Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/QJhbRn4YVI8wpfF1Y3dipm_1VK4.roa
File: QJhbRn4YVI8wpfF1Y3dipm_1VK4.roa (raw, json)
Hash identifier: TXh98pckmA95OAYnr9Lo6iLvpzqEJQalD5uT232qhNM=
Subject key identifier: 40:98:5B:46:7E:18:54:8F:30:A5:F1:75:63:77:62:A6:6F:F5:54:AE
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C94057
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/QJhbRn4YVI8wpfF1Y3dipm_1VK4.roa
Signing time: Sat 01 Jan 2022 14:02:04 +0000
ROA not before: Sat 01 Jan 2022 14:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212844
IP address blocks: 2a0e:8f02:f008::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147406935 (0x8c94057)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40985b467e18548f30a5f175637762a66ff554ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cf:d7:98:e5:a9:8d:69:8a:a0:ec:4d:62:d6:
36:63:19:8d:ba:e7:8b:00:32:3c:ef:4d:8a:6d:8b:
35:a8:ab:9f:55:a8:d8:b4:24:34:55:93:c4:07:65:
1d:a0:85:ac:7b:1b:ba:02:f2:05:90:5c:d6:ea:b7:
5a:d2:f2:66:08:37:61:ee:e5:4c:98:fe:ba:09:9b:
07:70:64:92:01:0b:de:9f:0a:41:92:ab:1b:33:47:
e6:be:b2:fe:f6:f4:a0:09:09:2f:8f:88:98:c1:63:
12:e8:a3:aa:2b:48:e4:02:ec:ac:bb:96:26:99:78:
d3:6c:91:4c:a5:87:07:18:1c:72:9a:f7:8f:bc:e6:
8a:50:2c:5b:6d:f4:d0:e4:b2:2d:0c:14:2d:14:d3:
fb:5c:ae:c5:82:7d:2d:db:40:3b:d9:eb:92:6f:b5:
8a:db:26:d0:bd:46:67:5a:ac:f2:ac:7c:e9:e0:ff:
06:bd:0d:8d:81:4a:c2:f8:04:a0:d8:12:ba:42:16:
fe:f2:55:e2:1f:5a:96:c3:40:40:82:4b:7b:9c:e4:
d1:33:e3:95:d5:06:51:9a:e7:be:49:c1:5b:2b:44:
66:81:cc:21:d2:8e:c1:d9:fd:33:3f:01:16:a5:53:
b7:1b:0d:ae:dd:81:50:b9:5b:8b:75:0d:06:b5:2d:
ef:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:98:5B:46:7E:18:54:8F:30:A5:F1:75:63:77:62:A6:6F:F5:54:AE
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/QJhbRn4YVI8wpfF1Y3dipm_1VK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f008::/48
Signature Algorithm: sha256WithRSAEncryption
6c:7b:f3:df:69:a6:a0:2e:d2:e2:49:e0:d8:6d:62:96:3c:7e:
82:a8:73:74:6d:87:22:15:8f:15:2c:92:0a:9f:4e:72:f9:98:
38:de:cd:ab:a7:32:6c:c2:4a:c2:4a:48:b3:ef:61:63:91:39:
27:4f:5d:df:ae:3a:2d:5a:44:eb:6e:f3:a7:ea:db:48:6d:4f:
66:75:59:cc:68:a3:e5:4b:fe:61:9c:8a:36:99:0b:b9:31:05:
e4:03:67:15:e6:ed:55:b4:03:8f:93:67:a1:08:60:2c:2d:da:
5f:39:22:95:e1:5a:f5:74:91:57:61:6c:54:ac:74:b1:9c:e9:
91:27:66:07:07:5f:1a:13:5d:3c:0b:1b:eb:b4:b1:b5:98:66:
38:87:c4:76:9c:e4:f3:42:06:25:b0:42:6b:98:33:d0:30:6e:
2f:24:3d:b4:43:a6:7f:03:13:6b:f6:54:4b:a5:89:17:1f:39:
75:0d:85:f4:61:f4:7b:cc:08:a0:3d:8d:88:46:a1:23:c6:e6:
26:85:a8:34:34:42:28:47:e3:22:25:16:11:45:05:92:e6:07:
ca:a6:91:7e:ba:6a:e9:4f:22:76:90:45:fc:3f:33:db:fe:27:
e8:31:39:56:1c:ce:09:fe:cf:07:f0:8b:e7:97:18:ab:f8:a3:
bd:d0:ed:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org