Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rd_dnRupgbaOngC2VBNCrzh9b2c.roa
File: rd_dnRupgbaOngC2VBNCrzh9b2c.roa (raw, json)
Hash identifier: vincGoLikbq9IkF/Zqo+0RS10HNRrQIQ4NyLyyVYXZQ=
Subject key identifier: AD:DF:DD:9D:1B:A9:81:B6:8E:9E:00:B6:54:13:42:AF:38:7D:6F:67
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1098A16B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rd_dnRupgbaOngC2VBNCrzh9b2c.roa
Signing time: Sat 01 Jan 2022 09:05:05 +0000
ROA not before: Sat 01 Jan 2022 09:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207466
IP address blocks: 2a0e:b107:f60::/48 maxlen: 48
2a0e:b107:f68::/48 maxlen: 48
2a0e:b107:f60::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278438251 (0x1098a16b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=addfdd9d1ba981b68e9e00b6541342af387d6f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5e:c9:e1:a0:44:7b:1b:69:ce:b0:0b:fd:b0:
90:32:50:47:bc:b1:f3:c5:b8:ed:f1:fd:44:61:58:
ac:5c:8a:cb:32:a2:80:2c:40:76:7e:b2:80:09:6a:
4f:51:d3:86:87:29:fd:a9:72:7b:07:2b:39:ad:9d:
8d:fb:06:20:e7:c1:91:68:ae:47:37:cd:2e:c7:d6:
79:5e:a3:c3:5b:e1:dc:73:fc:0c:3e:ff:d7:9b:83:
ad:26:7f:6c:69:44:31:2d:ed:01:84:5c:4e:4b:27:
74:bf:42:ac:ff:05:63:79:49:af:b9:fb:72:3e:bd:
71:08:10:2a:55:d7:ad:02:89:44:f9:5d:09:4f:54:
2d:f1:bf:5e:2f:7c:f9:c6:63:f4:44:28:38:39:d6:
d6:b3:ad:4d:95:d8:33:6d:8a:d6:49:37:2f:8b:96:
1a:47:6d:58:f7:f4:a4:4e:03:1d:ae:84:69:2d:c4:
31:c4:ac:24:95:67:72:3f:58:f1:20:3a:7e:1d:64:
1b:f1:39:16:98:66:1c:d9:c5:44:24:30:ad:a2:37:
e9:97:7b:d6:48:9f:41:a0:80:d9:79:44:4b:6e:e1:
f0:b0:f2:11:bd:80:02:b2:d8:01:bd:92:cf:06:28:
1e:0a:99:d2:3f:58:31:18:17:58:65:da:8f:e8:c3:
32:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DF:DD:9D:1B:A9:81:B6:8E:9E:00:B6:54:13:42:AF:38:7D:6F:67
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rd_dnRupgbaOngC2VBNCrzh9b2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:f60::/44
Signature Algorithm: sha256WithRSAEncryption
90:8b:55:58:46:ce:69:38:8d:13:cb:73:9b:a9:29:ec:dc:fd:
44:f7:fe:c4:7c:26:c2:bb:1d:8d:84:02:b5:f6:25:ba:1f:6b:
c8:79:16:ca:17:04:ea:96:b7:e9:33:31:d8:2d:6e:fd:f8:b0:
53:bf:43:5a:65:43:5a:79:e6:2a:6e:1d:65:23:b3:1c:61:48:
c9:33:41:11:ef:e0:6d:d8:ab:b9:cb:82:99:74:10:8d:2b:4a:
97:7f:fb:3d:18:8e:4a:ff:c8:7a:89:9e:a8:84:11:eb:59:ba:
6c:38:bb:9b:af:2d:e6:6e:1c:ab:54:88:3f:d4:76:31:dd:fb:
15:5d:f7:17:56:97:5a:0c:68:63:03:3f:4d:9a:c6:4d:f3:75:
45:01:3a:29:d7:48:11:d3:ad:cc:df:4c:0a:c9:5f:c1:6b:df:
90:d1:ab:9f:a8:f2:c6:39:a9:c4:43:3b:ed:56:bb:ad:b9:8d:
33:6b:e3:93:bc:0a:60:90:17:ed:88:a6:7b:39:19:c2:d0:db:
e0:4a:a8:de:5b:5a:48:86:6c:f3:55:49:5f:0e:61:44:4e:18:
24:c0:81:3e:4f:55:f9:f5:4a:86:63:61:51:7c:77:b4:c0:63:
b3:09:bf:a1:e6:9a:37:e9:03:3f:e8:21:5e:3e:94:7a:e3:4b:
4b:a6:1f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:04 2023 by rpki-client on console-ams.rpki-client.org