Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q6Sdc_ry113DBTynoi8zIkTR27k.roa
File: q6Sdc_ry113DBTynoi8zIkTR27k.roa (raw, json)
Hash identifier: dwl4pOTu0tC/uIknRrk5gT5AftJIFuyrXCGYb1OScSs=
Subject key identifier: AB:A4:9D:73:FA:F2:D7:5D:C3:05:3C:A7:A2:2F:33:22:44:D1:DB:B9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10C3D375
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q6Sdc_ry113DBTynoi8zIkTR27k.roa
Signing time: Sat 01 Jan 2022 09:05:28 +0000
ROA not before: Sat 01 Jan 2022 09:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211305
IP address blocks: 2a0e:97c0:382::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281269109 (0x10c3d375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aba49d73faf2d75dc3053ca7a22f332244d1dbb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:83:f5:fd:24:e4:fa:75:90:cb:d8:4d:43:
8e:c8:a8:af:58:f1:fd:6e:d3:8c:d5:e4:da:ec:70:
b8:51:43:d8:76:6f:0c:33:a2:34:f9:ef:97:a7:08:
4c:24:6f:e3:c5:99:da:09:53:80:03:a9:1e:64:e4:
7e:ed:1a:f0:2c:f5:ee:52:2e:4d:47:3a:ce:63:07:
c1:1d:ed:96:3b:6a:59:cd:54:ed:88:52:54:77:20:
7d:e4:b5:85:15:d9:b2:14:29:86:a1:99:3a:b5:43:
63:f1:21:87:dd:af:2f:31:19:5e:52:d5:c7:62:bb:
2c:de:45:13:06:c0:09:0b:46:74:5c:34:5a:ca:44:
12:f0:23:ae:f7:4a:27:49:69:c3:6d:eb:83:a2:98:
14:cd:f6:bf:87:8e:40:19:e4:02:28:54:a8:f8:bc:
09:fe:90:83:f4:f0:97:eb:31:27:68:57:9f:28:a5:
1f:78:8e:93:35:18:88:85:69:c9:9e:13:31:7f:d5:
4c:fa:65:e7:82:ee:ad:53:a4:bc:24:b5:91:1b:14:
e8:51:37:59:3f:15:d8:ad:f8:da:33:68:8d:a8:1e:
9e:43:b5:87:57:9d:21:97:4c:97:49:78:4e:c5:65:
15:ea:49:99:25:68:9a:1b:db:ad:66:f3:22:97:62:
ea:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A4:9D:73:FA:F2:D7:5D:C3:05:3C:A7:A2:2F:33:22:44:D1:DB:B9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q6Sdc_ry113DBTynoi8zIkTR27k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:382::/48
Signature Algorithm: sha256WithRSAEncryption
71:10:76:ee:b0:97:10:f4:f3:db:47:fc:51:5a:28:62:12:d5:
56:fd:38:1f:e9:d9:ab:00:71:db:f7:56:7a:a4:bb:b8:eb:92:
72:e1:cf:0b:d2:23:b3:eb:36:2a:a1:19:62:9a:80:fe:54:3a:
e0:87:53:9b:54:3d:60:57:ae:ae:13:a6:db:0e:32:31:ec:7c:
e2:0d:b8:dc:ac:dd:2a:ab:5b:9e:a8:14:50:32:6d:6a:66:2a:
d9:b2:29:7f:14:66:19:2e:56:6c:c7:c0:88:ff:af:8f:8f:e0:
7e:3a:27:51:cd:9c:02:0e:6b:9e:bc:e9:ec:ba:54:a6:51:a3:
0f:3b:b7:8b:a5:82:e9:d6:72:e5:93:98:5d:f8:9b:e9:43:e1:
68:a3:a6:10:83:b0:e6:56:cc:6e:45:31:04:67:1c:9b:ad:d4:
fe:78:0f:22:6c:76:a1:93:40:ad:c4:4e:36:87:5c:1f:59:bf:
a9:f0:cd:80:95:31:c6:df:0b:65:bd:08:5b:89:e7:e0:64:e5:
c7:ad:e4:e3:0e:4d:23:c8:5c:a6:81:7e:d9:05:32:d4:cf:a3:
86:c3:af:a1:f3:9e:e6:1f:00:08:a0:37:a6:60:a7:09:f7:0c:
e3:18:af:e1:e6:fa:91:ae:cb:cd:f6:c7:7a:79:ba:be:ad:d1:
2b:1d:8a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org