Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rGqsZvlaPBLupdPQfln_gjnMh4o.roa
File: rGqsZvlaPBLupdPQfln_gjnMh4o.roa (raw, json)
Hash identifier: Zw8D4NifcTuzvHKcrPwKv/ijmzy2IiPXfHkROSxqFIQ=
Subject key identifier: AC:6A:AC:66:F9:5A:3C:12:EE:A5:D3:D0:7E:59:FF:82:39:CC:87:8A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1531CC4C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rGqsZvlaPBLupdPQfln_gjnMh4o.roa
Signing time: Sat 18 Jun 2022 09:05:10 +0000
ROA not before: Sat 18 Jun 2022 09:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 2a0e:97c0:b33::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355585100 (0x1531cc4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 18 09:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac6aac66f95a3c12eea5d3d07e59ff8239cc878a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f5:cd:f9:f2:25:01:f1:f9:08:8c:9e:54:55:
8f:1c:96:9b:1d:f6:c2:a7:1f:78:3a:66:37:68:00:
94:fb:1b:58:ca:2d:18:6f:8e:46:aa:af:55:68:80:
ac:10:8f:f0:c7:a6:dc:e6:90:65:95:80:42:a7:6a:
e4:43:05:77:cc:44:69:ed:7a:9a:c3:b6:47:9d:ee:
c9:f9:a9:bd:84:21:32:4d:bc:ae:39:f4:ca:5c:b6:
e1:a9:28:78:74:ee:9c:70:a0:01:ef:2a:f3:87:08:
39:f9:ee:44:61:7e:a5:f6:70:fa:91:d7:3d:3c:c0:
b9:28:a3:33:24:6b:49:3c:fa:72:5b:4f:c9:2b:01:
45:8d:ce:c4:6e:b2:e6:47:27:7a:e1:11:30:c6:18:
b9:0f:64:91:bb:77:7b:12:4d:5d:ba:0b:72:a1:0a:
59:af:14:97:bb:ae:4e:d1:4f:57:cf:88:13:cc:c9:
67:17:0c:fa:c9:d8:63:f1:0a:3c:cb:d4:b1:d0:c9:
7d:5e:59:27:10:b7:76:3e:2c:13:f8:04:7f:5b:a9:
6a:22:d0:ac:19:1c:f4:0e:0b:c3:8e:15:19:46:78:
99:8c:55:d3:53:71:35:2f:de:15:2a:c4:59:ae:bc:
88:9f:6a:44:05:a3:73:e3:0d:96:c3:77:2c:5f:ff:
7c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:6A:AC:66:F9:5A:3C:12:EE:A5:D3:D0:7E:59:FF:82:39:CC:87:8A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rGqsZvlaPBLupdPQfln_gjnMh4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:b33::/48
Signature Algorithm: sha256WithRSAEncryption
65:13:43:b0:07:eb:a3:9e:56:87:5f:59:0f:e2:c8:58:3b:9a:
4c:72:33:15:07:43:2d:75:41:0b:b2:88:85:88:3c:e7:f9:ab:
49:02:3f:00:f8:3d:a9:bb:58:70:71:81:58:4e:0b:7a:9c:fc:
65:d1:ad:3e:b1:42:1e:14:71:01:59:4f:9d:99:b2:27:12:7f:
a6:22:fe:38:97:3a:2a:02:e4:37:3d:f9:63:01:46:78:e0:d5:
27:bc:83:7b:21:3b:1c:4b:b9:f0:b5:ff:27:7a:01:22:74:22:
3d:91:41:93:d5:62:3d:1f:0a:b3:b0:3f:cc:4f:90:58:fb:57:
ae:ef:d4:07:41:d1:43:8f:51:d4:87:db:a3:db:f6:df:f3:fa:
60:6b:d6:9e:6c:a4:d4:08:3a:83:93:8c:51:85:79:bf:6a:27:
61:e3:e4:62:7d:b5:73:3d:40:0a:c6:20:7a:60:5d:90:8c:c0:
a6:dc:de:05:54:5e:ff:e9:d2:1a:fa:24:39:20:81:41:27:f1:
a0:70:8c:28:91:2a:ed:bb:01:86:46:b6:65:1a:74:45:46:8e:
c0:56:90:ed:ee:a7:5e:74:26:ba:a0:8a:73:95:62:20:0c:94:
2e:92:ad:a5:2a:63:86:dd:06:db:63:2b:86:5d:e5:1a:ca:53:
89:32:0b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org