Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/bQErEUmTBcVQ-tm1lUbMXEHJAEk.roa
File: bQErEUmTBcVQ-tm1lUbMXEHJAEk.roa (raw, json)
Hash identifier: thIYTQJ6CkusiPR48giTtmvL/vn2IpgY4Tl9mfLS8RE=
Subject key identifier: 6D:01:2B:11:49:93:05:C5:50:FA:D9:B5:95:46:CC:5C:41:C9:00:49
Certificate issuer: /CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Certificate serial: 011A06
Authority key identifier: FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/bQErEUmTBcVQ-tm1lUbMXEHJAEk.roa
Signing time: Tue 25 Jan 2022 14:17:45 +0000
ROA not before: Tue 25 Jan 2022 14:17:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35297
IP address blocks: 2a03:e500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72198 (0x11a06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Validity
Not Before: Jan 25 14:17:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d012b11499305c550fad9b59546cc5c41c90049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b5:a3:eb:26:18:64:a2:7a:b1:51:b6:e5:36:
f4:28:6e:7c:da:6b:1b:47:e1:85:40:34:f8:a9:dd:
eb:d0:0b:9c:bf:ea:c0:38:d2:26:f7:d6:ca:f0:a8:
ce:32:4f:6c:df:27:db:9f:df:58:df:17:cf:f8:f8:
76:ff:f6:dd:86:b8:a2:b2:34:f8:37:7f:5b:39:65:
57:65:2e:4e:c1:62:b0:7f:bd:5c:9c:13:36:44:28:
9a:97:a6:70:20:a7:bc:59:20:d4:b7:30:fb:13:4f:
33:49:39:07:d9:fc:3f:aa:92:84:8b:8d:aa:7f:f4:
99:d5:4f:c4:a6:31:3a:10:61:ce:b5:ab:75:53:38:
71:fa:c5:52:de:fa:06:d2:45:2f:55:49:1f:f0:e0:
1f:50:55:00:fc:d9:8a:61:3b:d8:00:ba:1c:3e:55:
36:3c:d0:e5:46:6f:4d:fb:a6:19:da:19:4c:cc:b8:
06:f9:fc:20:2a:66:fa:7c:85:7e:02:6a:3a:33:60:
87:e7:5d:d7:dd:c1:9a:64:40:2a:1b:fd:79:62:50:
5f:87:ba:db:f7:12:36:e0:e7:46:ca:02:09:8b:64:
d2:9a:31:0d:1f:a3:3f:0a:88:87:0c:7d:93:95:bd:
25:2a:ae:f5:8b:33:8c:63:4f:98:10:47:31:8d:3e:
54:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:01:2B:11:49:93:05:C5:50:FA:D9:B5:95:46:CC:5C:41:C9:00:49
X509v3 Authority Key Identifier:
keyid:FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/bQErEUmTBcVQ-tm1lUbMXEHJAEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/_OL9jfGiZs4TRX--D5OLmr46p2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:e500::/29
Signature Algorithm: sha256WithRSAEncryption
5d:09:e9:f3:5d:5b:84:fe:d1:2a:57:43:9b:dd:39:8e:5e:8f:
79:df:e4:15:fe:9f:80:98:44:5a:e4:16:09:b4:d2:93:e4:0e:
ca:00:ee:e0:43:17:08:b9:ab:2a:00:a1:b0:5b:9b:bf:92:b7:
08:2a:70:bf:0f:4d:8a:73:35:28:e2:ef:39:15:93:f1:bf:07:
0a:20:c4:62:e5:d4:fa:96:68:15:9c:3e:68:d5:7e:5a:ab:a1:
8a:66:2a:41:c2:b5:40:61:2f:c0:6a:85:43:f6:19:28:11:bf:
33:22:c8:a0:8f:3a:ad:2c:54:1e:29:f1:b1:fd:a1:78:bf:1b:
f0:68:75:d2:ce:47:b1:79:1e:50:99:78:eb:c9:1b:9f:56:71:
e1:1d:07:64:a5:08:61:08:36:5c:d4:5d:51:2d:df:e7:a2:81:
37:56:ae:bb:1b:f2:2e:92:af:69:84:03:ae:0b:fb:13:07:45:
ba:72:2d:8d:22:8c:b6:ac:61:71:0b:94:d1:b1:ce:63:29:48:
ca:1b:34:64:18:2a:68:d2:ad:e6:23:2d:4e:5e:7e:99:6c:b6:
b2:cf:e2:82:d6:17:2f:24:29:ca:81:53:8d:4a:87:33:1c:99:
b4:c2:04:6c:4d:c6:f7:ad:26:ae:74:4e:33:a0:30:49:d7:aa:
f6:e6:55:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:03 2024 by rpki-client on console-fra.rpki-client.org