Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/0qMQdUve0mZXmhkfvq0VQdV9z0Q.roa
File: 0qMQdUve0mZXmhkfvq0VQdV9z0Q.roa (raw, json)
Hash identifier: VN1Vit4p9gWZmIoqFvvl/5cVcQDIqTKtSSAOjK84WdA=
Subject key identifier: D2:A3:10:75:4B:DE:D2:66:57:9A:19:1F:BE:AD:15:41:D5:7D:CF:44
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0CF49226
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/0qMQdUve0mZXmhkfvq0VQdV9z0Q.roa
Signing time: Sat 01 Jan 2022 12:57:59 +0000
ROA not before: Sat 01 Jan 2022 12:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202418
IP address blocks: 2a0d:2406:d00::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217354790 (0xcf49226)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Jan 1 12:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2a310754bded266579a191fbead1541d57dcf44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2a:1f:b5:74:30:84:6f:2a:8e:1f:01:f4:22:
42:c5:e3:cd:ad:0b:3a:26:03:64:b5:4d:6a:1e:9f:
3d:a9:72:fe:7a:65:66:40:42:b7:ea:a4:9e:ca:41:
db:74:5e:a6:6d:7a:ef:45:ff:e8:1c:a6:f5:7f:51:
05:bf:e9:3c:ac:2a:5f:dd:05:19:2a:9e:3f:67:0d:
78:ad:57:3b:ab:e1:4f:6a:37:70:4e:d1:fb:1e:89:
99:e9:96:7e:17:73:14:2f:88:c7:00:b0:86:40:39:
14:b4:43:cb:2f:88:9a:8b:a5:bf:22:f1:67:71:04:
f2:e4:a0:a8:e5:c8:7b:78:42:05:e9:aa:9b:79:88:
35:a1:83:29:57:7c:92:66:a6:06:90:80:25:87:b0:
7b:0a:f0:5d:2e:a6:8b:fe:dd:33:b6:a4:c1:95:fa:
79:af:59:39:e2:2e:02:14:e7:31:f9:b2:0f:b6:46:
9a:04:66:be:bf:ae:09:eb:48:e8:04:85:fb:37:3b:
c7:92:f2:9f:19:71:af:1b:a4:17:37:3c:84:d3:a8:
c0:74:58:01:74:63:cd:8a:eb:d0:1e:0b:93:0a:a0:
24:e3:c4:d5:61:ec:ce:fd:d3:89:02:46:fc:cd:5c:
1b:22:d8:1a:0f:55:9f:55:c5:f0:3d:b1:5e:4f:f5:
82:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A3:10:75:4B:DE:D2:66:57:9A:19:1F:BE:AD:15:41:D5:7D:CF:44
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/0qMQdUve0mZXmhkfvq0VQdV9z0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2406:d00::/44
Signature Algorithm: sha256WithRSAEncryption
18:42:0a:7b:49:40:4a:e8:4c:95:92:75:b4:da:ad:c3:d9:1f:
7c:01:7f:e9:2e:b1:f0:57:08:a9:63:2a:16:32:a3:5c:31:a4:
7a:a4:c7:e0:cf:be:f8:cf:90:ce:99:0c:6b:4c:c4:ba:66:85:
75:ba:9b:e2:21:68:ac:c6:36:05:7b:f3:35:a4:32:9e:85:10:
e9:cb:c4:5c:1b:83:ad:2e:2b:be:e4:86:c0:2a:83:cf:f5:7c:
88:d5:d8:71:b4:73:c1:5b:55:59:f4:d2:55:42:8f:34:79:4e:
b5:32:6d:12:86:9b:63:5a:c5:24:f1:fc:37:bf:99:9b:9b:f1:
3b:b5:3a:5b:02:3e:db:2a:91:8a:70:e9:fe:1a:cd:79:2f:bc:
71:4d:7b:b1:ea:f2:59:7c:6e:bb:2f:35:fc:49:7e:82:4c:82:
77:39:78:47:91:03:70:cf:03:29:6b:0f:91:b2:b1:00:7e:15:
92:f0:d2:64:e2:c3:9a:67:65:e5:82:84:1d:15:a6:dd:e2:be:
7b:32:ee:57:17:a4:36:8d:70:18:18:a3:09:06:4f:08:30:a9:
09:82:09:8b:1b:4e:aa:92:76:38:70:e6:77:0e:8c:11:e5:63:
be:96:24:e1:97:b8:e0:7e:12:92:6a:5d:05:47:97:81:07:79:
0e:bb:e9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:00 2024 by rpki-client on console-ams.rpki-client.org