Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n1UbubJ5SfKKTCP6I-CCQY_uP6c.roa
File: n1UbubJ5SfKKTCP6I-CCQY_uP6c.roa (raw, json)
Hash identifier: iz5zpAOP/kuDmv3VYimLjOrZq/Q9+3xYqT1rOiFlYE8=
Subject key identifier: 9F:55:1B:B9:B2:79:49:F2:8A:4C:23:FA:23:E0:82:41:8F:EE:3F:A7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1495B1B3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n1UbubJ5SfKKTCP6I-CCQY_uP6c.roa
Signing time: Thu 12 May 2022 16:43:02 +0000
ROA not before: Thu 12 May 2022 16:43:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207941
IP address blocks: 2a10:cc40:170::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345354675 (0x1495b1b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 12 16:43:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f551bb9b27949f28a4c23fa23e082418fee3fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a5:a7:55:cf:ae:a1:97:1b:26:9c:45:fd:6f:
78:71:25:bf:40:da:46:2b:37:6c:70:26:2f:82:7d:
b7:9a:06:90:0e:9a:28:73:78:eb:12:1c:74:96:5d:
da:91:30:73:a1:3d:6b:64:29:eb:48:ed:13:c6:68:
1c:34:4b:c4:4d:03:14:c4:66:e6:38:80:7e:cf:8f:
0d:d2:af:63:7d:08:0f:ff:9c:95:9d:46:db:70:08:
5f:9c:e4:36:bd:e3:48:0b:81:54:11:d1:3f:97:f6:
4f:27:89:86:86:65:d0:bc:52:6e:1a:c8:a6:6d:6d:
a3:8a:50:28:93:79:3c:79:92:69:01:3c:40:f0:91:
d0:47:de:cc:29:ff:6e:ed:8e:d8:f8:5b:92:ab:73:
f4:68:76:f6:52:7e:c7:27:26:3e:1f:84:4a:30:01:
a6:a0:67:fc:e7:ad:fe:97:3a:24:38:3e:23:21:7f:
92:3f:08:25:9a:d0:9a:84:e6:a7:6f:0a:64:ab:c5:
7e:80:db:44:37:eb:e8:33:21:0f:fc:62:dc:7d:f0:
33:8c:b7:5d:76:fc:9f:b2:10:12:a0:a5:24:13:1d:
b2:92:78:8a:aa:fb:27:19:65:e0:95:1c:c1:d6:9c:
71:fd:62:f3:ce:3b:33:bd:bb:e7:25:e5:76:0c:3a:
da:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:55:1B:B9:B2:79:49:F2:8A:4C:23:FA:23:E0:82:41:8F:EE:3F:A7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n1UbubJ5SfKKTCP6I-CCQY_uP6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:170::/44
Signature Algorithm: sha256WithRSAEncryption
80:15:48:00:d0:dd:91:49:c3:eb:04:a0:fb:d6:3e:f8:3c:84:
9c:63:e6:33:49:8b:39:18:99:11:29:a0:61:6f:39:74:14:a6:
36:bc:f9:c8:5a:d4:ac:c1:96:79:c4:97:2f:93:b5:41:36:fa:
f9:63:eb:81:bb:fa:55:7d:6b:78:3c:eb:b8:7e:b6:03:51:79:
46:73:fa:70:6a:58:b0:eb:97:25:2e:66:d9:42:28:7c:d2:f7:
9a:12:79:43:ad:0d:9b:a2:8e:3d:21:5f:d9:17:e7:a9:30:c3:
09:30:a9:04:6d:e4:34:73:de:89:a9:32:7d:90:fc:e6:69:aa:
41:a0:d6:fd:ac:c1:72:07:5e:37:07:97:23:f5:8e:cc:bf:ff:
97:91:0f:0f:ac:04:e9:35:8b:63:af:f8:6d:91:7a:71:40:d4:
d5:03:f9:72:42:65:a7:2f:a7:b0:55:4b:de:58:fd:68:50:81:
f3:42:7f:26:54:8b:7d:c2:80:22:ab:85:e5:2b:ee:62:0f:78:
03:d9:e6:01:30:c1:1d:9d:dc:89:01:ae:9d:72:b9:a5:fa:4b:
24:07:4d:44:80:5c:b8:c9:8d:6b:ff:ca:f5:28:00:d2:1a:21:
71:e4:19:f4:77:9b:a7:3d:7e:3c:ec:fa:6e:ed:83:97:eb:7a:
6b:5c:c9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org