Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/scnuKbfVVoTTJgQ5CjUoPW0mKUo.roa
File: scnuKbfVVoTTJgQ5CjUoPW0mKUo.roa (raw, json)
Hash identifier: A6li2dA12jZl34kXEri0xsnLk1voSnoBipLr1qNK6AE=
Subject key identifier: B1:C9:EE:29:B7:D5:56:84:D3:26:04:39:0A:35:28:3D:6D:26:29:4A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13015D84
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/scnuKbfVVoTTJgQ5CjUoPW0mKUo.roa
Signing time: Sun 20 Mar 2022 07:50:37 +0000
ROA not before: Sun 20 Mar 2022 07:50:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209861
IP address blocks: 2a0e:b107:f0::/48 maxlen: 48
2a0e:b107:f0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 318856580 (0x13015d84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 20 07:50:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1c9ee29b7d55684d32604390a35283d6d26294a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d5:c6:13:7f:26:07:0e:bc:92:9e:a3:66:bb:
6f:6f:af:56:c2:1c:e4:ab:48:ed:34:1c:8d:00:96:
8a:27:d9:bd:c1:3f:8f:68:fc:e7:06:03:06:9e:34:
ec:69:a3:32:10:28:c1:4b:91:65:70:28:6d:9e:f3:
24:77:94:2e:fd:8c:b4:62:2b:50:47:af:36:a4:5f:
a4:a8:c6:1d:75:97:54:c9:52:1e:30:27:82:17:ea:
f0:47:eb:b6:0c:02:52:02:8d:02:34:30:27:68:1a:
14:35:77:c5:c0:14:3c:4d:51:30:97:37:42:59:09:
d2:87:32:5c:5d:30:db:d8:b9:72:45:eb:7e:32:00:
f3:bc:ac:7f:2f:01:7b:80:ef:0f:82:2f:7b:36:dd:
d1:98:b6:9e:2c:2f:bc:86:6b:91:e1:4a:2a:4a:e0:
02:77:57:2a:be:36:a9:9a:94:2a:1e:68:6c:32:f5:
be:fa:e5:c3:29:d7:66:19:b5:29:f5:08:a6:b0:fa:
71:43:98:31:05:24:59:7b:cb:69:4e:67:4a:65:93:
3f:b8:e8:63:7a:b4:81:f6:13:74:b3:16:77:f9:41:
cc:70:55:6d:c2:66:60:26:38:fb:77:3a:08:9e:a5:
56:b4:8c:5d:11:50:e9:ef:7f:dc:01:82:47:e4:f0:
c3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C9:EE:29:B7:D5:56:84:D3:26:04:39:0A:35:28:3D:6D:26:29:4A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/scnuKbfVVoTTJgQ5CjUoPW0mKUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:f0::/44
Signature Algorithm: sha256WithRSAEncryption
ac:d9:09:90:4d:39:ae:11:5a:91:fa:40:61:7d:06:40:05:09:
03:c3:b8:44:82:71:92:24:1d:21:9c:01:15:3f:bc:cb:4a:12:
a4:dd:b1:70:85:f2:90:b3:a6:91:e8:04:e8:76:40:ab:29:c8:
fb:d7:86:83:4a:ad:83:c0:ab:a9:34:cb:06:d6:5e:5b:6b:86:
51:02:e1:ee:e5:f2:0d:1e:06:93:8a:6c:b9:aa:13:68:de:ff:
44:0f:ae:4c:f6:87:3e:42:d2:4a:3f:20:c1:55:a8:f5:4a:b1:
33:a8:86:c0:7f:74:aa:47:78:2c:65:8c:67:8b:09:9f:0d:fc:
d5:87:19:53:59:5a:94:4d:8e:4f:4c:7c:6b:67:8b:df:b0:28:
2c:be:c2:ac:00:6c:4d:ca:70:7d:17:5a:6b:88:bc:e5:ce:aa:
46:0d:e7:6b:ee:03:c7:a4:a7:94:7f:83:14:09:33:af:a6:fb:
6c:b1:03:87:41:c5:eb:69:14:32:4d:c0:ed:d9:9f:42:fa:2d:
e9:35:87:e8:cc:08:f7:3c:08:64:91:7f:b4:1e:c0:9b:b2:da:
c9:1f:18:78:75:1f:90:68:4e:9f:53:25:83:12:fa:dc:f5:a1:
30:d9:61:b9:af:10:4f:01:98:02:e4:40:b7:a9:b6:8e:10:bc:
e5:68:fb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:04 2023 by rpki-client on console-ams.rpki-client.org