Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gVBbJ7G37YPUrAsVLnCzszckhyQ.roa
File: gVBbJ7G37YPUrAsVLnCzszckhyQ.roa (raw, json)
Hash identifier: mEhSDDBLVF3C8edzH4cbzlMARYQYmS2WQeM3oY0lxgw=
Subject key identifier: 81:50:5B:27:B1:B7:ED:83:D4:AC:0B:15:2E:70:B3:B3:37:24:87:24
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1082A147
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gVBbJ7G37YPUrAsVLnCzszckhyQ.roa
Signing time: Sat 01 Jan 2022 09:04:52 +0000
ROA not before: Sat 01 Jan 2022 09:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138632
IP address blocks: 2a0e:b107:1f0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276996423 (0x1082a147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81505b27b1b7ed83d4ac0b152e70b3b337248724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:ed:d8:91:b8:f6:0e:98:3c:84:fc:3e:00:
5d:ce:6e:3c:58:c4:47:aa:9d:af:19:99:5d:b1:a2:
5e:3a:d5:18:e7:f3:f9:ba:05:8e:52:21:e6:99:13:
3b:80:8e:e5:40:b7:2c:67:9c:f9:c2:73:e8:1b:c2:
e7:f1:5a:01:ba:b6:3f:40:68:9f:01:85:f4:48:e4:
7a:cb:e2:46:1d:8a:66:4b:3b:57:13:9f:a6:c7:1a:
be:51:08:67:75:a0:46:e7:6f:53:f0:2c:62:11:ee:
8c:b2:6c:f2:04:8b:73:10:38:2e:d7:87:73:8e:c2:
9b:91:24:2c:1a:5f:35:6b:63:0a:df:f5:ca:f5:08:
40:48:40:f3:79:9e:d6:d5:56:76:f1:02:e9:7c:ad:
82:2e:8e:7c:bc:95:ac:f2:15:5b:02:8c:e6:fa:5e:
0a:0d:a5:8f:c6:55:d7:64:8b:53:ad:00:ab:24:4a:
a1:f3:fb:ef:35:b7:71:90:99:0f:fa:58:2e:27:4b:
81:61:bf:e1:59:f6:b4:eb:50:72:b5:53:74:7a:46:
9d:9b:8b:1f:89:29:eb:54:dd:05:31:14:32:ad:9d:
14:d7:f6:13:a0:75:ce:3a:8e:db:35:19:1f:8e:41:
e8:af:21:95:42:b0:0e:51:ee:cb:c1:f3:46:8e:f6:
08:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:50:5B:27:B1:B7:ED:83:D4:AC:0B:15:2E:70:B3:B3:37:24:87:24
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gVBbJ7G37YPUrAsVLnCzszckhyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1f0::/48
Signature Algorithm: sha256WithRSAEncryption
c6:f2:56:6f:cf:2c:24:03:f0:14:f8:b6:4a:1f:0a:a3:d3:51:
2b:5e:8b:09:d2:c2:93:20:dc:bf:27:86:71:7a:17:d8:5e:28:
40:1a:5c:7b:b0:e0:e4:49:1c:bf:94:a3:c3:99:ed:e5:10:45:
38:92:92:1e:84:03:46:03:c8:70:0a:05:2c:1d:8e:e4:d1:aa:
a8:cb:38:92:5f:51:f0:6f:d6:ea:14:13:cd:6c:cb:4d:10:b6:
20:23:da:35:01:32:37:fc:32:06:7b:60:77:a3:f8:a7:88:a8:
af:ad:d1:47:e0:05:5a:0e:e3:ba:10:95:be:b5:40:f4:eb:73:
6e:03:22:2d:c5:01:4e:bf:ee:98:5d:5f:79:97:a1:50:28:63:
df:93:41:f9:87:7e:39:9d:ce:2a:3d:41:8b:77:34:19:17:41:
50:6d:95:1a:fc:9e:d0:36:97:c3:2e:4f:a1:29:55:dc:a5:d3:
63:ad:76:aa:86:1d:28:19:6a:71:39:ad:0a:f6:57:3c:60:12:
30:80:73:f1:68:76:72:72:0a:2c:d5:38:52:08:f5:d9:d3:07:
cb:a9:66:9b:e8:a9:b6:a1:9e:f5:bc:c6:3e:bd:96:f7:81:2c:
f3:94:1e:95:fd:9b:49:63:13:d5:af:2f:4c:70:2c:9d:db:45:
3b:72:a4:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org