Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zgz6cCEkPSjDC0XUUkqY4EEBnmw.roa
File: zgz6cCEkPSjDC0XUUkqY4EEBnmw.roa (raw, json)
Hash identifier: DkDHRr9nvJ+JdBU3bTzoQH1RL/OIflwCfvTJ6ZJAb+8=
Subject key identifier: CE:0C:FA:70:21:24:3D:28:C3:0B:45:D4:52:4A:98:E0:41:01:9E:6C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1267E87F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zgz6cCEkPSjDC0XUUkqY4EEBnmw.roa
Signing time: Thu 24 Feb 2022 23:35:10 +0000
ROA not before: Thu 24 Feb 2022 23:35:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:b107:5e0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:900::/44 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a10:cc42:1000::/36 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308799615 (0x1267e87f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 24 23:35:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce0cfa7021243d28c30b45d4524a98e041019e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:19:49:97:f8:3a:a4:fc:69:f3:c3:c5:0e:f5:
38:25:67:91:d9:44:2f:6a:a8:d3:ec:61:22:d8:30:
19:df:40:69:0e:fa:5c:69:d5:25:44:9a:a1:fd:1c:
32:56:b0:fb:de:90:69:87:f1:17:76:46:d7:a4:42:
a0:e8:18:36:0f:ab:97:02:e9:6e:52:4d:ef:ec:32:
59:3b:d1:b8:98:19:f5:ad:d4:aa:87:2c:a5:56:ce:
26:3a:96:db:a7:9a:7a:30:ae:ee:1d:f0:78:c6:41:
9d:7c:d9:8c:4d:d5:09:7f:2a:bb:f5:d1:57:3e:0e:
5a:71:82:2a:36:fc:16:db:d2:37:14:c7:70:39:a4:
93:c9:df:3c:0f:4d:77:be:8e:a4:01:f2:bf:46:01:
aa:e6:ec:2a:04:44:e7:be:68:f2:c2:03:20:f5:12:
88:ed:27:32:6a:e0:8e:58:be:ff:2e:03:bc:a6:2f:
c0:c0:ad:7a:8f:03:e4:60:29:c6:c9:04:80:12:6a:
9e:6f:d8:60:00:18:b4:ef:3e:47:38:fb:d2:f5:fe:
7f:7c:6f:e4:db:ad:4f:c0:5b:09:c2:23:8f:a8:d7:
13:ec:6b:be:32:75:4a:c2:c5:7c:ae:f6:a9:87:7d:
9b:35:56:f6:25:a4:b9:40:9f:bd:bc:ca:57:7e:d7:
dc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0C:FA:70:21:24:3D:28:C3:0B:45:D4:52:4A:98:E0:41:01:9E:6C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zgz6cCEkPSjDC0XUUkqY4EEBnmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:b107:5d0::-2a0e:b107:5ef:ffff:ffff:ffff:ffff:ffff
2a0e:b107:900::/44
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a10:cc42:1000::/36
Signature Algorithm: sha256WithRSAEncryption
b8:b8:93:7a:52:7c:ae:2e:d5:56:34:29:08:5a:1b:a7:95:a6:
56:b8:d2:2f:ea:0c:98:0d:e3:72:cb:5f:fa:ac:f2:4b:d7:8e:
02:c0:5e:b6:4c:53:51:39:00:9a:1f:e1:23:49:51:11:7b:dd:
1d:7f:39:0a:ce:3f:b8:4d:b6:41:49:49:c7:df:18:04:aa:2c:
e0:5c:89:b1:3f:e0:a5:f9:a0:50:75:57:06:4e:d5:9f:dc:44:
bc:49:0c:05:cf:1f:a1:66:be:c8:e0:92:d9:62:4f:10:fe:ca:
57:fb:70:54:92:3d:22:55:e7:90:49:17:3a:9a:8c:ec:de:f0:
0e:87:07:f8:f7:e8:92:f3:30:99:5c:8a:d9:61:62:7e:e2:48:
c1:fe:82:f2:71:09:f7:59:3b:66:a0:57:08:c6:cd:5f:c6:4a:
2a:f2:61:14:4b:1a:2d:88:32:3c:64:60:53:43:37:35:53:c4:
15:15:e6:dc:ee:0f:e1:2a:ff:4c:6e:a3:3c:0b:b8:76:05:ae:
84:1b:ee:0a:92:2e:f2:89:05:11:9f:5b:d7:15:bb:03:4a:dc:
c3:6f:70:65:cd:81:d3:cf:c2:da:cd:3a:24:73:52:f4:76:8d:
5a:fd:ef:23:dd:1c:bc:f0:37:c7:18:a4:f5:a4:99:cc:46:80:
5e:fe:9f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:05 2023 by rpki-client on console-ams.rpki-client.org