Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hU-asD6C8smbjl5v1_MVzE9ZL1o.roa
File: hU-asD6C8smbjl5v1_MVzE9ZL1o.roa (raw, json)
Hash identifier: mIYmtS//LYyFcG971JQzgVlOFkKx11UWmclxTuG3a7I=
Subject key identifier: 85:4F:9A:B0:3E:82:F2:C9:9B:8E:5E:6F:D7:F3:15:CC:4F:59:2F:5A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 11DA13CD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hU-asD6C8smbjl5v1_MVzE9ZL1o.roa
Signing time: Thu 10 Feb 2022 00:02:07 +0000
ROA not before: Thu 10 Feb 2022 00:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210074
IP address blocks: 2a0e:b107:9f5::/48 maxlen: 48
2a10:2f00:17b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299504589 (0x11da13cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 10 00:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=854f9ab03e82f2c99b8e5e6fd7f315cc4f592f5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:94:ab:ec:b3:e4:40:32:14:47:37:e1:f0:49:
5e:56:88:68:ab:aa:a5:01:16:dc:4a:6a:e2:aa:27:
ed:9e:ce:71:42:31:cf:a6:6d:c8:03:07:3b:ad:0c:
3a:f3:81:2d:29:0a:fc:bd:ac:47:b3:af:da:1d:11:
c6:0c:ad:00:95:0f:0d:10:41:ee:18:d3:f6:0c:d2:
36:f6:1c:5c:9d:ac:45:01:5b:2c:cc:22:90:85:9f:
f3:d3:06:12:e6:e1:02:7b:5a:1b:43:28:fd:12:4a:
96:46:9a:1e:bd:b7:b6:1f:5a:d7:0c:89:cf:f3:b9:
80:8c:6a:93:9e:22:c6:30:b1:0e:a5:f6:0d:db:7b:
b1:d4:f1:85:39:00:c3:b7:9d:3c:18:0f:7b:ed:f0:
6c:97:7b:85:96:e1:4e:fb:24:05:cb:eb:a7:f2:c6:
18:c5:59:82:76:9e:14:75:f9:eb:2c:df:ae:ca:59:
c9:20:f1:92:a4:c5:bb:05:4d:8d:68:75:48:be:a9:
16:50:d0:83:34:ff:bb:68:72:e8:f4:8d:00:1d:67:
ed:0a:91:45:65:2b:a8:55:ac:40:83:a2:97:fa:bf:
e8:69:7a:df:05:3f:fc:22:43:c1:96:89:b9:55:d4:
5f:46:c8:54:68:c8:d4:89:11:e9:8f:ac:7d:70:d7:
df:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:4F:9A:B0:3E:82:F2:C9:9B:8E:5E:6F:D7:F3:15:CC:4F:59:2F:5A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hU-asD6C8smbjl5v1_MVzE9ZL1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:9f5::/48
2a10:2f00:17b::/48
Signature Algorithm: sha256WithRSAEncryption
b3:75:91:01:74:78:7b:7b:b1:6e:ab:c7:6e:e1:d1:1a:6a:d0:
7b:f4:23:5d:17:92:09:d8:53:87:8a:de:b6:ef:4a:4a:c5:fb:
11:5a:44:48:27:d2:91:36:c8:a5:77:e3:c8:82:34:b7:00:a5:
7f:f5:81:7d:9b:95:97:fb:2b:8f:08:bf:ec:54:ca:a7:4f:3c:
94:96:83:18:1f:aa:c4:dc:d3:da:59:df:40:ed:9e:bc:40:25:
7d:9b:83:8f:4c:27:e7:98:6d:2a:ec:47:bf:c9:0d:ca:a1:1b:
31:4a:75:ae:cd:60:dd:40:e1:bc:20:5f:27:1f:34:7e:3d:51:
65:a8:f3:9f:b1:6a:79:68:19:da:5d:f0:82:36:16:0e:11:94:
9e:26:e2:21:a2:f5:45:90:67:f2:fe:43:c1:8b:dc:0f:33:bf:
0a:cc:63:d7:29:34:65:5c:e3:5b:82:6a:d3:82:8e:bd:52:82:
81:bc:c5:95:b5:0c:62:1c:2a:cc:c2:72:dc:38:c2:f7:0d:29:
ee:06:ee:d4:36:1d:f5:5d:fa:53:d9:87:55:81:24:59:92:e7:
89:49:23:a4:21:90:6d:e5:97:19:eb:d4:77:68:0d:78:80:1b:
fa:bc:c8:c5:5b:e2:85:07:08:2f:c8:d0:4e:a8:a2:6b:c1:af:
e8:c7:63:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:02 2023 by rpki-client on console-ams.rpki-client.org