Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/QFblpYE-WN8WsTgiPPh8e0NOc8U.roa
File: QFblpYE-WN8WsTgiPPh8e0NOc8U.roa (raw, json)
Hash identifier: RLfpCDLuikZ6vGDB1jVESR9XrohtL07aYHkxQ74TwLQ=
Subject key identifier: 40:56:E5:A5:81:3E:58:DF:16:B1:38:22:3C:F8:7C:7B:43:4E:73:C5
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 018418F6FA1007345774C7F10AC87B726270
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/QFblpYE-WN8WsTgiPPh8e0NOc8U.roa
Signing time: Thu 27 Oct 2022 10:22:29 +0000
ROA not before: Thu 27 Oct 2022 10:22:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 2a10:9f80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:f6:fa:10:07:34:57:74:c7:f1:0a:c8:7b:72:62:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Oct 27 10:22:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4056e5a5813e58df16b138223cf87c7b434e73c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fa:6e:30:22:fa:07:42:14:4b:12:7c:f8:4e:
cf:a3:ae:a7:ec:b5:c6:f5:cb:ee:0d:9d:90:b6:9b:
6d:69:62:9f:18:f5:c2:7a:71:e5:8e:2d:7f:89:0b:
ed:d9:35:95:5b:97:8b:20:38:cf:05:cd:9b:fb:f6:
e4:c3:e3:8f:29:21:c5:22:05:44:13:61:83:79:33:
5f:68:b5:de:c5:80:a0:58:f6:c1:f4:e3:be:15:c1:
92:d8:6f:dd:c1:df:2f:d3:60:84:d8:97:13:88:23:
50:ba:26:9c:02:e8:b7:dc:32:b9:d8:fa:83:6d:06:
29:69:fb:bd:53:b9:a1:20:10:75:0a:e4:8a:ad:4c:
8b:60:d2:33:61:2a:d2:c0:7b:f7:29:f9:00:9e:a2:
e9:fd:51:56:5c:4e:91:da:13:03:aa:d1:c7:8d:c1:
d7:7c:75:22:63:49:96:06:aa:c0:33:4e:f5:78:53:
08:0e:5c:6a:98:af:3e:92:1c:90:d3:3a:15:c5:b3:
57:ea:db:70:34:ae:c3:63:d2:0a:1c:7b:f8:b5:ec:
d4:09:dc:aa:19:86:34:38:44:42:ae:1a:cf:79:80:
50:11:9d:dc:f5:f8:e0:e1:65:f1:1e:a2:bc:20:23:
22:10:cc:0e:f5:60:f7:1d:52:60:17:c5:8e:bb:e6:
71:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:56:E5:A5:81:3E:58:DF:16:B1:38:22:3C:F8:7C:7B:43:4E:73:C5
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/QFblpYE-WN8WsTgiPPh8e0NOc8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9f80::/32
Signature Algorithm: sha256WithRSAEncryption
5f:83:96:fa:30:17:f7:bf:95:e9:0d:36:36:7c:56:9e:51:d8:
76:47:e4:5c:ee:9b:cd:c6:33:79:18:af:3e:c6:24:95:34:05:
fe:cf:0a:22:c9:7b:a7:3f:38:52:64:df:1a:28:4a:b4:19:c1:
6a:1d:64:4f:7a:2f:4a:61:21:24:d7:22:a7:c5:b2:01:7c:d2:
4d:2d:64:ac:99:03:f1:81:45:af:36:12:56:63:74:e7:5a:e1:
74:f7:1c:c4:43:c0:cc:4e:c5:8d:56:ef:5c:e8:90:21:b9:37:
3e:af:12:9e:92:a1:b9:17:04:de:ee:8e:df:6c:a7:39:a4:b8:
29:57:3f:4e:89:4a:52:bd:54:cc:1d:f0:07:8d:ab:19:91:5d:
5b:02:da:d4:3f:ba:7f:0d:2b:20:9c:90:a8:7f:ed:45:77:0b:
3c:2e:9e:7b:eb:74:4f:67:34:1b:7b:1a:e4:5a:df:71:b2:c4:
b7:71:2c:14:5b:8c:18:33:7f:86:68:37:5f:fd:d5:64:22:58:
ed:69:aa:28:d2:c8:7b:a1:60:1e:2b:9b:fa:54:37:48:94:d2:
3d:c2:32:77:74:d3:7b:54:70:46:f8:3d:35:38:92:7e:91:50:
64:24:b1:85:d3:62:d7:fc:b3:64:c9:7c:72:5d:b5:93:7a:65:
20:c4:1c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:36 2024 by rpki-client on console-ams.rpki-client.org