Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vKWFQwAxCS3Ll-4HSs-r-JlhnfY.roa
File: vKWFQwAxCS3Ll-4HSs-r-JlhnfY.roa (raw, json)
Hash identifier: bOe6EtICXEoMemW2LpR6ndqv8Cix6NFEqjWklA733nQ=
Subject key identifier: BC:A5:85:43:00:31:09:2D:CB:97:EE:07:4A:CF:AB:F8:99:61:9D:F6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0181ED9B5B8A4BDF32162738ED1EF3EFE5B7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vKWFQwAxCS3Ll-4HSs-r-JlhnfY.roa
Signing time: Mon 11 Jul 2022 14:13:10 +0000
ROA not before: Mon 11 Jul 2022 14:13:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a10:cc42:1000::/36 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:b107:5e0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:900::/44 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b102:12f::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:9b:5b:8a:4b:df:32:16:27:38:ed:1e:f3:ef:e5:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 11 14:13:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bca585430031092dcb97ee074acfabf899619df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0a:8f:38:bb:10:dd:52:63:d2:95:ef:cf:4d:
cf:b5:72:38:81:97:48:ab:49:9f:fc:aa:e8:a2:5f:
17:1d:25:5e:48:08:d0:49:a7:86:ba:5b:a8:24:c3:
7c:d5:cd:9c:1e:aa:ee:83:17:da:a6:fd:53:ba:e1:
79:42:84:c1:04:64:e4:28:4a:e4:6c:ee:d8:7b:85:
6d:b5:8c:47:da:e6:a8:88:93:05:dd:e2:d1:8f:d5:
b8:39:c0:ca:aa:ee:aa:d6:93:8c:54:55:0f:ae:c6:
e9:ed:dc:cf:e6:c7:22:e7:99:73:d0:e1:6f:7a:4a:
30:bc:63:f6:09:bf:77:03:ec:96:f3:9e:b9:c3:2a:
0f:3e:17:83:48:e4:f5:90:2d:03:2c:1e:a5:37:33:
e5:9d:bd:62:ab:1c:d9:fa:cb:e2:15:d1:dd:bb:ec:
37:22:e5:32:62:71:27:76:5f:6b:ca:f2:3f:e7:1d:
79:8f:df:e2:39:00:d8:89:d2:65:8e:ec:a1:d5:70:
99:19:1f:91:50:73:b4:3d:70:d6:7a:01:bc:9e:93:
af:28:c5:4b:db:db:a0:28:46:68:df:e1:c1:cc:0c:
f6:f5:62:bd:59:87:a3:65:59:3f:de:8c:35:b2:bb:
b2:fd:03:fc:58:5c:13:2c:f6:f7:be:87:44:f5:2c:
21:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A5:85:43:00:31:09:2D:CB:97:EE:07:4A:CF:AB:F8:99:61:9D:F6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vKWFQwAxCS3Ll-4HSs-r-JlhnfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:b102:12f::/48
2a0e:b107:5d0::-2a0e:b107:5ef:ffff:ffff:ffff:ffff:ffff
2a0e:b107:900::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a10:cc42:1000::/36
Signature Algorithm: sha256WithRSAEncryption
61:ff:ca:8f:ce:78:9c:39:9b:78:d7:83:02:2d:9d:09:a7:5a:
ce:13:9f:71:63:69:85:e5:0c:4e:55:63:06:13:ba:e3:73:e9:
4f:b7:25:57:db:53:ba:6f:cf:63:37:c2:8a:1f:e5:21:3a:be:
9d:f3:63:4f:c3:7d:5a:b9:3b:77:5b:33:5f:b4:ab:44:40:78:
d2:13:d2:bf:5d:48:6f:77:44:fe:33:1c:80:bb:a1:ce:b5:eb:
fe:54:b7:d8:2c:45:f6:5d:62:c0:90:ac:c2:9e:d1:c2:56:34:
d4:dd:b4:01:d6:65:ac:22:47:b6:a6:54:2f:56:9d:4a:b7:bd:
e6:d8:43:74:ec:6d:75:a7:9b:95:65:61:7a:a7:d5:1e:b2:a4:
af:f4:54:00:ea:8f:e1:38:49:4e:ef:2e:87:92:c2:de:57:ff:
fd:ef:ee:33:13:3b:02:30:14:ca:49:e6:7c:6c:07:3e:39:42:
df:14:d6:95:19:d9:a8:36:63:38:f2:a5:44:cb:09:cc:e7:83:
ae:c5:f5:38:1b:e3:e2:88:7f:ad:b1:84:e3:cb:26:87:42:2c:
0e:c5:e3:b2:17:a1:d2:66:d5:6e:f0:0e:ce:b7:48:55:54:0f:
71:ed:ce:3c:03:56:eb:f6:cd:8f:59:53:67:81:e5:38:41:3e:
34:cd:9f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org