Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sxlu49aJk2Utb0zQxP7v3Bwfzx0.roa
File: sxlu49aJk2Utb0zQxP7v3Bwfzx0.roa (raw, json)
Hash identifier: jfnN+efm38U/AWX4Lire4E/tI7FwowR4bL/8taDx4Lc=
Subject key identifier: B3:19:6E:E3:D6:89:93:65:2D:6F:4C:D0:C4:FE:EF:DC:1C:1F:CF:1D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 11284908
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sxlu49aJk2Utb0zQxP7v3Bwfzx0.roa
Signing time: Thu 06 Jan 2022 16:42:50 +0000
ROA not before: Thu 06 Jan 2022 16:42:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210076
IP address blocks: 2a0e:97c0:6b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287852808 (0x11284908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 6 16:42:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3196ee3d68993652d6f4cd0c4feefdc1c1fcf1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9f:37:54:d7:71:59:74:41:c4:4c:64:ae:da:
a8:f6:6e:79:45:06:8d:4e:1d:23:8d:b0:46:dd:86:
36:67:34:4c:03:00:23:0c:b1:84:fd:0f:48:1f:b4:
c8:35:06:06:d0:0c:c1:08:ea:9c:4b:c5:e5:b9:1c:
1c:c1:f0:3f:06:b9:92:12:f8:98:8f:3c:04:38:90:
b2:ef:5b:78:03:49:95:46:b6:7a:40:6b:a8:ac:61:
48:c1:b6:1f:5c:d3:a8:a5:cf:be:d3:78:6f:4d:73:
f1:65:b9:f5:08:68:24:ca:ea:84:f9:fb:90:ec:48:
e7:c9:2b:38:02:87:ad:92:2b:1e:76:c7:dc:38:3c:
87:9b:0c:9b:10:91:12:85:34:e8:36:c9:30:8b:d0:
e9:df:fe:5b:15:f8:3f:ad:3e:d8:5e:ba:af:9c:82:
d9:64:7f:0b:1e:2a:b0:d3:72:9b:e1:f2:93:76:42:
1e:f1:d4:57:7b:d2:61:ae:e3:46:22:6d:e0:b7:b9:
74:f5:ce:f2:58:e1:24:7f:07:48:f8:ba:15:f1:d2:
59:ec:df:11:82:d8:5b:f0:27:ca:2b:79:54:05:5e:
ec:ab:f7:bc:ce:8e:43:53:9e:88:19:d3:14:73:2c:
a6:2f:88:4a:f5:c1:71:a6:6a:6a:ee:b4:e0:ff:aa:
3d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:19:6E:E3:D6:89:93:65:2D:6F:4C:D0:C4:FE:EF:DC:1C:1F:CF:1D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sxlu49aJk2Utb0zQxP7v3Bwfzx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:6b0::/44
Signature Algorithm: sha256WithRSAEncryption
2e:0b:fd:34:4b:8a:21:4b:55:b0:f1:5d:91:00:18:62:f8:79:
8f:6b:8c:99:be:e3:03:fe:f3:ce:a8:9f:43:a8:cf:3b:da:6f:
9b:31:7e:1d:4a:49:28:10:30:66:00:6b:14:03:5e:47:de:6e:
e9:03:68:cc:06:1d:0a:52:68:27:25:dd:9a:3d:0c:36:c7:01:
1c:9b:ad:6f:f7:77:9e:d1:fe:71:fa:d6:8f:43:cd:d3:4d:9f:
56:a5:41:0c:10:42:92:62:b2:b0:bd:af:e6:c5:b0:af:f0:39:
4f:68:86:5a:41:6b:c3:3f:20:6e:52:2c:4e:df:8e:4e:6f:04:
66:5e:0e:44:0d:94:7a:de:ff:ca:16:ca:2f:72:6e:b4:be:e6:
ef:08:41:f8:00:8d:df:3e:ad:e2:6f:7d:17:0a:31:78:a1:3d:
3f:95:49:cf:49:71:6f:29:50:a5:a7:9f:e5:e5:00:e2:fa:ba:
bc:df:87:c2:02:aa:c1:39:93:7c:11:61:1f:ec:00:94:68:c1:
50:f2:cc:f3:81:6d:f1:bf:05:e6:7f:4a:06:6c:d6:c6:b9:72:
02:e7:57:26:9c:e3:6c:59:ff:e1:73:15:d5:13:f4:53:2f:00:
73:d2:ad:e0:e5:32:40:90:67:f2:e7:2a:d8:87:ea:df:54:73:
59:44:07:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:04 2023 by rpki-client on console-ams.rpki-client.org