Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/QyzP70AiC88XYGgKV89LFsH5BOg.roa
File: QyzP70AiC88XYGgKV89LFsH5BOg.roa (raw, json)
Hash identifier: a/7fapCyQBmgIFzRskdXgPrsdv1bqeOrEt4L3uQiq5Q=
Subject key identifier: 43:2C:CF:EF:40:22:0B:CF:17:60:68:0A:57:CF:4B:16:C1:F9:04:E8
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 06F11A7E
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/QyzP70AiC88XYGgKV89LFsH5BOg.roa
Signing time: Fri 27 May 2022 13:43:14 +0000
ROA not before: Fri 27 May 2022 13:43:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213396
IP address blocks: 2a0a:4540:3000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116464254 (0x6f11a7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: May 27 13:43:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=432ccfef40220bcf1760680a57cf4b16c1f904e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d0:0c:4e:70:f3:13:e3:24:74:d8:df:5b:43:
ad:b3:97:df:db:eb:15:c4:c4:0d:c0:bc:6c:dc:df:
5e:ec:6d:b4:74:65:38:01:b4:f8:4b:94:5d:78:89:
91:8b:b7:0a:1c:ed:01:37:29:c9:f0:29:2f:0a:70:
fd:c1:0b:43:3b:e0:cc:04:6d:a7:13:24:28:0e:db:
05:9a:db:30:90:bd:91:23:f9:9c:12:c0:72:71:b1:
cf:0e:8d:61:28:2f:51:ed:2a:0c:51:49:6e:f9:55:
e9:0e:5d:64:5f:57:1b:2f:c7:d8:63:28:f7:48:20:
b3:d1:ad:c4:a9:3d:51:60:07:69:b7:8a:47:a0:b8:
7c:7f:b2:48:d9:3c:6a:50:dd:e5:72:a3:c7:c7:95:
d7:dc:bc:15:bb:79:79:a5:29:c2:d4:ba:d6:7d:23:
04:16:5e:de:78:bf:a2:59:38:d9:40:70:cc:98:c3:
a9:c3:e5:93:50:35:a8:93:3e:e9:a2:2e:a4:b7:97:
66:cb:0b:22:93:b8:bc:9a:dd:90:3c:f5:59:94:09:
d4:b0:ed:7f:fc:0c:f4:ce:8f:3d:ba:40:5d:d7:99:
69:22:2c:88:cc:bf:c4:e2:5e:7b:81:5e:3b:f9:0d:
d4:5c:64:7d:6a:f0:78:54:79:32:23:26:8b:41:15:
10:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2C:CF:EF:40:22:0B:CF:17:60:68:0A:57:CF:4B:16:C1:F9:04:E8
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/QyzP70AiC88XYGgKV89LFsH5BOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:3000::/48
Signature Algorithm: sha256WithRSAEncryption
23:db:e8:cd:d7:84:8a:d7:6c:55:04:49:9e:b1:cf:d2:a6:27:
06:63:5c:d9:0c:c6:23:de:53:62:65:63:cf:bc:f2:d6:17:c6:
1f:94:8f:df:da:8d:5c:00:3b:f8:99:7d:e9:89:6c:57:14:d9:
77:2d:20:09:83:2f:5a:1b:5c:69:57:72:ce:a2:da:d5:df:27:
36:e1:b9:48:57:14:7c:e2:c0:91:35:66:ae:cd:b6:91:ba:d9:
e9:4f:eb:7c:49:23:c9:87:79:54:c1:8d:dd:58:df:3d:67:59:
19:9a:6b:4a:1f:04:15:60:15:5f:da:bb:b6:33:ed:de:04:98:
2d:0f:9d:28:41:a8:fa:cf:50:76:ed:c7:e1:a6:81:a9:42:23:
39:3d:a8:ca:24:15:de:0a:4c:ee:d9:de:a4:d6:b3:2d:94:c8:
6a:1c:19:c1:70:2f:70:74:d4:89:af:54:82:81:a7:83:21:a9:
20:30:d4:99:ba:e9:f8:8e:6f:7a:76:f5:f8:d3:3a:fe:f2:ec:
56:d5:d9:a6:3e:a5:93:2c:17:5f:6a:c9:c3:36:62:2f:d0:28:
04:a7:a3:a4:48:cd:49:bc:e6:51:7c:63:31:58:77:59:e2:6a:
16:ce:5e:cf:eb:f9:e0:8f:0d:a9:66:2f:6c:6a:14:be:68:7b:
25:88:b1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org