Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lJd_hQONOigWn32GWptJlkBApgw.roa
File: lJd_hQONOigWn32GWptJlkBApgw.roa (raw, json)
Hash identifier: B8gEqYeYIelEC+ksbQFU8TCUT3qhrwwseMWCFNC4HU4=
Subject key identifier: 94:97:7F:85:03:8D:3A:28:16:9F:7D:86:5A:9B:49:96:40:40:A6:0C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 106C8FFD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lJd_hQONOigWn32GWptJlkBApgw.roa
Signing time: Sat 01 Jan 2022 09:04:34 +0000
ROA not before: Sat 01 Jan 2022 09:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6556
IP address blocks: 2a0e:b107:180::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275550205 (0x106c8ffd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94977f85038d3a28169f7d865a9b49964040a60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:57:67:79:d0:a0:be:0a:62:0a:72:7c:59:26:
46:36:9e:89:75:fa:a7:23:20:7c:74:b8:80:3b:70:
af:98:14:c2:0c:62:9b:c5:d7:28:f9:0e:ec:0e:27:
e2:4c:2f:33:b3:14:c3:ee:02:4b:22:eb:eb:cf:fd:
48:f8:a4:d1:74:e1:42:01:32:4a:1c:a0:30:a9:11:
d6:30:5d:89:44:5f:f6:3a:2f:4e:ae:90:27:c3:61:
64:20:6e:0d:37:2f:2f:0d:32:f2:5e:fd:8f:50:eb:
cb:b0:49:2d:dc:ac:3e:1b:9a:32:8d:63:63:1a:06:
42:e7:d9:7f:17:b8:1e:73:ed:cb:8c:49:66:24:f6:
9e:e5:fd:69:0d:5b:06:ed:ac:27:f0:dd:fe:c5:e5:
09:5a:0e:64:4d:83:2d:69:f5:1a:0c:35:5c:aa:f3:
25:71:60:92:45:07:18:04:cf:8b:4f:37:12:8b:83:
02:da:47:a9:50:57:c4:c6:fd:70:90:58:57:24:f0:
f8:76:0f:8f:54:8c:f3:a1:f4:d4:bd:01:33:a3:5a:
6d:c4:b6:8e:65:1c:fa:a9:97:40:bc:4a:78:82:78:
44:1f:f8:e8:b9:bc:21:3d:2b:d9:42:6e:2f:71:93:
1e:48:db:83:7a:18:2c:f1:9a:55:8c:43:90:aa:53:
50:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:97:7F:85:03:8D:3A:28:16:9F:7D:86:5A:9B:49:96:40:40:A6:0C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lJd_hQONOigWn32GWptJlkBApgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:180::/44
Signature Algorithm: sha256WithRSAEncryption
5b:4d:0a:08:a0:3d:f3:72:32:eb:6a:fe:42:39:79:93:58:fe:
82:ec:18:cd:aa:82:96:b1:95:ae:7a:21:4f:34:97:d8:aa:76:
dd:bd:e6:e4:ec:db:89:65:cf:6d:53:fd:62:d1:d2:e0:7f:b7:
19:82:50:5e:41:f3:bd:dc:90:0c:f3:a5:87:bc:65:e1:34:2a:
76:cc:00:dd:4c:e8:c7:4d:cb:12:33:1a:8b:56:28:83:25:95:
6d:4e:30:e0:11:d5:12:eb:40:ad:b3:0e:c5:67:66:a6:99:f6:
0f:ed:9b:e5:f1:a5:27:f5:b8:89:52:c8:7d:eb:c2:5d:d9:a0:
21:95:15:32:88:1e:8e:81:cd:d6:d8:68:b9:93:fe:a1:a2:67:
4e:9e:d6:98:31:4e:b4:c3:cc:32:9a:b7:d2:08:61:d1:ca:b1:
2d:6d:3c:ca:3a:8e:7a:5a:42:5a:c4:2e:97:bd:63:dd:3a:14:
57:9e:cd:bb:c5:cc:97:72:40:99:e7:fb:14:3b:51:36:e6:e7:
ec:cd:29:75:02:fd:6b:6b:1e:f4:24:0e:c1:58:14:a5:68:15:
dd:e6:07:ac:a5:cb:a4:cc:bf:81:43:60:ec:38:c4:48:66:3d:
a7:71:f4:aa:06:29:b3:cb:8a:d9:2d:ab:c2:f3:34:a7:d2:71:
51:cb:43:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org