Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gz-VTtdnx4AEjMcwvlmmAMa9YVk.roa
File: gz-VTtdnx4AEjMcwvlmmAMa9YVk.roa (raw, json)
Hash identifier: b1FaiwHwkUkkLX6c36dJt452oD1kGBoKgUbLie57YRA=
Subject key identifier: 83:3F:95:4E:D7:67:C7:80:04:8C:C7:30:BE:59:A6:00:C6:BD:61:59
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10FACE6E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gz-VTtdnx4AEjMcwvlmmAMa9YVk.roa
Signing time: Sat 01 Jan 2022 09:06:02 +0000
ROA not before: Sat 01 Jan 2022 09:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213372
IP address blocks: 2a0e:b107:8e0::/44 maxlen: 48
2a10:2f00:128::/48 maxlen: 48
2a09:4c2:34::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284872302 (0x10face6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=833f954ed767c780048cc730be59a600c6bd6159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2f:c9:0b:e7:a2:93:69:0c:52:77:2f:83:f3:
06:fe:80:39:a2:15:73:7a:68:dc:88:6f:50:8e:cb:
0f:30:3f:dc:a2:81:32:df:fe:9c:fd:66:d4:af:b0:
14:de:1b:22:3c:2d:ac:d7:e1:59:9b:ab:5a:53:34:
6f:fa:6f:33:31:0e:84:d5:60:12:cd:96:bd:d6:40:
bb:44:f1:75:5b:3b:a2:bc:57:39:1a:7c:24:ca:91:
9f:be:29:69:9f:cd:4f:2c:d6:ef:99:69:9f:62:c1:
77:1b:b1:94:1b:3d:a4:5a:88:71:dd:fc:9c:5f:93:
1b:c8:07:05:c7:d6:18:04:bb:86:b0:16:88:f4:e5:
ee:8a:d3:e1:d5:eb:1a:e8:23:97:f9:64:fe:c8:3c:
41:f9:36:58:52:03:1c:71:a5:3d:09:be:50:eb:12:
1a:94:f8:3e:af:22:d4:a0:7d:83:8c:3c:cf:cb:9f:
58:b7:68:26:05:d2:c1:fd:a9:2a:ad:0f:24:93:49:
7c:85:b0:7c:81:46:b2:db:e8:04:a7:c1:fb:f5:ef:
61:ec:3b:ba:23:46:1f:7a:af:2a:60:86:9e:4e:d9:
7b:a3:f9:bc:24:45:91:23:41:02:33:73:9a:e9:80:
e9:8a:49:3b:38:d7:89:de:1d:1d:d1:e9:e4:c5:dd:
bc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3F:95:4E:D7:67:C7:80:04:8C:C7:30:BE:59:A6:00:C6:BD:61:59
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gz-VTtdnx4AEjMcwvlmmAMa9YVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:4c2:34::/48
2a0e:b107:8e0::/44
2a10:2f00:128::/48
Signature Algorithm: sha256WithRSAEncryption
41:49:b2:ba:02:64:e3:04:9b:e7:29:63:38:fd:ea:9a:33:c4:
be:ca:4f:cc:c8:a2:a0:e6:83:cb:56:74:61:ed:d1:af:48:36:
88:31:de:a4:cc:3d:4a:78:c7:5e:d4:2d:56:67:39:0a:7b:5e:
0e:5f:de:55:c8:1d:e3:ad:73:6c:a3:36:fe:2b:27:53:be:c6:
54:ea:94:50:69:5b:51:3b:57:06:37:5f:21:06:f8:8e:38:9e:
60:03:16:25:db:97:b4:a3:61:82:8e:93:e2:70:82:84:3d:bf:
c4:dd:e2:42:9c:ed:b2:12:24:68:4f:e1:c1:a6:d5:67:73:c5:
0e:44:ae:7e:cf:27:84:d4:c3:24:be:88:b6:b2:d2:a5:8b:84:
96:a2:a0:40:39:1b:94:64:7d:ff:34:9e:bc:06:86:12:cb:d0:
1a:c1:c6:81:8e:af:82:1b:14:88:72:1a:6e:70:53:16:2c:77:
5b:f1:86:7f:f9:4f:9e:7e:8b:e6:18:60:e5:48:a1:6f:ba:8c:
8f:82:7a:7a:a4:9c:83:86:65:fe:3b:a0:0f:02:55:77:21:e4:
ba:37:d6:21:b3:98:53:ad:6c:19:e5:25:0d:14:fa:d1:a1:bf:
cf:d0:f3:ab:a0:03:b4:77:1e:66:fd:9e:21:35:8f:13:1d:21:
8d:0d:bb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:02 2023 by rpki-client on console-ams.rpki-client.org