Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kK8I1VJZMDoWl8wSba4aWp956mA.roa
File: kK8I1VJZMDoWl8wSba4aWp956mA.roa (raw, json)
Hash identifier: b250+2m16k6N3AaTjjHM32JLgHjkXXEghGSeRMWtD0Q=
Subject key identifier: 90:AF:08:D5:52:59:30:3A:16:97:CC:12:6D:AE:1A:5A:9F:79:EA:60
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 142520A7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kK8I1VJZMDoWl8wSba4aWp956mA.roa
Signing time: Sun 01 May 2022 15:19:55 +0000
ROA not before: Sun 01 May 2022 15:19:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210445
IP address blocks: 2a0e:b107:1a60::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337977511 (0x142520a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 1 15:19:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90af08d55259303a1697cc126dae1a5a9f79ea60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:43:15:1a:03:be:8a:49:de:df:2a:59:e4:fc:
d6:2b:02:e1:e9:8e:29:e1:99:45:9d:ad:15:ac:ae:
55:78:b0:c9:78:6d:3e:fd:84:71:46:23:78:9c:0c:
8e:cf:0c:a1:9f:db:c9:ce:b7:67:90:6d:86:b7:16:
3b:80:1b:70:47:07:63:3d:cf:9f:73:4c:98:35:cb:
99:db:b0:90:3d:9b:22:f0:71:a6:24:ca:90:0b:6a:
58:08:60:8f:61:b1:07:00:f4:aa:9e:40:08:1d:8b:
41:23:bf:d5:60:39:9e:5c:73:ac:5e:83:e1:41:0a:
00:a9:aa:13:20:fa:f3:b5:24:f8:65:c2:49:09:09:
ae:7a:eb:8c:29:2d:08:d7:86:c7:70:05:8d:30:b6:
44:0a:0d:29:ae:8c:94:99:94:43:7e:9c:80:21:c3:
17:8b:a3:aa:cf:ca:d4:19:86:6c:a3:33:1f:d9:20:
52:a4:68:ec:13:c7:3a:b2:4a:d7:c1:bf:32:14:f5:
02:20:ed:e5:9f:1d:40:a1:69:1f:b8:b5:5a:be:2e:
92:9b:b3:cb:5e:fb:3e:01:20:03:26:ae:42:07:26:
dc:24:9d:46:f5:f9:bb:1b:68:2f:ed:c8:4a:10:b3:
1c:1b:43:9f:19:46:d2:86:13:96:63:7c:65:47:6c:
85:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AF:08:D5:52:59:30:3A:16:97:CC:12:6D:AE:1A:5A:9F:79:EA:60
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kK8I1VJZMDoWl8wSba4aWp956mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1a60::/44
Signature Algorithm: sha256WithRSAEncryption
0a:15:f9:9c:93:a5:fa:11:ff:77:85:ab:6d:ba:87:66:3f:6b:
0b:bc:04:0a:35:33:fc:9c:4f:e4:2e:2d:67:e9:9e:5b:65:04:
26:f3:e6:49:c4:8e:2f:81:2d:71:1b:8b:c2:80:51:b9:4c:1a:
79:7f:2c:8d:36:4f:ee:5a:bc:4d:79:20:7b:c9:d0:17:5d:2d:
ef:ae:02:dc:55:e6:4b:4c:10:4c:93:72:85:87:9c:fa:79:fc:
7c:68:a5:0c:1b:f3:88:2d:48:66:53:af:78:9e:af:21:0e:12:
a8:17:9b:75:c8:2c:f3:5a:e3:13:3b:01:c2:9e:31:60:de:d6:
a3:f8:03:08:e7:74:4d:13:f1:54:6a:70:9b:62:ab:86:c4:b3:
f8:5c:c9:f5:8c:14:6d:71:61:43:d7:46:83:ab:cc:2f:7a:3f:
e7:ee:5e:c4:63:cc:fb:6e:6c:b4:85:9b:91:0d:b1:38:0f:a5:
5c:89:30:8c:57:eb:8c:3a:dd:6d:e6:c0:e5:93:2b:0e:33:aa:
7f:bf:92:8a:be:f8:8f:3c:0c:d6:74:16:bb:49:77:b5:5c:60:
17:43:c9:ac:fe:1f:51:be:cd:64:42:d9:77:a7:cb:e0:c7:9d:
57:bb:66:fb:92:2b:23:2a:85:93:5a:da:05:a0:09:72:3a:98:
24:eb:cc:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org