Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/squGnEH234vb_avin7pbfO0AbFE.roa
File: squGnEH234vb_avin7pbfO0AbFE.roa (raw, json)
Hash identifier: kOHa1a3xQUEbtt0sw6dB/UHUng5806dXTy3UGbDGYOU=
Subject key identifier: B2:AB:86:9C:41:F6:DF:8B:DB:FD:AB:E2:9F:BA:5B:7C:ED:00:6C:51
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10E25DF2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/squGnEH234vb_avin7pbfO0AbFE.roa
Signing time: Sat 01 Jan 2022 09:05:47 +0000
ROA not before: Sat 01 Jan 2022 09:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212519
IP address blocks: 2a0e:b107:27e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283270642 (0x10e25df2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2ab869c41f6df8bdbfdabe29fba5b7ced006c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b6:12:c2:f8:c5:46:c5:ca:16:6f:e9:09:08:
fc:31:55:d5:2e:47:20:a9:fe:d1:54:8c:71:fc:82:
81:71:db:a0:44:ef:a0:02:8e:fb:fc:66:58:fb:28:
1a:f8:2b:06:5d:16:ea:1b:0c:69:50:7f:11:f9:ed:
b8:3e:5e:00:8d:ea:8e:bd:89:db:b3:5e:9e:77:bf:
11:51:af:60:0b:3f:23:82:6a:4a:fc:09:76:7c:97:
3a:af:1b:75:0a:20:e2:70:25:1c:1b:29:33:8b:8e:
11:01:8a:b8:65:91:63:4b:3f:35:7a:dd:4d:3d:10:
de:db:df:d6:25:39:83:7f:5a:d1:a9:45:ac:c1:a8:
9f:fd:29:7a:19:c0:61:19:5b:74:f5:56:f9:39:a8:
91:a8:04:af:73:01:8d:9c:5d:ea:30:ff:2c:79:74:
6e:70:bd:fc:a2:44:c7:10:66:fc:08:c9:85:df:9e:
60:76:ff:fe:5f:07:80:0e:e2:79:ef:3c:51:26:4e:
5d:bb:91:0c:70:7d:0b:b3:10:b1:24:9d:71:33:d5:
13:11:61:18:a9:da:62:9c:02:f5:43:9a:4d:a3:3b:
ae:62:29:22:0d:aa:23:70:88:3f:06:9a:e0:20:5b:
f9:ac:3b:41:93:7e:6c:95:82:1f:2c:57:8c:d8:63:
35:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AB:86:9C:41:F6:DF:8B:DB:FD:AB:E2:9F:BA:5B:7C:ED:00:6C:51
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/squGnEH234vb_avin7pbfO0AbFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:27e::/48
Signature Algorithm: sha256WithRSAEncryption
70:d4:e1:2b:15:88:30:20:29:9d:b0:35:a5:77:cd:e2:fe:d2:
ab:8e:48:32:d4:24:ba:a0:44:62:2b:d0:82:11:ca:41:f1:73:
18:ef:44:9b:33:f2:70:1f:b9:1d:67:36:86:a7:d5:e1:cb:6d:
ae:29:64:86:d9:55:df:4b:4a:7a:d1:3c:dc:bd:10:77:e2:a9:
4b:41:34:5a:de:57:72:f0:a5:36:82:4a:39:91:4e:cf:ca:49:
08:de:b3:78:fa:58:eb:7e:c2:ac:59:e1:c2:19:ff:42:12:e6:
7f:a5:4e:53:bf:26:61:65:12:6d:3f:ef:31:5d:d8:e5:b8:0c:
7b:06:08:f8:2e:2f:8b:0e:56:cf:db:06:96:eb:ba:bc:35:30:
b6:2f:a1:27:d3:fa:d0:4c:b0:86:13:a6:68:68:4f:58:f2:00:
c6:2c:8e:71:d4:70:9f:98:33:61:f8:ef:bf:98:6e:c9:cf:c0:
2f:f4:48:e8:61:2c:bc:56:c9:5f:87:45:b9:f3:ed:44:a4:84:
0b:57:69:58:b2:13:ff:da:f6:d6:91:78:b0:18:42:34:cd:af:
60:09:6d:90:7a:49:19:8f:e7:4c:2f:69:69:85:31:6b:99:08:
99:f9:ce:ff:f7:d9:b0:c4:c4:3b:8f:26:2f:7b:45:c6:b3:7d:
93:27:3f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org