Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zRAhQ7t8BgC0H9aEqAzo8Y8MIUU.roa
File: zRAhQ7t8BgC0H9aEqAzo8Y8MIUU.roa (raw, json)
Hash identifier: VqTYfJRVgtq/EGqEkLwftwUXivZTZjGI+TsdMLUYwSA=
Subject key identifier: CD:10:21:43:BB:7C:06:00:B4:1F:D6:84:A8:0C:E8:F1:8F:0C:21:45
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 134281F6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zRAhQ7t8BgC0H9aEqAzo8Y8MIUU.roa
Signing time: Mon 28 Mar 2022 16:43:35 +0000
ROA not before: Mon 28 Mar 2022 16:43:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210041
IP address blocks: 2a0e:b107:272::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323125750 (0x134281f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 28 16:43:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd102143bb7c0600b41fd684a80ce8f18f0c2145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:db:b8:d3:51:4a:c8:9c:e7:76:0a:06:ff:57:
e7:23:d8:a0:cf:ce:cd:31:9c:6a:4b:67:cd:a9:d3:
18:7c:1b:84:47:f5:40:f0:09:cc:c2:04:79:46:c8:
70:83:40:d4:36:c1:ba:9a:92:17:94:44:3d:e1:7a:
fd:40:f8:1b:87:ce:04:35:33:cf:e2:45:17:5e:5c:
cd:05:51:50:b7:2d:47:ed:63:4b:dc:08:80:fb:51:
8d:03:c3:da:41:36:92:36:29:4f:c2:f5:56:73:ad:
7f:8c:30:dc:de:c3:3b:52:bc:98:b4:20:6e:99:85:
4f:46:55:23:5a:d0:ab:a2:47:28:33:a2:bb:0f:1a:
35:07:d2:fa:8e:47:c3:39:61:ba:bf:df:57:4c:46:
0f:85:e0:1b:c7:b0:90:18:7c:66:b2:77:bc:36:60:
4a:7f:04:d6:2a:be:8e:ee:17:33:34:62:09:58:70:
1d:3b:cd:64:ba:04:4d:83:4e:1e:58:00:62:22:65:
15:16:7f:6a:67:1e:1a:0c:2a:4a:fd:34:7b:26:14:
2d:9e:e9:57:20:c6:2f:d5:c7:5e:b6:2d:ae:df:7f:
aa:e3:1f:d4:93:02:27:11:9a:5e:66:ff:a2:7a:b3:
c0:10:34:31:b9:b2:d1:e1:1c:34:71:0a:41:4c:6c:
e7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:10:21:43:BB:7C:06:00:B4:1F:D6:84:A8:0C:E8:F1:8F:0C:21:45
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zRAhQ7t8BgC0H9aEqAzo8Y8MIUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:272::/48
Signature Algorithm: sha256WithRSAEncryption
b1:7a:10:25:74:a0:4a:cb:e6:c7:4b:5f:70:ff:90:ce:e0:9c:
81:7a:29:08:4e:dd:ce:56:39:3a:83:89:b0:49:3e:6e:a3:8d:
aa:03:80:43:75:9b:84:28:fc:fc:cf:94:f5:a8:13:1b:64:94:
62:5d:1e:80:af:38:f7:f8:81:3e:59:0e:52:20:d0:28:89:c1:
52:44:7d:2b:15:dc:a7:ef:ab:c3:cb:2a:51:71:af:1b:69:81:
aa:59:bd:47:c8:eb:65:c6:70:3d:5f:cf:73:c5:2f:e4:b9:b3:
4c:35:d0:3d:69:d3:78:59:4d:50:76:23:36:82:c5:65:1f:63:
9d:66:5f:83:63:f5:73:64:9c:11:1c:59:c0:d4:d7:a7:99:da:
4b:c1:28:92:cf:c9:b3:ff:85:bd:a8:1b:4f:79:d1:e1:1e:8a:
17:39:7b:74:c5:c7:06:15:f7:3e:ab:4d:fc:92:ad:e6:82:d7:
13:7f:b5:b5:65:40:68:13:ca:3d:17:11:cb:d7:51:40:a9:79:
41:31:03:97:b4:2c:aa:07:ad:90:34:ae:70:10:b9:42:0e:7a:
39:30:98:b1:f7:ee:b7:cb:74:09:2d:b5:f3:32:26:96:67:40:
75:52:6c:03:0b:ba:62:69:2c:13:35:f9:f7:8b:3d:dc:b6:ff:
f4:ae:e7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:05 2023 by rpki-client on console-ams.rpki-client.org