Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jO_gr6vJliCREQjP4zV6VFAgyIM.roa
File: jO_gr6vJliCREQjP4zV6VFAgyIM.roa (raw, json)
Hash identifier: znnKVymTSD1eabucymTG82XOX8kqjlaqKAi3ZBDAkvE=
Subject key identifier: 8C:EF:E0:AF:AB:C9:96:20:91:11:08:CF:E3:35:7A:54:50:20:C8:83
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01820FA6448A342F1B7EECA45A97555F6C76
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jO_gr6vJliCREQjP4zV6VFAgyIM.roa
Signing time: Mon 18 Jul 2022 04:52:10 +0000
ROA not before: Mon 18 Jul 2022 04:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35708
IP address blocks: 2a10:2f00:173::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0f:a6:44:8a:34:2f:1b:7e:ec:a4:5a:97:55:5f:6c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 18 04:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cefe0afabc99620911108cfe3357a545020c883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:96:4f:77:3b:a2:71:b3:f7:e3:aa:a8:55:46:
c0:3f:32:e8:0b:42:97:70:a2:cc:cd:00:0f:50:ef:
37:40:98:39:83:30:45:42:9d:47:c2:82:da:fb:55:
bc:fd:d5:50:b9:50:56:b2:eb:ab:19:91:cf:5a:c6:
7b:4e:b7:df:a2:87:fe:fb:8b:93:34:18:3a:78:fd:
be:a0:c5:25:f9:ee:6f:93:13:c2:1b:95:ad:da:52:
c5:29:77:35:25:30:dd:8d:a3:1e:49:5f:3f:1b:70:
32:f4:d4:12:eb:75:08:7a:00:3e:2d:7e:49:e9:a7:
be:f8:c1:32:f9:00:76:5e:33:ff:48:34:aa:cc:66:
cf:5e:44:97:fc:be:1f:b4:66:e6:c1:94:e2:e1:54:
f6:bc:cc:dc:18:f6:10:ec:ce:3a:3c:2e:de:6b:d9:
43:e7:ef:98:0e:89:1d:01:93:c6:e7:6c:9a:33:b0:
78:5f:bf:ff:50:6e:00:cf:09:19:a2:b1:a8:2b:79:
d6:95:84:3f:df:92:4c:27:cb:37:8d:a2:56:2c:97:
83:bd:89:8b:a3:25:23:cd:6e:c9:e0:fd:67:b3:6e:
31:29:ea:f2:df:d8:00:63:a0:a7:f7:ad:a3:91:51:
39:1f:5b:a3:02:42:9e:00:69:c2:10:10:37:64:fd:
40:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EF:E0:AF:AB:C9:96:20:91:11:08:CF:E3:35:7A:54:50:20:C8:83
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jO_gr6vJliCREQjP4zV6VFAgyIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:173::/48
Signature Algorithm: sha256WithRSAEncryption
3e:11:a8:6c:4e:75:61:46:73:ae:29:b2:3e:f9:23:fa:23:68:
7f:50:6f:aa:0e:ca:cd:dd:fe:76:7c:86:86:e0:b8:1a:78:b8:
50:de:f6:7d:c3:09:87:ca:77:20:2f:89:9c:b4:4e:ff:8e:1b:
bb:3b:ed:22:33:27:9a:a1:61:d7:4f:e8:f7:99:b8:63:77:09:
de:42:ff:e3:8f:8b:4c:61:b7:22:af:a0:03:df:c4:88:a4:67:
96:71:58:de:66:91:f0:6c:29:63:c9:08:0f:c1:e9:62:6c:6f:
0e:82:42:c6:c4:07:b8:1d:64:69:36:96:69:13:25:87:e5:48:
78:03:fe:60:be:b6:87:76:aa:97:9c:17:88:1a:82:c9:a6:34:
8e:b0:66:5a:f5:cc:96:0a:f9:57:f1:55:47:9b:05:f9:b4:c1:
bb:4a:29:94:67:0f:9f:31:13:49:03:e9:2a:14:75:8b:30:d8:
f4:30:41:81:14:29:39:de:7b:9d:f7:21:53:3d:fb:c6:d8:3f:
97:32:57:0c:29:2e:57:2f:a7:47:be:c3:47:34:4d:85:09:3e:
af:67:69:fd:18:ae:9e:96:bd:98:9a:80:b5:92:39:38:1e:82:
69:df:1f:b0:73:e7:d3:aa:64:43:f0:0e:21:a0:03:07:d3:da:
46:aa:b0:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:02 2023 by rpki-client on console-ams.rpki-client.org