Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/o0qrQPqayYYswZCU1cXac_gkSIY.roa
File: o0qrQPqayYYswZCU1cXac_gkSIY.roa (raw, json)
Hash identifier: Tmmyz/inxwWySc4jkBVNHJd8g6k8UM0q7IHm2KN1P2w=
Subject key identifier: A3:4A:AB:40:FA:9A:C9:86:2C:C1:90:94:D5:C5:DA:73:F8:24:48:86
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183D1081F3813FDD1314661B23AEDB791CA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/o0qrQPqayYYswZCU1cXac_gkSIY.roa
Signing time: Thu 13 Oct 2022 11:08:33 +0000
ROA not before: Thu 13 Oct 2022 11:08:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213164
IP address blocks: 2a10:2f00:18a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:08:1f:38:13:fd:d1:31:46:61:b2:3a:ed:b7:91:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 13 11:08:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a34aab40fa9ac9862cc19094d5c5da73f8244886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:f2:b7:e8:21:73:97:14:9a:a6:79:8f:b4:
e4:26:64:2b:f8:ef:01:c7:26:27:57:86:05:e5:a0:
1b:0c:fa:28:fc:b7:ca:69:0e:1b:5f:2a:7c:56:25:
50:07:93:3b:93:31:d1:a8:90:48:b5:0d:a5:ba:f4:
77:b1:e5:43:e3:5d:0f:fc:9c:a4:d6:c2:d6:73:a4:
1a:01:96:90:ff:57:35:6c:6c:7c:07:42:fa:c3:f5:
b8:92:30:90:2f:72:bf:33:bd:10:a2:90:43:3b:ef:
fb:b5:f6:f8:5a:2b:de:02:e7:3a:c2:5c:1e:c1:bd:
52:e9:eb:4c:94:c0:0d:d6:e9:b9:5f:52:91:23:32:
4c:94:43:a0:56:60:1a:49:34:6a:f8:8b:88:59:7b:
27:46:c0:48:85:44:5a:4c:bd:6c:3e:33:91:5e:d3:
65:05:f1:60:cb:5e:28:92:e0:62:44:6b:6d:b3:f3:
c1:95:67:fe:19:4b:f0:15:79:8b:8c:6b:75:ac:1c:
93:d8:6c:5a:2e:89:c8:9c:0f:25:8c:e6:0d:bd:89:
6d:79:de:be:6e:cb:d7:96:21:e8:b3:b7:d3:0e:3a:
94:9b:d0:fd:03:d6:80:de:34:0e:f0:ff:ee:61:1a:
49:dc:ca:50:b9:e5:13:42:74:2d:fe:ec:34:ef:dc:
d5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4A:AB:40:FA:9A:C9:86:2C:C1:90:94:D5:C5:DA:73:F8:24:48:86
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/o0qrQPqayYYswZCU1cXac_gkSIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:18a::/48
Signature Algorithm: sha256WithRSAEncryption
8f:93:cc:85:8b:87:0b:ae:d2:35:c7:7d:26:11:63:77:96:2e:
0c:aa:de:0f:56:2d:7b:97:ee:11:87:f5:b9:dd:0d:a4:8d:bd:
ab:38:56:aa:27:e8:ec:54:e6:e2:0f:b9:54:0e:c4:c3:77:be:
b3:be:70:c7:00:17:d7:43:c7:dd:fd:cd:2a:93:a6:ef:b3:cc:
40:da:33:ec:eb:47:28:1f:2d:c4:03:72:43:9c:3a:54:b1:6d:
78:e0:47:57:7d:2b:a3:52:df:16:13:9a:1c:dc:0c:e3:89:8f:
ef:4d:98:d8:a5:d4:72:ff:3f:ec:6d:36:72:e5:66:6f:3e:34:
6e:8c:1f:cc:24:9b:ad:d1:ff:a8:c7:8f:35:c6:2b:27:da:00:
85:eb:32:39:ba:05:d8:8d:75:8f:91:d4:37:16:b2:06:9c:2e:
a3:4d:24:3c:ac:3e:45:0d:2d:16:ac:0c:82:cc:cf:16:a2:ba:
2c:e8:67:33:6a:38:6b:b7:95:57:d6:ba:b8:95:02:9b:ab:41:
28:a1:13:35:2a:5a:93:7c:c8:9f:c9:67:0a:ff:33:4b:3f:b6:
e1:c0:8f:b9:fa:45:36:0d:a0:5d:67:b4:2e:f4:e8:14:98:e6:
b6:14:4f:32:8b:0d:2f:35:84:26:59:aa:f8:6a:bb:63:b7:3e:
a7:91:8a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org