Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/uEFsR5TvjRUZtUtft4ZbfYTuNsI.roa
File: uEFsR5TvjRUZtUtft4ZbfYTuNsI.roa (raw, json)
Hash identifier: AxxgFjQXXDcolKR8DS/3yGwQjiTRvqDImH0oKsXi+bQ=
Subject key identifier: B8:41:6C:47:94:EF:8D:15:19:B5:4B:5F:B7:86:5B:7D:84:EE:36:C2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 148E6B7C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/uEFsR5TvjRUZtUtft4ZbfYTuNsI.roa
Signing time: Wed 11 May 2022 22:40:03 +0000
ROA not before: Wed 11 May 2022 22:40:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25198
IP address blocks: 2a0e:97c0:ac0::/44 maxlen: 48
2a0e:97c0:300::/44 maxlen: 48
2a0e:97c0:a80::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344877948 (0x148e6b7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 11 22:40:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8416c4794ef8d1519b54b5fb7865b7d84ee36c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d6:85:86:85:3d:ab:c5:49:6a:fa:f5:b1:c8:
63:23:62:03:b2:0b:4c:3e:44:8d:ce:ab:d8:68:ad:
1f:0a:46:5d:8b:01:de:d0:62:9c:2b:28:e3:04:65:
1f:42:6b:aa:04:b9:0f:72:6e:60:56:1b:83:84:84:
c1:5a:7c:4b:ab:52:e8:46:fb:67:e5:a3:93:c2:75:
12:d6:2c:44:1b:d2:e2:ea:55:fc:2d:1a:cc:a6:77:
30:34:d2:fc:a7:3b:64:ad:af:56:6a:4c:5a:34:4f:
fd:c9:a4:7f:1b:e0:22:02:ed:b8:b2:a4:6d:87:c2:
60:03:27:35:22:de:4a:a1:1e:24:ba:c0:ab:bf:12:
17:93:a3:ae:d5:4b:f9:be:a5:18:0e:ba:25:bb:cd:
03:49:7a:8b:23:c8:92:9b:f6:db:e6:33:11:9b:10:
f7:bf:e1:d8:79:18:93:62:12:17:70:b1:88:53:52:
76:cd:c4:9f:13:01:d9:75:a1:c6:5c:2c:d4:49:5b:
7d:2d:a4:a7:b0:2b:42:39:21:b7:4f:7b:9d:5b:b3:
b2:13:68:ce:48:18:9a:18:37:4a:ef:69:9d:cd:19:
40:8f:b8:b6:fb:48:0c:e9:38:17:26:d3:29:ae:d5:
31:0b:d8:69:d2:94:80:cd:bd:14:74:ed:d3:1a:ab:
c3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:41:6C:47:94:EF:8D:15:19:B5:4B:5F:B7:86:5B:7D:84:EE:36:C2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/uEFsR5TvjRUZtUtft4ZbfYTuNsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:300::/44
2a0e:97c0:a80::/44
2a0e:97c0:ac0::/44
Signature Algorithm: sha256WithRSAEncryption
0c:9c:1d:c5:f9:35:3a:ef:fc:5c:ee:32:13:8c:be:29:19:00:
04:5c:25:ee:48:23:64:87:2c:e4:bd:87:8b:49:75:19:7c:cb:
76:6a:0f:7b:d4:28:6f:3c:f4:7f:88:51:b2:95:65:87:e9:1d:
db:74:8d:7f:86:72:df:e3:ff:6f:ca:0c:e6:9a:ff:a3:12:29:
91:56:f8:37:8e:4a:97:94:f1:5e:26:8d:f7:c8:2a:2f:13:29:
0b:d7:04:a0:0b:17:78:9f:5d:e1:0b:95:e5:73:9d:a1:53:c9:
82:4b:af:44:11:fb:a1:17:00:a8:83:63:98:de:fe:8a:f9:a5:
57:af:7d:b9:8a:02:29:7b:cb:ce:02:97:f1:6c:0f:1b:9d:ad:
17:07:d2:0b:0a:1c:26:07:94:cd:10:08:c0:f7:37:61:57:b7:
2d:fb:5d:ed:16:63:09:47:0c:b4:0e:37:dd:34:71:17:e6:38:
ec:16:26:c0:5b:d8:e1:c3:09:d1:1b:2e:7a:33:c8:d2:bf:2f:
71:d2:b7:e3:df:eb:4b:19:50:c0:4e:02:14:fc:b5:4a:4f:a9:
37:05:00:c6:d7:b0:4c:9b:45:ae:58:15:b7:40:9e:43:48:60:
a8:85:3a:1f:65:54:36:c0:c7:cc:89:f1:5d:d2:5b:f4:c8:90:
a1:e2:6a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:04 2023 by rpki-client on console-ams.rpki-client.org