algorithm: sha256WithRSAEncryption
75:4a:bd:5b:fc:43:fb:13:01:26:26:25:63:d6:87:6e:f3:8d:
e8:14:1e:c4:5b:30:a9:52:14:1c:c3:e9:8a:61:4f:3d:ca:f5:
41:a1:75:e4:bc:6c:a3:16:b1:b4:66:16:f4:03:ad:e8:d9:62:
3f:c3:5a:3f:69:cc:75:88:5e:dc:7e:25:a2:b7:18:7b:04:db:
67:b8:2b:81:b8:10:df:91:2a:25:b4:1d:43:d8:f9:9c:a9:92:
c6:f5:e5:13:a6:08:8f:7a:5b:8a:f7:3d:00:9a:d7:2f:aa:d1:
48:77:d0:3a:3d:8c:38:b5:9e:dd:30:92:0b:0a:3f:12:d0:bb:
0c:0a:67:cc:6c:0d:c0:3d:8e:36:3e:16:ca:3b:28:c3:7f:16:
a5:a9:42:80:2f:5e:db:4f:e7:73:43:dc:68:c5:64:50:48:ed:
b2:0e:33:d6:6a:63:18:39:88:11:bb:3d:c4:13:f7:5e:ea:1b:
f6:a4:33:c4:8f:82:cc:b1:4b:fc:51:74:68:53:82:0f:23:8e:
bf:72:6d:ef:eb:7b:cf:b4:96:78:23:be:28:1b:d3:ea:8a:14:
42:10:ad:43:63:89:ba:fb:25:87:bc:e1:27:97:a9:e3:aa:fc:
3f:4a:2c:87:8f:1e:43:b2:62:9f:da:36:90:ea:06:c1:fd:e3:
55:ca:8d:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:02 2023 by rpki-client on console-ams.rpki-client.org