Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zKYUmWWARrujPivTbMYZi5i6Iak.roa
File: zKYUmWWARrujPivTbMYZi5i6Iak.roa (raw, json)
Hash identifier: tQ521WBYhVirOENAWYry6hnPbo83vzKkzMdNwb9OD58=
Subject key identifier: CC:A6:14:99:65:80:46:BB:A3:3E:2B:D3:6C:C6:19:8B:98:BA:21:A9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10E688E9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zKYUmWWARrujPivTbMYZi5i6Iak.roa
Signing time: Sat 01 Jan 2022 09:05:49 +0000
ROA not before: Sat 01 Jan 2022 09:05:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212746
IP address blocks: 2a0e:b107:d00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283543785 (0x10e688e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cca61499658046bba33e2bd36cc6198b98ba21a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:cc:9e:d1:9b:fa:e0:5e:89:26:9e:b1:e0:
5e:0b:fb:ce:b2:8b:b9:2c:bf:ef:59:89:8e:e5:e2:
e0:ce:9a:6b:39:9e:b4:7e:d4:1d:8b:6b:43:58:e6:
08:30:89:68:1e:62:fb:62:d5:4d:c8:d7:7a:98:ce:
ab:e4:e8:2d:c4:74:d9:5f:05:f4:a4:e3:a7:b9:a0:
a8:6b:e6:64:c7:e8:d7:e2:3f:fa:b5:36:9c:50:d7:
25:18:8c:90:26:c9:61:f1:7d:2c:f4:2b:10:54:7a:
e5:b5:04:51:bd:db:d7:aa:22:62:28:a3:6e:78:58:
ab:66:97:44:1c:b9:db:f4:ea:db:fc:80:06:0b:04:
7a:8d:56:f4:66:72:c9:3a:b4:48:26:da:18:81:54:
ce:65:6f:c7:8b:58:06:3d:1e:30:87:32:49:ed:e6:
3e:5c:b2:24:c6:57:2c:8c:f8:cd:6e:b1:34:0b:03:
3b:06:22:e0:af:d6:bb:cc:c2:ed:a8:cd:24:0a:3c:
f8:80:86:e2:b4:92:1a:ff:f0:df:6f:83:be:fb:76:
90:a5:0b:3a:9a:53:2c:36:55:f2:fe:6e:74:a4:4d:
cc:1d:5a:9e:f4:3f:3e:37:6b:2d:a2:a8:0e:4e:39:
d2:c3:36:44:0f:64:61:91:66:90:e5:9f:10:8c:39:
1e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A6:14:99:65:80:46:BB:A3:3E:2B:D3:6C:C6:19:8B:98:BA:21:A9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zKYUmWWARrujPivTbMYZi5i6Iak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:d00::/44
Signature Algorithm: sha256WithRSAEncryption
a2:43:9a:58:b5:9c:3f:6b:b1:cb:56:59:10:de:1f:66:ac:00:
c9:43:49:34:95:64:ca:f1:b1:04:cc:71:99:69:cc:60:32:11:
96:05:61:79:eb:74:5a:51:ad:a1:c1:92:23:5e:51:32:51:55:
91:39:02:6c:18:27:86:fe:6c:b1:ee:81:a4:02:53:ab:40:31:
78:37:ba:3b:27:bf:87:8f:8c:10:bf:96:a8:1b:bf:b3:6d:ea:
75:cd:5c:aa:2e:e5:74:48:f5:0b:cf:be:c3:ef:de:89:00:85:
29:6d:fa:45:d7:a3:78:dc:d7:d6:f6:fd:a2:94:24:f5:29:26:
21:a2:82:c0:fb:ca:88:f3:d8:0a:1d:6d:a3:f0:a5:2a:01:47:
ff:fb:c6:01:ee:e4:0b:0e:8d:7e:e9:27:1e:6c:0f:dc:97:c4:
a2:ed:ec:45:fb:fd:2c:9e:f4:38:de:51:03:f6:99:6e:9d:08:
ac:6a:10:39:fd:49:81:ae:cb:ff:af:9d:3e:40:8a:59:7d:c6:
49:75:79:50:3b:b2:b6:42:aa:58:a3:6e:9a:f4:c6:6a:84:36:
83:37:b0:99:71:73:4b:e3:02:45:b4:eb:7e:fe:d2:d5:45:be:
36:09:72:50:0a:3f:3a:ee:96:2c:b1:59:9e:cf:fb:6f:88:4c:
f1:4e:ba:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org