Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/5xYCWf8Yrzo9yDLApWMOu-dqFyc.roa
File: 5xYCWf8Yrzo9yDLApWMOu-dqFyc.roa (raw, json)
Hash identifier: xzoWx17c1PBCK0pK8oEPYKZViVturjSa6DwTl+V1NYI=
Subject key identifier: E7:16:02:59:FF:18:AF:3A:3D:C8:32:C0:A5:63:0E:BB:E7:6A:17:27
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 063D718E
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/5xYCWf8Yrzo9yDLApWMOu-dqFyc.roa
Signing time: Thu 03 Mar 2022 08:17:02 +0000
ROA not before: Thu 03 Mar 2022 08:17:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41732
IP address blocks: 2a03:9c00:d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104690062 (0x63d718e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Mar 3 08:17:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7160259ff18af3a3dc832c0a5630ebbe76a1727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e1:50:61:ea:4c:6f:10:8f:c7:ef:2b:7b:b0:
27:5e:bc:02:b4:3a:e6:48:0c:16:8f:b4:a4:a9:8b:
24:79:1c:77:86:88:5e:bd:eb:88:ad:c0:ea:21:dc:
21:cd:47:a2:75:32:f1:4c:5c:b7:f2:cc:9c:0d:ef:
ca:58:3a:a9:00:77:41:a9:50:7e:24:ef:a5:5e:24:
04:d1:cf:92:05:3a:01:4f:1e:8b:37:d7:27:23:2d:
05:19:6d:29:41:62:8f:ed:b5:59:37:2e:d4:99:92:
5d:4f:5f:ae:f6:a5:a2:77:ff:a5:7e:bc:cf:9f:74:
c2:cf:76:b3:9a:db:c9:2c:9b:f0:a2:b3:61:02:28:
8e:61:b1:e8:dc:3b:1e:9c:49:c6:fb:1d:79:15:11:
f9:80:8b:df:f8:65:0b:81:05:84:a0:53:d8:13:0a:
d0:eb:59:0b:e4:45:06:66:52:f5:e4:cd:7d:55:41:
83:26:90:59:0e:15:dd:60:cd:a3:4b:ec:4e:a3:39:
02:ea:4f:bd:ab:34:e1:0e:a9:45:ae:df:df:7f:f3:
15:69:73:de:fd:ae:c2:a9:24:6e:27:42:91:c6:69:
da:d8:02:2c:96:70:c5:6a:e9:fe:38:46:ef:5b:f7:
ea:35:19:d3:27:da:cb:fe:a0:3f:26:eb:4e:d7:04:
fe:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:16:02:59:FF:18:AF:3A:3D:C8:32:C0:A5:63:0E:BB:E7:6A:17:27
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/5xYCWf8Yrzo9yDLApWMOu-dqFyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:9c00:d::/48
Signature Algorithm: sha256WithRSAEncryption
bb:7d:16:87:90:b8:cb:47:f4:e6:a6:4c:19:8b:16:56:ab:8a:
d4:06:cf:8c:e3:f3:69:f4:0e:ce:b6:74:b9:31:1e:1d:52:db:
a8:5b:60:a3:89:1f:9f:eb:33:29:4f:c8:e3:c0:47:9b:8d:c4:
1f:99:5d:fe:5c:cf:90:19:d9:71:19:f1:67:5e:48:c7:b2:39:
2f:3c:dc:05:6e:e9:b7:52:1c:80:c2:21:b6:2e:ca:c6:6b:54:
ff:2a:ad:e9:64:49:1d:7a:57:21:52:cd:c3:76:07:a8:6b:f7:
55:99:49:7b:28:a8:8b:f9:3c:aa:03:53:65:08:57:e9:50:59:
bf:db:a6:6a:c9:35:1e:0a:3b:97:af:25:d3:b0:15:9c:9e:7e:
08:85:99:1c:06:61:82:0b:2f:40:2a:e5:e5:93:04:94:0a:1f:
62:e6:0a:9c:ef:21:86:7a:70:d4:11:5b:cc:3e:46:9a:36:5e:
12:5a:17:51:40:11:97:1a:91:25:3a:8b:cb:fc:bf:fb:b0:4f:
ae:52:0a:53:65:88:1e:58:b9:da:3b:6f:8c:b0:10:7a:66:5d:
66:c2:c7:bc:40:22:5e:62:a2:a5:9c:95:29:09:6c:c5:d3:fa:
28:b6:17:88:e4:58:6f:87:39:4c:76:11:f8:84:ee:98:d2:0a:
17:57:1f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-ams.rpki-client.org