Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vEjZqQCWOyCJWH81PkPrQhSjLUs.roa
File: vEjZqQCWOyCJWH81PkPrQhSjLUs.roa (raw, json)
Hash identifier: CPodfKu8NxAOXBUur3XTVvQWRXrV7oeLR38kD7Hklgw=
Subject key identifier: BC:48:D9:A9:00:96:3B:20:89:58:7F:35:3E:43:EB:42:14:A3:2D:4B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 107DE830
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vEjZqQCWOyCJWH81PkPrQhSjLUs.roa
Signing time: Sat 01 Jan 2022 09:04:47 +0000
ROA not before: Sat 01 Jan 2022 09:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58133
IP address blocks: 2a09:4c2:2f::/48 maxlen: 48
2a10:2f00:123::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276686896 (0x107de830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc48d9a900963b2089587f353e43eb4214a32d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b1:52:dd:a1:f0:4d:a6:3a:47:62:65:cc:53:
33:89:50:df:74:fd:71:36:d5:77:d2:3a:f6:33:1b:
75:50:63:05:a0:53:b4:81:7e:f5:5b:81:03:05:c1:
7c:50:39:39:3f:0a:bc:18:97:10:b0:70:a2:09:a5:
49:83:63:9a:df:26:ec:1c:f0:37:48:e8:80:f8:75:
55:ac:e4:9b:9a:50:1a:ae:93:de:36:f4:9a:40:dd:
f7:fd:f0:fa:99:e8:47:51:6a:fc:23:ad:d9:d1:ef:
97:67:f6:25:8a:5d:ac:12:3b:c9:b9:58:03:6c:05:
71:87:c0:05:31:9b:d4:fa:61:ab:5b:a6:af:d4:6d:
e6:8a:f3:20:60:08:14:7e:b3:78:90:76:93:66:ae:
86:3d:0d:78:c0:81:09:a5:ce:6b:82:03:63:1a:88:
89:d8:d7:bf:ab:ec:da:5e:e6:b4:0f:0a:5e:8b:d0:
20:c7:54:dc:69:86:71:f0:db:6d:1a:cb:04:6f:da:
e6:83:00:b6:df:5e:00:63:be:f3:24:3c:1b:e9:d5:
3a:04:ea:76:dd:0e:a8:bb:83:40:e2:e1:c0:2b:f6:
db:70:35:f8:40:21:6f:d6:6a:6f:58:13:ab:04:0f:
aa:e2:d6:59:10:be:d5:3f:07:33:f1:d3:e7:f7:b9:
bc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:48:D9:A9:00:96:3B:20:89:58:7F:35:3E:43:EB:42:14:A3:2D:4B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vEjZqQCWOyCJWH81PkPrQhSjLUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:4c2:2f::/48
2a10:2f00:123::/48
Signature Algorithm: sha256WithRSAEncryption
92:a1:5f:00:27:d0:59:05:4d:22:00:47:95:b0:a7:bf:d7:08:
6a:91:dc:64:94:58:8e:7b:3e:ee:b6:94:f6:e3:75:7d:dc:f6:
6d:ab:24:15:ab:78:c8:38:68:be:bb:69:15:75:e6:f4:e2:51:
de:c2:7b:3d:b8:d5:c5:5d:3e:e2:de:5d:65:54:37:cc:32:88:
7e:8f:eb:02:44:51:6d:aa:ee:cc:5c:32:5a:32:63:ae:11:3d:
6d:5e:fb:10:63:fa:40:f2:7d:6f:bd:dd:c9:10:25:ba:1e:8c:
eb:4e:60:65:3c:14:39:1a:7c:1c:ac:f2:4b:c6:74:72:1a:64:
69:69:74:4b:61:e4:89:a6:07:9a:22:40:1e:87:c9:31:30:9d:
3a:e4:51:93:dc:ef:c6:70:79:eb:b5:1b:e9:f6:e5:27:5c:f0:
fb:33:35:04:bf:98:7d:d1:94:86:08:c1:95:c5:4a:d8:fe:db:
d4:1b:b0:6e:95:19:01:c3:90:1c:94:84:93:18:9d:45:75:42:
58:c1:da:ca:96:f3:99:03:20:c2:bd:25:4b:d5:71:e9:cf:37:
02:cb:41:27:fa:74:c6:00:88:c7:ca:ec:87:2c:4b:0c:37:d0:
d1:20:8e:1d:50:6d:93:32:96:8a:06:ba:a0:8d:4a:64:3e:99:
f4:07:0b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org