Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/il1ny4-B-J6414TF7CD9Untl8MQ.roa
File: il1ny4-B-J6414TF7CD9Untl8MQ.roa (raw, json)
Hash identifier: d6V+uw71WEaL960LM1jydlkcyV55lsA5JgnA6QZuClE=
Subject key identifier: 8A:5D:67:CB:8F:81:F8:9E:B8:D7:84:C5:EC:20:FD:52:7B:65:F0:C4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01855401DCC52C2AAC453E6A193109E93C2D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/il1ny4-B-J6414TF7CD9Untl8MQ.roa
Signing time: Tue 27 Dec 2022 14:34:46 +0000
ROA not before: Tue 27 Dec 2022 14:34:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200270
IP address blocks: 2a10:2f00:190::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:54:01:dc:c5:2c:2a:ac:45:3e:6a:19:31:09:e9:3c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 27 14:34:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a5d67cb8f81f89eb8d784c5ec20fd527b65f0c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:76:39:e8:93:23:11:23:6f:de:3e:45:79:dc:
8b:60:78:87:6d:10:85:7a:3f:26:5a:24:2a:0b:b2:
ec:66:ae:0a:74:bd:95:b2:ce:39:85:d8:cd:6c:c2:
58:d0:f0:f6:74:8e:b6:77:bf:09:ab:3d:a8:90:c3:
87:28:5f:f5:eb:78:bd:05:a7:ae:cf:cb:bd:25:13:
d8:9b:52:b4:1b:f4:58:da:7c:81:77:39:0c:03:76:
2b:81:f6:a9:0f:75:77:92:d7:a4:9a:a8:7a:f1:40:
62:8b:81:6b:33:e3:ce:46:d5:67:f1:8b:cd:68:11:
44:c6:ef:d8:04:21:31:fa:43:ea:d9:51:d0:7d:85:
a0:77:61:6a:74:76:66:2b:33:b9:b0:67:83:b0:ab:
c2:51:28:06:5c:f4:4b:9e:32:23:de:34:d7:5d:2c:
55:52:9e:63:a9:5e:31:76:2d:f4:09:04:2d:e0:84:
a6:a5:f1:e7:de:fb:69:85:ae:c4:e7:ff:f4:13:bf:
c7:78:dc:c0:cf:de:4d:cc:d9:6a:c2:d9:4f:1d:a2:
bb:dd:7b:fe:d7:e1:f0:c3:6e:43:80:6e:02:3a:22:
e7:09:f8:46:0a:c6:29:64:5a:a4:00:3c:dc:46:19:
38:34:2b:22:d7:f3:0d:29:c6:2f:21:2f:06:83:fd:
f2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:5D:67:CB:8F:81:F8:9E:B8:D7:84:C5:EC:20:FD:52:7B:65:F0:C4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/il1ny4-B-J6414TF7CD9Untl8MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:190::/48
Signature Algorithm: sha256WithRSAEncryption
56:12:5a:fc:d6:ba:b9:a7:84:f7:39:6d:ae:a1:cb:84:e2:d6:
ee:cd:35:50:cb:b9:7a:d5:36:f5:eb:d8:55:c8:28:16:5d:84:
29:52:ed:b5:f8:cf:40:3a:a6:fb:e9:5c:4b:ed:d9:ca:ed:28:
26:55:66:13:e0:14:a0:89:ad:f2:99:a6:f9:42:52:c6:66:44:
42:f4:b2:90:75:1d:c5:6c:54:f8:f1:74:0f:83:e3:a6:b8:fe:
5c:b5:da:27:bc:ba:29:bf:f4:44:7d:a7:80:e4:e0:83:3b:2d:
22:75:49:d2:2f:e9:5c:2b:7b:24:d6:89:87:51:ac:60:ea:b7:
6b:e3:8e:07:f3:36:b1:dc:bb:b1:81:13:e8:2a:55:56:0f:50:
5f:02:77:4e:73:b8:23:48:17:0d:6a:53:e3:c1:e5:3d:87:29:
3a:e3:78:a5:ae:bb:2f:55:8b:ab:96:05:83:8f:64:a7:53:aa:
c0:fa:f3:3c:1a:21:93:b7:05:1d:b2:99:c1:7a:39:43:1a:e3:
78:51:cb:b1:7d:67:9f:17:13:e9:fd:3c:75:27:0d:7a:5a:82:
43:29:7e:61:e2:52:1c:6c:32:23:87:c9:4e:73:98:e5:31:f8:
7c:0a:b3:13:24:40:15:b1:2e:a3:c0:64:f1:88:b5:7e:22:24:
46:dc:c0:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org