Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/t6IAbz9Q_8nzQl90l4uWz4-W6ec.roa
File: t6IAbz9Q_8nzQl90l4uWz4-W6ec.roa (raw, json)
Hash identifier: xYx/wDLMfjSYq27t36iap2ea6xOk3NZVSHhCGRhGjcA=
Subject key identifier: B7:A2:00:6F:3F:50:FF:C9:F3:42:5F:74:97:8B:96:CF:8F:96:E9:E7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10730E44
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/t6IAbz9Q_8nzQl90l4uWz4-W6ec.roa
Signing time: Sat 01 Jan 2022 09:04:40 +0000
ROA not before: Sat 01 Jan 2022 09:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39282
IP address blocks: 2a0e:b107:e80::/44 maxlen: 48
2a10:2f00:15d::/48 maxlen: 48
2a10:cc47:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275975748 (0x10730e44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7a2006f3f50ffc9f3425f74978b96cf8f96e9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:06:70:53:29:e7:73:28:9a:72:fd:5b:4e:ac:
a8:87:92:ce:c7:f6:9f:3b:ff:44:93:f2:b3:3a:2d:
cd:e7:ac:61:a2:3e:4b:83:06:c6:19:22:72:c5:aa:
9b:95:a8:07:2a:a2:f9:16:7c:3d:6c:bf:63:32:3d:
a1:9f:8b:e8:fb:b8:8c:9b:4b:96:a3:cd:6f:c7:5c:
fa:97:c2:75:0c:e5:0b:03:88:f5:20:64:00:d6:05:
6e:9b:60:cb:ee:4b:bc:60:cd:2a:0f:6c:7c:07:53:
55:e5:9a:76:94:5c:3c:03:79:b9:36:6c:be:28:1f:
c1:5d:22:89:ff:7f:88:46:4c:66:ce:59:cb:fc:ee:
b4:ce:20:5a:10:bc:dd:26:1f:78:f6:80:f3:a2:97:
f2:40:18:5a:01:83:aa:59:cc:06:97:40:65:e1:96:
b6:be:15:63:4a:bf:29:ac:2c:8e:08:5b:5d:1a:1e:
b8:28:5f:ce:ee:38:a9:e0:c4:a3:ab:55:a4:09:3f:
bf:7c:0f:0b:7d:61:9d:8c:fc:ef:89:04:63:47:18:
9c:56:96:75:f5:7f:fa:f0:d4:04:42:ff:39:30:ca:
7b:4b:ba:f6:af:90:dc:4d:5a:82:79:74:30:c1:a4:
d3:8e:6e:01:f1:58:de:bd:e8:2c:18:c8:98:32:1e:
0c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A2:00:6F:3F:50:FF:C9:F3:42:5F:74:97:8B:96:CF:8F:96:E9:E7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/t6IAbz9Q_8nzQl90l4uWz4-W6ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:e80::/44
2a10:2f00:15d::/48
2a10:cc47:100::/40
Signature Algorithm: sha256WithRSAEncryption
64:bc:0f:7f:f7:d9:c2:84:bc:3d:d8:7e:03:d8:b2:89:bb:b8:
aa:12:d2:f8:fa:14:e7:b2:02:02:87:08:90:cc:19:da:54:49:
39:19:2c:88:c1:2a:ec:46:36:33:4e:08:f2:ad:1a:1d:98:60:
a4:93:1c:d1:eb:eb:0a:8e:1f:6e:17:3c:8f:ab:dc:bd:ea:2d:
72:bf:6b:a7:1b:73:b7:53:23:a0:97:b8:dc:f9:9f:23:1c:87:
f5:45:21:a9:20:d8:42:99:92:8e:41:03:52:17:39:fc:a0:ce:
1a:a8:6c:95:ed:9d:bc:6c:52:b4:40:3c:07:26:ad:ab:a5:ed:
e9:05:89:5f:ce:df:f0:7f:cb:74:2f:01:6d:32:65:7f:f0:c2:
23:27:db:60:d8:9d:24:98:7c:6f:d2:f7:ad:99:43:f8:4e:12:
5f:7e:31:b8:fb:7a:46:ad:92:da:28:70:6d:4f:b2:d1:eb:77:
a3:9c:96:2c:3f:93:04:82:72:22:f5:e9:40:ac:21:e1:27:92:
88:22:8b:c4:8e:be:3b:4b:52:d4:a7:e4:6d:09:57:78:82:7c:
f2:3e:57:d0:21:d5:16:51:b0:a2:6a:67:50:d4:bc:cf:bf:d4:
1f:f2:89:06:9d:b5:a2:e9:24:2b:9a:89:62:cb:f2:0b:0f:d5:
fa:77:01:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org