Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Qivf6RcINC42VNE3oaV6p6o2DBg.roa
File: Qivf6RcINC42VNE3oaV6p6o2DBg.roa (raw, json)
Hash identifier: 3FBsxpRyXdD7+VDs62nsaCGUQ8nKlFXf0vukbIzfXRM=
Subject key identifier: 42:2B:DF:E9:17:08:34:2E:36:54:D1:37:A1:A5:7A:A7:AA:36:0C:18
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 09E51205
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Qivf6RcINC42VNE3oaV6p6o2DBg.roa
Signing time: Wed 23 Feb 2022 12:50:04 +0000
ROA not before: Wed 23 Feb 2022 12:50:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a09:9f44::/30 maxlen: 30
2a09:9f40::/30 maxlen: 30
2a09:9f41::/32 maxlen: 32
2a0f:304::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166007301 (0x9e51205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Feb 23 12:50:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=422bdfe91708342e3654d137a1a57aa7aa360c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e4:43:02:53:1f:6c:11:12:4d:7f:a4:a9:6f:
34:3d:59:c7:41:9d:86:b2:67:62:75:ec:b8:15:71:
6f:22:b8:58:11:c7:d2:e1:d7:6d:cd:cf:43:cf:f2:
65:e7:82:e6:c2:5e:68:b2:e5:cd:ea:b9:36:6f:95:
cf:29:a0:9e:37:e8:1a:cb:c8:ab:32:bc:9c:fd:0a:
9d:2a:40:40:58:cd:2c:be:9f:0c:82:e1:8d:42:ae:
93:6c:09:8a:3f:a6:2d:08:51:7d:a3:51:b4:6e:41:
03:8c:a5:a1:8f:09:14:05:50:e1:28:90:27:5c:92:
52:f4:e6:cc:6a:3f:82:31:3f:34:07:05:0b:97:d7:
a2:68:e2:74:ab:48:05:ce:48:aa:10:54:93:50:e8:
c0:66:da:b4:81:b9:7e:a8:3b:06:d5:f9:29:a0:a5:
54:74:b5:7d:da:6b:26:91:49:f1:c1:c7:ec:28:c6:
aa:24:e7:2d:e9:19:65:3d:9d:53:07:4f:0f:1d:59:
00:59:6d:bb:7b:6f:77:ad:ca:ed:58:db:2d:25:ba:
d5:69:d5:68:a9:91:f1:a0:cc:88:a2:25:11:14:b9:
6c:cd:20:63:b1:e7:70:7e:25:63:63:f8:8e:7b:62:
3f:f9:77:4d:9d:cb:96:9a:cc:88:5d:63:a0:7e:0a:
0f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:2B:DF:E9:17:08:34:2E:36:54:D1:37:A1:A5:7A:A7:AA:36:0C:18
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Qivf6RcINC42VNE3oaV6p6o2DBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:9f40::/29
2a0f:304::/32
Signature Algorithm: sha256WithRSAEncryption
3a:3d:c2:25:7e:e2:ca:47:d5:57:c9:d2:a5:3f:ca:ac:ed:6c:
4a:4d:87:73:95:6e:6f:0d:ec:3a:03:44:e7:47:57:0b:ad:d2:
47:14:26:54:fb:01:dd:da:4e:6e:3d:9f:f3:29:b2:fc:f9:16:
f0:08:07:36:7f:6d:4f:83:92:46:6b:b2:28:0b:0a:22:f7:8e:
4c:d7:d1:36:78:4f:22:21:21:65:bb:bb:cb:74:79:c7:6e:70:
95:06:a7:56:90:c6:69:61:a9:fd:62:3c:69:8a:e3:50:e3:6a:
48:6e:53:df:be:54:06:2e:a6:5d:81:c1:85:a4:5c:d6:b3:43:
7e:4f:b5:fb:d9:07:1a:e2:15:5b:a4:57:92:00:90:d4:38:28:
89:1a:a2:ea:4f:b2:3b:cb:20:c4:ec:c8:13:e9:3c:a3:d1:b6:
85:f4:2e:7e:06:84:f1:b6:83:87:74:42:fc:bc:ad:46:86:e5:
65:bc:7e:59:43:6b:aa:77:71:82:fc:79:00:f2:3f:0b:6c:1e:
96:37:9b:11:5f:87:47:f9:6d:26:ec:5b:9a:d2:22:b2:bb:1e:
e7:6d:dd:59:52:48:16:a5:b1:3e:54:6a:10:34:c5:2f:9d:17:
62:66:23:4b:6a:35:9b:23:9e:46:48:35:c1:17:b6:84:f1:f2:
14:cc:11:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org