Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/qOk9v4W-UnkpT_vqBbol1waxc58.roa
File: qOk9v4W-UnkpT_vqBbol1waxc58.roa (raw, json)
Hash identifier: Qnns2Jt6AM2G3jOma+rttEuszTXyBO3V3KNl4VfYP1o=
Subject key identifier: A8:E9:3D:BF:85:BE:52:79:29:4F:FB:EA:05:BA:25:D7:06:B1:73:9F
Certificate issuer: /CN=79730b9ea010d832f940efb589c51889132f4c94
Certificate serial: 0ED28470
Authority key identifier: 79:73:0B:9E:A0:10:D8:32:F9:40:EF:B5:89:C5:18:89:13:2F:4C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXMLnqAQ2DL5QO-1icUYiRMvTJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/qOk9v4W-UnkpT_vqBbol1waxc58.roa
Signing time: Sat 01 Jan 2022 01:52:18 +0000
ROA not before: Sat 01 Jan 2022 01:52:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a10:7080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 248677488 (0xed28470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79730b9ea010d832f940efb589c51889132f4c94
Validity
Not Before: Jan 1 01:52:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8e93dbf85be5279294ffbea05ba25d706b1739f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:94:26:da:1d:51:12:fd:3e:4c:8b:51:e3:
b1:28:be:bf:da:00:f9:df:ad:03:0d:48:ff:17:11:
00:98:40:13:7d:e6:f4:b4:53:9f:f0:83:c2:df:56:
45:d7:58:ed:3a:af:05:0e:83:02:40:ca:93:f0:a2:
ee:cc:81:95:b9:d1:05:51:fa:a4:58:d6:28:81:4f:
9e:20:50:fd:8a:c2:23:c4:3a:4c:10:ff:b2:fd:94:
c5:02:b3:7f:e5:60:5a:f2:43:4c:aa:8f:91:6d:eb:
39:17:ed:d0:5b:0a:15:3a:18:e8:29:04:a4:8d:4b:
bb:63:65:1f:5b:29:1c:33:b5:48:d1:67:fb:d4:29:
2e:a8:5b:82:5a:69:f2:ac:10:3c:00:c8:d7:4e:98:
83:58:37:9a:79:9b:f2:47:66:cf:02:8a:64:49:c1:
fc:4b:b8:a9:5a:54:7c:61:c4:4c:65:2c:14:ea:15:
a3:c4:f7:7d:7f:62:40:8a:55:20:61:dc:65:64:43:
2f:14:83:6f:a6:37:dd:41:1c:2b:98:1d:58:80:02:
25:92:19:e7:61:3b:23:47:16:8d:bc:68:a8:8b:7c:
3e:87:cb:21:48:9e:6e:1e:42:c5:07:b7:d5:44:45:
87:93:8b:83:9e:6d:6b:69:1c:fc:3b:d7:0b:88:43:
c3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E9:3D:BF:85:BE:52:79:29:4F:FB:EA:05:BA:25:D7:06:B1:73:9F
X509v3 Authority Key Identifier:
keyid:79:73:0B:9E:A0:10:D8:32:F9:40:EF:B5:89:C5:18:89:13:2F:4C:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXMLnqAQ2DL5QO-1icUYiRMvTJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/qOk9v4W-UnkpT_vqBbol1waxc58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/eXMLnqAQ2DL5QO-1icUYiRMvTJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:7080::/29
Signature Algorithm: sha256WithRSAEncryption
70:6e:66:42:99:c2:72:b5:1f:d6:d8:68:80:87:bd:88:30:6d:
ed:ae:92:87:ff:d6:e9:f1:c8:4a:bf:ca:84:7b:84:32:ed:02:
63:94:39:88:de:5d:fb:e5:b0:70:4e:f0:3d:fd:a6:91:ea:96:
be:10:06:7e:09:ba:f7:6b:d7:d9:88:2f:e6:5d:23:0a:e1:0a:
0f:bf:dd:14:21:22:e2:a3:03:64:5d:1c:23:01:8b:c6:04:9c:
53:2f:a3:cb:a9:a7:06:d2:06:7a:dd:f1:d6:d0:88:f7:d2:47:
d2:13:e4:ad:f4:a7:32:63:b8:0b:b5:9d:58:2b:fd:87:f9:64:
0b:7c:84:91:3d:b1:ec:7a:24:77:c9:af:22:f7:87:33:40:ff:
0b:6f:61:91:7d:bc:2c:40:82:aa:f5:57:e0:94:72:a5:1c:c3:
d4:28:32:29:fb:f0:b2:9f:2e:13:30:20:ad:ce:f3:22:44:38:
61:0f:ce:29:96:be:0c:bc:d4:36:b2:a1:0c:72:12:c4:20:63:
ff:04:04:c8:43:4c:4c:32:98:ad:83:34:3d:22:00:c6:2a:38:
5c:3c:26:66:fe:53:1e:89:cb:8d:cb:5d:c6:e3:2e:7f:74:01:
a5:f0:e4:68:7d:3e:10:88:6c:9a:c6:7d:20:4e:c5:45:64:59:
f3:ee:c6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:00 2024 by rpki-client on console-fra.rpki-client.org