Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/shFOBAemaLBRHmUtyukE1rbSDck.roa
File: shFOBAemaLBRHmUtyukE1rbSDck.roa (raw, json)
Hash identifier: ur8M4CiJkP1lQZmGT1c8YnsJu4vgcqc3Lia5twVS75c=
Subject key identifier: B2:11:4E:04:07:A6:68:B0:51:1E:65:2D:CA:E9:04:D6:B6:D2:0D:C9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 15247FC8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/shFOBAemaLBRHmUtyukE1rbSDck.roa
Signing time: Tue 14 Jun 2022 13:17:41 +0000
ROA not before: Tue 14 Jun 2022 13:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205043
IP address blocks: 2a0e:97c0:b15::/48 maxlen: 48
2a0e:97c0:b10::/48 maxlen: 48
2a0e:97c0:b13::/48 maxlen: 48
2a0e:97c0:b16::/48 maxlen: 48
2a0e:97c0:b11::/48 maxlen: 48
2a0e:97c0:b14::/48 maxlen: 48
2a0e:97c0:b12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354713544 (0x15247fc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 14 13:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2114e0407a668b0511e652dcae904d6b6d20dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:94:eb:b7:2d:39:4c:c1:36:33:3b:8a:64:f9:
7f:49:d0:93:39:11:95:f0:7b:27:16:09:46:77:68:
ab:fd:5e:8e:a3:10:f2:86:6f:59:c9:97:43:04:f7:
e5:df:4c:f6:b2:ee:0d:8c:fd:1b:31:38:ad:0a:b2:
d0:73:79:82:a1:e8:78:fd:b1:cf:67:f7:4c:4c:2f:
0a:36:11:07:a4:aa:1c:f8:33:aa:22:03:6f:3e:fb:
90:8c:11:8f:10:f8:4c:8c:5b:25:be:82:86:f7:7f:
3c:fc:3d:df:2a:b6:ee:da:a6:77:c4:7a:69:67:39:
ed:84:22:53:a7:f3:95:fb:f7:38:42:4b:35:33:99:
f2:4d:a7:77:b6:a4:18:f5:71:fe:a1:8a:41:ba:61:
8d:82:b5:a9:ee:68:e7:92:45:b5:50:48:d2:d5:b1:
d3:8b:95:31:e7:5c:3d:bf:61:36:c7:af:19:c5:2c:
b2:bd:a0:19:19:e0:0e:2b:0d:e4:f0:08:0f:02:50:
e5:06:59:0a:79:c2:14:1e:20:5f:28:ab:0d:cd:d9:
73:b1:57:b3:e0:2c:b4:d1:3d:f7:52:e6:48:9f:06:
1e:43:1d:c5:1a:28:29:69:2c:1c:ed:e9:19:9e:22:
1b:00:1d:27:0b:d0:26:d5:76:e4:2a:14:1b:b1:d9:
2e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:11:4E:04:07:A6:68:B0:51:1E:65:2D:CA:E9:04:D6:B6:D2:0D:C9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/shFOBAemaLBRHmUtyukE1rbSDck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:b10::-2a0e:97c0:b16:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0d:d7:06:b8:4c:6f:3d:8a:54:2c:06:1f:c7:cc:8f:d6:af:76:
8e:7e:67:41:ac:56:0e:be:ca:ac:3a:f5:10:69:9f:d7:33:15:
28:bc:5c:12:f8:a4:48:d1:c9:fe:f0:0e:f9:43:eb:f2:81:08:
a7:c2:dc:9a:48:c1:11:71:6a:0a:60:59:7d:10:7e:17:08:2d:
54:70:2a:a1:62:73:d7:44:36:2d:c8:68:9e:06:bb:c2:90:ad:
f0:46:12:f7:3b:67:dc:38:5b:b3:19:0f:3b:64:40:e2:02:fa:
8b:24:fa:22:5f:ad:7d:a1:c2:aa:11:22:ae:70:ff:25:2a:1c:
4a:23:35:33:36:b5:2d:09:31:7b:ca:c6:ad:76:f2:f6:1d:f5:
70:17:90:be:ce:55:73:77:a6:c1:db:93:2b:6a:ee:d4:8e:31:
43:c0:76:cf:61:6b:a8:e6:99:a6:72:93:e9:07:a6:7a:18:47:
54:92:f9:e3:0e:d4:de:b2:93:0f:54:29:43:31:82:c0:81:96:
4c:e4:6f:85:86:03:d0:1a:b9:38:13:e2:ab:63:9c:3a:d6:66:
fb:f1:c5:98:a3:6f:47:eb:15:54:e2:09:19:5b:97:09:01:4b:
24:ae:c7:78:fa:02:94:9f:27:1e:cb:67:6f:82:cb:c4:4f:1c:
9e:f0:d5:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:32 2024 by rpki-client on console-ams.rpki-client.org