Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yCTm4P9bQVCXwfRN9BomOJs4N4M.roa
File: yCTm4P9bQVCXwfRN9BomOJs4N4M.roa (raw, json)
Hash identifier: CPtPkTL3fgG9ZL7akvqGukuc3teuiovWpkZmXlO9BCE=
Subject key identifier: C8:24:E6:E0:FF:5B:41:50:97:C1:F4:4D:F4:1A:26:38:9B:38:37:83
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13D2C56E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yCTm4P9bQVCXwfRN9BomOJs4N4M.roa
Signing time: Tue 19 Apr 2022 19:02:46 +0000
ROA not before: Tue 19 Apr 2022 19:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207556
IP address blocks: 2a0e:b100:110::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 332580206 (0x13d2c56e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 19 19:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c824e6e0ff5b415097c1f44df41a26389b383783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:05:5d:c6:7f:a3:f0:81:c4:f6:be:35:33:4c:
ac:d6:01:3d:b8:7e:67:18:ea:d7:57:54:95:5e:40:
cb:a3:68:41:6d:8a:29:cc:6c:5e:87:bd:7b:8a:22:
54:fe:0c:de:b3:b6:0c:25:2f:35:74:34:d1:3b:4c:
6c:ee:61:f5:58:cd:d0:d1:c2:b1:04:11:c7:ca:ea:
fb:ad:8f:c4:ca:98:2a:7f:93:99:d4:3d:29:eb:98:
f2:d7:f4:83:e4:37:7b:4b:e9:a0:1f:17:d2:a9:81:
d7:29:22:89:1d:60:d0:31:8a:f8:0a:27:45:3c:47:
98:cb:92:34:5e:36:34:e7:3d:28:5c:4f:95:43:96:
84:d9:94:de:df:59:3a:1d:c1:36:82:3e:1f:32:d2:
11:dc:c9:dc:24:e2:ff:cd:7d:d0:a5:14:54:90:78:
e9:89:02:14:f4:dd:55:cd:6a:b2:2b:1f:49:65:5b:
22:37:34:e4:52:93:28:c9:08:8d:47:b5:93:62:3d:
da:54:7b:57:81:2d:00:0f:2e:a8:6d:d1:8b:f2:5b:
92:7b:4c:f4:f0:2c:75:c1:a4:52:9b:49:e0:00:49:
f6:bb:dd:28:1f:14:ce:8e:d9:81:d5:88:b4:1b:21:
b5:cb:a5:a4:5a:ee:25:53:0d:e4:37:1d:ae:f8:38:
bd:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:24:E6:E0:FF:5B:41:50:97:C1:F4:4D:F4:1A:26:38:9B:38:37:83
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yCTm4P9bQVCXwfRN9BomOJs4N4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b100:110::/48
Signature Algorithm: sha256WithRSAEncryption
3d:f3:65:fc:62:14:54:bb:f9:39:6f:db:e5:f7:95:f6:26:9e:
fa:5a:65:82:d9:14:be:eb:31:2a:b8:b9:86:4b:e6:38:90:e7:
d6:85:3b:a6:3b:35:eb:23:dc:c9:19:aa:10:c7:6a:a0:f2:99:
f8:cd:40:d2:2d:c2:8e:99:ae:47:2b:ff:a5:80:27:af:a5:d5:
ea:3a:de:b1:ae:af:63:fe:29:95:53:f5:a0:60:5a:fc:09:34:
82:f4:57:60:21:da:67:54:9a:99:75:c0:34:84:74:f1:7d:46:
7f:67:1a:e0:07:0a:50:0e:86:46:40:d3:6c:3a:59:80:6b:a7:
0d:90:1f:27:a2:d4:80:ed:bd:73:9d:b1:c6:84:cd:d0:fd:b2:
44:5b:ee:88:41:6b:08:a7:97:61:a4:b1:4c:43:8e:80:0c:55:
fa:68:ba:9a:38:ea:33:73:1d:7f:f2:5d:6b:f4:48:99:75:06:
71:47:b1:4a:cf:1d:78:87:30:4a:85:2a:1c:61:fd:95:09:09:
77:de:2a:e1:bf:11:64:ee:d5:04:3c:af:40:ed:4b:dc:0a:02:
d2:48:f2:27:3d:b4:54:c1:58:f2:29:82:88:7b:cf:ca:26:ee:
39:68:ea:98:7a:88:69:f2:79:ff:d9:5c:f3:6a:5c:aa:54:24:
fa:d0:4a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org