Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mG3ndvXS8t_pf-ypLGbeHYjH83w.roa
File: mG3ndvXS8t_pf-ypLGbeHYjH83w.roa (raw, json)
Hash identifier: X7FQ9zF+6E8T6OsEJaG497DGeU3F0/FMIBDh5QvWnmE=
Subject key identifier: 98:6D:E7:76:F5:D2:F2:DF:E9:7F:EC:A9:2C:66:DE:1D:88:C7:F3:7C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 155111CD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mG3ndvXS8t_pf-ypLGbeHYjH83w.roa
Signing time: Mon 27 Jun 2022 10:14:41 +0000
ROA not before: Mon 27 Jun 2022 10:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211868
IP address blocks: 2a0e:97c0:1a0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357634509 (0x155111cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 27 10:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=986de776f5d2f2dfe97feca92c66de1d88c7f37c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a1:d8:c5:e8:f9:d5:b0:1e:5b:57:ea:72:0c:
d8:9d:fd:64:74:63:3f:b6:9d:a5:93:21:7f:42:a8:
ad:12:f0:c0:5e:89:69:f2:75:68:d3:5b:66:5b:52:
97:e8:eb:4c:49:7f:7f:36:3e:01:f9:95:fc:99:bc:
30:e2:1a:0b:90:9e:4c:41:fc:0d:8e:e8:c6:a3:1a:
49:b9:25:84:36:b3:d3:39:6a:43:cc:f0:5a:d5:28:
b2:0a:e3:75:6b:19:a7:e4:36:8c:fa:6c:19:b5:d7:
08:60:50:71:8a:a4:56:77:93:f2:46:3b:04:32:72:
87:73:62:0c:5e:8b:36:bb:d2:8b:3c:7d:3a:2b:e1:
a7:40:b0:50:dd:d8:e0:99:9e:f9:01:7d:d9:fc:78:
f9:0c:cb:b3:01:cc:83:e2:5f:db:8d:78:3b:98:0d:
26:4e:b2:f9:e6:71:74:c6:1c:b1:77:b0:93:e9:b7:
bc:b5:9d:ca:d6:5f:0f:93:ba:92:53:99:4c:21:38:
19:f2:13:17:fb:84:7d:88:43:4f:50:51:e6:c5:58:
43:81:36:62:23:c3:98:04:b5:0e:89:f6:49:b7:8b:
15:9f:4a:e5:5b:06:60:af:5e:37:30:a7:dd:4e:39:
56:5d:27:2b:ab:c9:85:78:86:bc:f1:60:51:5f:a0:
ef:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6D:E7:76:F5:D2:F2:DF:E9:7F:EC:A9:2C:66:DE:1D:88:C7:F3:7C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mG3ndvXS8t_pf-ypLGbeHYjH83w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:1a0::/44
Signature Algorithm: sha256WithRSAEncryption
8a:ee:91:12:f7:6e:c2:68:ed:ee:a3:4b:0b:20:98:a0:d5:e9:
11:e6:bd:1c:e9:46:c9:f1:4e:88:a9:12:9d:e9:ae:9f:17:15:
0b:a0:aa:f0:cf:ae:14:92:a1:50:fa:14:7d:a3:5f:65:f7:87:
2f:0d:b0:2b:81:41:a7:35:73:9c:3f:b7:d6:26:6c:1d:65:7e:
56:a3:17:c2:f3:5a:9f:f9:14:b1:22:1e:98:4b:d0:75:fd:3a:
5c:f6:a1:a4:fc:4f:3e:6f:7d:0c:02:a8:9c:b9:d5:2a:dc:00:
8d:72:1b:87:90:67:07:50:d1:46:36:8e:75:50:ae:14:33:7c:
4e:c0:17:49:12:ae:62:59:52:19:7f:51:78:9f:5a:ff:24:ff:
88:5b:8e:3e:00:c9:7e:dc:d3:52:77:f7:22:af:6c:fd:e2:17:
78:c8:3f:6e:45:b4:01:0b:cf:62:49:40:eb:06:ea:0f:c6:dc:
24:03:e1:db:59:99:4a:1f:51:21:0f:73:00:0d:2f:d7:2d:5f:
5f:10:01:34:78:c7:e2:1e:ab:68:72:c5:f5:91:11:3b:67:6d:
4b:6f:3e:a8:4f:3e:61:72:32:41:b2:5e:0e:b9:a5:70:b4:bb:
15:61:22:c1:e4:6d:c5:5b:69:44:46:3a:b5:d6:f5:8e:a1:2c:
08:4b:d0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org