Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zKE6R1t1txSsYs8TbZYACLkH8BU.roa
File: zKE6R1t1txSsYs8TbZYACLkH8BU.roa (raw, json)
Hash identifier: OdwMt2ssQGEzeBXNgIGWvkE7/KFPoUbThKV78jgZFYw=
Subject key identifier: CC:A1:3A:47:5B:75:B7:14:AC:62:CF:13:6D:96:00:08:B9:07:F0:15
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 123277F2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zKE6R1t1txSsYs8TbZYACLkH8BU.roa
Signing time: Mon 21 Feb 2022 00:17:24 +0000
ROA not before: Mon 21 Feb 2022 00:17:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205152
IP address blocks: 2a0e:b107:e0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 305297394 (0x123277f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 21 00:17:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cca13a475b75b714ac62cf136d960008b907f015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:82:1a:e2:11:c2:53:55:0b:6b:eb:01:db:ca:
9f:ad:a7:0a:54:90:e7:2a:52:9c:43:9f:09:72:7e:
46:e7:d9:27:00:29:97:1e:3b:ad:e7:5d:18:69:29:
6c:a4:59:a1:43:aa:07:38:ff:8c:f9:20:51:73:78:
7b:1b:e4:41:23:a2:1b:0c:30:e4:d3:d6:71:2b:e9:
47:9e:cd:90:53:2c:b0:19:a3:e6:b2:ec:5c:23:37:
8b:15:e3:f3:54:89:8b:74:61:30:81:0f:bb:08:8c:
37:e1:5f:26:60:93:66:08:fc:b2:fc:c9:2a:9f:7e:
cc:e8:01:18:8e:d5:ff:66:59:cb:a2:ff:a1:ad:1a:
33:0f:ed:c5:a7:a2:28:62:e5:21:fe:3d:ec:8c:5b:
21:47:3a:e0:62:5d:9d:1b:f8:23:8c:25:7f:5c:3e:
dc:5b:13:bf:b1:00:ec:41:8c:27:51:f9:9a:5c:05:
fa:ae:df:05:96:08:dc:35:be:62:8f:dd:a1:28:e9:
0b:8e:a4:68:6b:9f:ad:67:bf:93:ba:70:77:69:2d:
ff:e1:f4:8f:5e:f5:2a:b8:77:62:ba:52:c0:de:08:
fc:bf:84:2d:73:52:68:f2:82:03:d8:ab:5a:59:4e:
02:fc:25:48:cd:9c:1e:7f:3b:37:72:dd:fe:19:15:
57:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A1:3A:47:5B:75:B7:14:AC:62:CF:13:6D:96:00:08:B9:07:F0:15
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zKE6R1t1txSsYs8TbZYACLkH8BU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:e0::/44
Signature Algorithm: sha256WithRSAEncryption
59:08:b5:f9:c1:2d:e8:b0:bc:3d:91:8b:af:3c:57:58:bc:ea:
2e:b0:78:00:92:f5:f9:d4:68:6d:e3:7d:d0:bc:83:f3:14:ac:
38:55:e7:7f:ab:66:b8:1d:95:6c:c3:a9:fd:3b:68:bd:33:57:
a3:06:7a:ee:f5:d3:03:c9:a5:0c:9f:5c:a4:43:3d:f0:c2:ee:
96:76:30:58:bf:79:64:97:9b:5f:57:28:25:89:7e:ee:63:0d:
a4:97:06:85:6a:01:02:d4:2a:50:44:63:09:e7:67:8e:ad:fe:
8f:27:5f:42:55:e8:56:3d:d0:6e:d8:18:b2:80:90:fe:da:70:
e9:71:f8:d1:71:e6:e2:65:7c:fc:22:0f:f7:cf:ad:d9:13:2b:
f1:60:d9:94:ab:a4:a0:b5:53:f7:05:3d:5d:2c:ae:19:d1:96:
3e:4c:a5:2d:12:07:89:9e:a5:cf:e2:09:32:ff:f5:29:cd:bc:
51:77:ba:43:81:97:51:23:16:58:55:92:79:24:11:36:8d:18:
00:2c:1a:29:85:d4:99:22:5f:a2:54:ee:81:54:41:c0:54:93:
57:ab:f3:ec:c6:08:84:38:b0:cf:7b:35:39:5c:eb:3a:f6:1b:
2c:3c:a3:f8:3d:de:ac:7a:15:94:04:d0:19:d3:87:f8:57:6d:
a0:ef:6a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:05 2023 by rpki-client on console-ams.rpki-client.org