Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/dnR70eSCi__5TxchCnmd2kiGVXA.roa
File: dnR70eSCi__5TxchCnmd2kiGVXA.roa (raw, json)
Hash identifier: IBjq180zUKtcC1p23G5oxf2CYlMDv3HGjX+GJnyBy5Q=
Subject key identifier: 76:74:7B:D1:E4:82:8B:FF:F9:4F:17:21:0A:79:9D:DA:48:86:55:70
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 04C03F0C
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/dnR70eSCi__5TxchCnmd2kiGVXA.roa
Signing time: Thu 10 Feb 2022 17:23:08 +0000
ROA not before: Thu 10 Feb 2022 17:23:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208914
IP address blocks: 2a10:4741:32::/48 maxlen: 48
2a10:4741:30::/44 maxlen: 48
2a10:4741:31::/48 maxlen: 48
2a10:4741:21::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79707916 (0x4c03f0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Feb 10 17:23:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76747bd1e4828bfff94f17210a799dda48865570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:da:c3:84:34:de:6e:5d:a7:00:ae:4e:f1:81:
ba:a9:a1:d9:43:f8:ff:24:7a:dd:93:eb:79:80:29:
9b:ba:94:21:e7:d2:ea:01:d9:57:f1:a0:cc:f6:41:
bb:93:e9:b2:5e:9f:7b:6d:02:f0:ea:6d:d7:aa:cd:
a7:02:54:9f:c7:31:82:68:9a:b9:bd:fa:c9:36:aa:
df:6c:d6:69:63:1d:c4:6e:f9:ae:29:16:93:3f:33:
3c:3d:cf:ab:0c:52:a9:c0:fd:97:97:c7:54:09:7e:
d7:df:a6:d4:ef:10:fb:71:09:9c:7f:40:71:67:12:
73:cb:27:36:b3:62:60:7e:d0:7e:59:94:5b:b4:fc:
5b:50:8d:73:70:82:d8:4d:a4:ce:42:f5:c7:1a:88:
08:79:4d:96:5e:15:e5:63:65:73:77:2f:7f:b3:f5:
3f:ea:ac:15:61:33:fb:1c:54:0e:a4:2a:39:8a:ac:
57:41:53:07:1c:c3:35:13:2c:f6:79:87:88:6a:d5:
7e:2e:df:c2:bd:82:4f:64:8c:9a:77:90:d5:8f:94:
44:c9:ee:31:32:55:5c:c3:1f:bf:16:ed:af:f4:62:
24:57:ba:67:fb:ac:16:76:24:e6:d9:0f:89:cd:8f:
5a:48:2a:a1:79:1e:ee:21:14:40:42:58:43:cd:40:
e4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:74:7B:D1:E4:82:8B:FF:F9:4F:17:21:0A:79:9D:DA:48:86:55:70
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/dnR70eSCi__5TxchCnmd2kiGVXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:21::/48
2a10:4741:30::/44
Signature Algorithm: sha256WithRSAEncryption
82:cc:79:5f:e8:68:3c:64:c7:67:63:97:56:8d:69:f0:09:48:
fa:e2:0b:12:bd:0b:89:ba:86:c6:d7:17:aa:1a:e5:9d:fc:9f:
a4:06:e8:b0:80:75:0e:88:ee:63:a2:18:5c:25:5e:10:a2:9e:
45:1e:a1:8a:44:43:41:37:58:1b:6e:0f:bb:18:f7:b9:5e:7d:
d0:3e:f2:4a:62:e9:26:8c:62:d8:3b:f3:1a:e2:4b:d2:f1:49:
38:73:6c:0a:41:91:79:54:14:ef:29:9e:de:16:40:48:4b:45:
05:bd:fb:e1:00:34:ec:35:05:65:cd:4d:08:d6:5d:fa:ae:aa:
16:8a:2d:6f:32:69:12:1f:e0:65:6f:17:eb:03:68:fa:ac:b3:
28:49:ae:95:4f:70:fa:38:1d:d2:bb:8c:02:30:f6:ed:90:e1:
95:89:8c:47:ae:78:af:ef:42:1c:3c:90:00:dd:6e:2c:da:f7:
0f:19:bc:36:99:ec:c0:5d:a3:89:9d:e7:61:79:c0:d1:50:07:
f4:2b:3c:09:b2:6e:bf:ad:2a:f0:06:30:b0:f9:cb:f6:6c:7a:
6c:f8:c5:d0:cb:c9:fa:33:e2:f5:19:97:ba:7a:be:7d:a3:7f:
cf:6a:e9:75:82:e9:01:9e:82:6a:25:57:59:07:d1:73:b7:60:
d6:28:42:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org