Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qT56D69U_3upd3xAbCzHb0Db5BU.roa
File: qT56D69U_3upd3xAbCzHb0Db5BU.roa (raw, json)
Hash identifier: XmAqVVYwomDw/cpvFD3amwf18wMWHyLbrJOWrGcX+KQ=
Subject key identifier: A9:3E:7A:0F:AF:54:FF:7B:A9:77:7C:40:6C:2C:C7:6F:40:DB:E4:15
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 156B93B5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qT56D69U_3upd3xAbCzHb0Db5BU.roa
Signing time: Wed 29 Jun 2022 21:55:03 +0000
ROA not before: Wed 29 Jun 2022 21:55:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210864
IP address blocks: 2a0e:b107:19f0::/48 maxlen: 48
2a0e:b107:19f5::/48 maxlen: 48
2a0e:b107:19fa::/48 maxlen: 48
2a0e:b107:19ff::/48 maxlen: 48
2a0e:b107:1a04::/48 maxlen: 48
2a0e:b107:1a09::/48 maxlen: 48
2a0e:b107:19f3::/48 maxlen: 48
2a0e:b107:19f8::/48 maxlen: 48
2a0e:b107:19fd::/48 maxlen: 48
2a0e:b107:1a02::/48 maxlen: 48
2a0e:b107:1a07::/48 maxlen: 48
2a0e:b107:1a0c::/48 maxlen: 48
2a0e:b107:19f1::/48 maxlen: 48
2a0e:b107:19f6::/48 maxlen: 48
2a0e:b107:19fb::/48 maxlen: 48
2a0e:b107:1a00::/48 maxlen: 48
2a0e:b107:1a05::/48 maxlen: 48
2a0e:b107:1a0a::/48 maxlen: 48
2a0e:b107:19f4::/48 maxlen: 48
2a0e:b107:19f9::/48 maxlen: 48
2a0e:b107:19fe::/48 maxlen: 48
2a0e:b107:1a03::/48 maxlen: 48
2a0e:b107:1a08::/48 maxlen: 48
2a0e:b107:19f7::/48 maxlen: 48
2a0e:b107:19fc::/48 maxlen: 48
2a0e:b107:1a01::/48 maxlen: 48
2a0e:b107:1a06::/48 maxlen: 48
2a0e:b107:1a0b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359371701 (0x156b93b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 29 21:55:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a93e7a0faf54ff7ba9777c406c2cc76f40dbe415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2d:c1:12:ad:3b:19:31:97:f6:1a:2a:dd:c6:
31:01:fb:6c:32:ba:1e:57:c6:f5:e6:db:de:99:c7:
1b:38:3d:8b:98:fd:cf:f7:d7:e4:3e:3a:0e:ee:36:
ca:e2:5c:29:b3:32:58:54:3c:46:0c:f5:4f:3b:03:
2f:b3:a2:c9:01:7f:b3:af:f6:c5:a5:06:8d:c2:0d:
d7:e9:ad:e5:21:d0:8d:2a:2f:9f:c8:9b:f2:d4:82:
ef:ca:18:58:17:82:c6:6e:8e:af:70:27:f3:e6:4c:
3e:84:3a:18:fb:f2:72:79:45:cf:de:8b:65:70:8b:
bf:ea:29:8e:47:a9:4d:2a:e0:d2:9f:f4:94:1a:1d:
19:e9:e0:b8:8f:00:68:19:ec:23:88:6c:27:9b:20:
ba:81:10:40:89:c3:98:3f:53:db:04:f3:9f:00:20:
ff:21:09:8b:8c:ee:a1:67:d2:e2:33:b2:cc:29:0d:
bb:2e:db:bd:9a:72:b9:93:86:d2:16:1d:64:13:8d:
2b:3a:79:93:9a:8b:73:c1:23:f0:1e:70:ee:e5:b2:
e2:64:2a:28:0c:f5:73:9a:15:b3:6b:a1:5d:ed:f3:
59:71:4b:c0:87:9a:db:d5:13:ab:5d:92:cd:47:26:
b5:b0:a7:0a:d7:8e:ca:53:a2:47:2e:c0:42:3f:0e:
5e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3E:7A:0F:AF:54:FF:7B:A9:77:7C:40:6C:2C:C7:6F:40:DB:E4:15
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qT56D69U_3upd3xAbCzHb0Db5BU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19f0::/47
2a0e:b107:19f3::-2a0e:b107:1a0c:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6f:19:85:bf:96:b9:82:31:fb:6f:0c:fa:af:e4:eb:86:ea:de:
6d:a9:07:4a:14:ef:91:da:31:96:16:3e:e9:06:4e:de:d5:6d:
99:da:ab:ee:d2:2c:e8:53:b9:50:14:cd:22:a2:c2:58:f0:4e:
31:89:5d:e1:45:05:29:7f:8a:98:93:7b:4f:3e:ba:f3:b2:6c:
1a:d3:aa:35:1b:1c:19:13:16:9c:7f:73:90:04:a4:4d:58:f1:
e5:0b:82:ed:69:e6:d9:c1:10:e2:f3:31:5c:ef:cf:84:62:35:
0e:59:d9:d0:a7:83:40:c8:e1:5c:0c:52:f9:6c:f2:43:85:60:
98:f7:e6:30:b2:ad:54:10:bc:71:9e:50:ff:98:d7:a1:b4:0f:
8b:77:58:92:95:07:a2:e3:3d:f3:f6:62:57:71:54:46:cf:13:
6e:eb:e1:c1:f5:f7:03:4e:5f:87:e5:e5:4d:ce:c6:09:50:0e:
e4:c8:f0:82:58:b6:46:5d:7c:9c:c5:78:c9:83:11:c2:37:8c:
64:3d:bc:0d:e4:14:9e:f8:61:12:b1:03:c0:12:c9:9d:42:e0:
c6:8c:98:7f:bf:67:b7:e5:f8:4e:9a:16:c4:43:3f:5f:9b:ea:
76:21:87:56:ec:a4:6a:ef:cc:cb:50:67:f6:65:20:aa:b2:ab:
42:f9:ae:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org