Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/j43q340AeOyFsaoFg31PpE1G-YU.roa
File: j43q340AeOyFsaoFg31PpE1G-YU.roa (raw, json)
Hash identifier: SinuGz/GQ33T3bvGFHzckOwx/Wy6DwJ4h7pZ7qxAhW8=
Subject key identifier: 8F:8D:EA:DF:8D:00:78:EC:85:B1:AA:05:83:7D:4F:A4:4D:46:F9:85
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 149E34CD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/j43q340AeOyFsaoFg31PpE1G-YU.roa
Signing time: Fri 13 May 2022 14:55:42 +0000
ROA not before: Fri 13 May 2022 14:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50200
IP address blocks: 2a0e:97c0:650::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345912525 (0x149e34cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 13 14:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f8deadf8d0078ec85b1aa05837d4fa44d46f985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:22:c9:91:5b:9f:d0:3a:4d:65:82:49:c5:6e:
0d:98:17:ae:10:37:9a:78:14:48:8a:87:1e:20:7c:
6d:c2:d8:af:ba:19:de:9c:b7:b7:bf:eb:5a:a8:0f:
6a:30:ec:54:9e:3a:04:99:29:05:24:92:c0:1c:82:
a0:71:06:56:57:76:9e:80:fa:e8:b7:d7:93:b6:3c:
9d:1e:10:f6:76:ff:0f:47:41:d9:dd:2f:4e:ff:80:
77:8f:59:03:3a:f2:bc:04:96:f0:c9:bf:d7:c1:c9:
ac:0e:0e:16:88:1d:14:38:22:eb:57:df:6a:67:5c:
c8:1a:f9:3c:a4:1b:0b:a8:1e:18:9b:25:ce:74:8b:
33:c9:13:0e:86:52:40:09:76:4c:23:f4:f7:11:9b:
64:69:ca:a0:8d:b1:80:02:95:f6:f1:bf:64:15:35:
c7:70:4b:23:0d:66:3a:74:c7:fd:7d:6a:15:c2:aa:
a8:e2:f8:ce:5c:72:b8:02:66:75:05:7b:10:14:78:
bc:53:93:6a:d5:a5:f7:d6:e1:83:d1:2e:d6:8c:ba:
eb:5e:88:56:51:24:92:57:7f:ea:5e:f1:ca:cd:21:
c0:cb:2d:46:8e:f8:34:d7:cf:79:eb:40:3d:c8:34:
dd:f0:6d:f0:91:70:e8:b7:b9:54:de:c7:9e:a9:13:
03:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:8D:EA:DF:8D:00:78:EC:85:B1:AA:05:83:7D:4F:A4:4D:46:F9:85
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/j43q340AeOyFsaoFg31PpE1G-YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:650::/44
Signature Algorithm: sha256WithRSAEncryption
25:02:86:4e:fe:9e:e5:19:02:3b:74:d3:dd:40:b2:7e:b4:77:
c9:3b:29:f8:ad:c9:86:36:cd:a5:63:44:52:24:db:8e:7b:24:
02:92:38:a7:3c:11:64:1b:58:94:17:7f:81:8a:f3:17:0f:cc:
65:c2:90:56:ef:a2:da:61:ee:04:2c:4d:4f:c8:99:e2:38:89:
9d:6a:1e:47:89:33:be:a2:0e:f7:8f:b4:84:b5:f1:a4:33:e7:
aa:e0:05:d2:1d:6e:af:6e:0d:3f:70:64:73:34:64:f0:2a:77:
a2:55:bf:01:8a:51:ca:eb:41:7c:98:c5:55:df:b7:95:af:f6:
fd:aa:ea:cc:69:47:6f:b9:92:51:24:08:f1:f8:32:28:43:de:
59:2b:d6:60:53:95:4d:9b:64:55:7a:76:99:ad:a4:41:bd:b1:
ec:b7:7f:e6:49:99:43:89:54:f4:a1:96:7a:03:8b:80:ca:95:
45:68:9e:19:a5:61:bb:60:40:13:da:a1:16:c7:c8:7d:41:59:
1b:2c:79:36:5a:47:89:42:72:56:fb:ee:5b:d4:e9:1f:7a:51:
8c:ab:d4:90:ba:33:e8:05:02:62:78:76:94:11:00:7d:20:a0:
dd:1d:2d:7c:ea:3e:a3:32:2e:e7:b7:1c:87:2b:98:4a:77:94:
bd:27:61:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org