Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Qz0iRiOsaEGbQ9vY_E6EY1s19vc.roa
File: Qz0iRiOsaEGbQ9vY_E6EY1s19vc.roa (raw, json)
Hash identifier: tUu+sT6HtbJb3vMmTDcz26Cm2rUFZDCiUkVuRizRmm8=
Subject key identifier: 43:3D:22:46:23:AC:68:41:9B:43:DB:D8:FC:4E:84:63:5B:35:F6:F7
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C43A37
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Qz0iRiOsaEGbQ9vY_E6EY1s19vc.roa
Signing time: Sat 01 Jan 2022 14:01:57 +0000
ROA not before: Sat 01 Jan 2022 14:01:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212268
IP address blocks: 2a0e:8f02:f014::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147077687 (0x8c43a37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=433d224623ac68419b43dbd8fc4e84635b35f6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:15:38:97:2c:02:9f:ab:53:94:b8:83:d9:13:
86:cd:00:5d:55:6f:95:1a:b6:94:2d:6f:4b:40:4a:
8c:c0:c9:c3:89:b4:0c:3b:36:bd:4e:59:8e:cb:1b:
8d:bc:8a:25:0f:3a:3a:dc:a6:90:4a:ae:ed:33:62:
70:2a:66:64:bb:b1:a4:e2:9b:5b:63:60:a6:7d:8b:
c6:1b:3c:27:11:ec:39:02:72:d6:4e:8c:14:77:e1:
58:a2:59:29:4d:1a:3a:dc:9a:1e:d9:3b:1b:51:ac:
5d:58:50:b0:9f:44:49:00:af:e4:fe:94:71:d9:c2:
df:29:5d:a8:11:bc:2c:8b:3a:6c:0c:2c:47:0f:e6:
08:75:7e:b3:f0:da:20:97:da:1d:ef:c1:c0:f1:1a:
35:ac:bd:3a:ec:58:6c:64:b1:ba:62:45:f4:19:13:
f7:ff:38:93:71:76:ed:ff:20:3d:e2:6c:79:46:3f:
06:0b:0b:c7:18:2a:9b:e2:62:59:eb:c4:65:84:f3:
8d:92:70:1d:e4:8f:33:04:52:77:35:eb:b4:b7:dd:
a5:6e:19:18:64:14:d9:5f:46:fd:84:a7:66:94:cd:
7c:fd:ad:e9:8e:bd:24:78:9a:1b:18:5f:ee:b7:c4:
3e:c4:72:cd:f1:27:c7:e2:0e:c5:0d:ac:42:6d:74:
81:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3D:22:46:23:AC:68:41:9B:43:DB:D8:FC:4E:84:63:5B:35:F6:F7
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Qz0iRiOsaEGbQ9vY_E6EY1s19vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f014::/48
Signature Algorithm: sha256WithRSAEncryption
32:c3:2b:e3:b0:cb:2c:be:ca:6e:63:1a:97:0d:0f:8b:c9:f5:
6b:21:97:0a:e8:da:1d:e3:5b:2c:88:c8:fd:62:50:6d:3f:e8:
b9:6e:71:f7:11:12:64:04:c4:0e:d9:b7:be:27:bc:e0:9a:ae:
39:92:9c:55:c8:d3:e4:0e:8b:ad:99:ee:c9:35:3e:be:cb:ca:
b3:15:da:6c:1f:9f:a4:70:02:ab:d4:6b:df:75:c3:2a:74:89:
d7:33:c5:3f:69:45:97:4d:68:98:ad:d3:75:78:73:6f:8e:b0:
80:73:a4:74:c9:e3:42:41:94:3c:6e:1f:e4:d5:aa:70:b2:59:
fc:87:24:7d:8e:c4:8e:80:2e:e0:ac:76:6b:07:8a:92:c8:d7:
b6:57:34:79:24:b2:bd:91:1f:c7:5b:ac:c9:ec:95:b8:cb:fa:
56:d5:4a:f4:22:b1:8c:74:a8:54:64:4b:87:79:0b:ea:71:d9:
aa:5a:9c:30:87:b8:40:bf:08:1f:ad:f6:d6:20:dd:a2:3f:df:
9a:51:fe:1c:27:eb:92:ca:a1:d5:c7:51:7d:83:46:73:ac:d6:
2f:88:eb:c3:d0:a2:c7:bd:40:2c:46:63:6f:00:66:ce:11:6c:
e5:10:bf:51:c2:04:82:35:69:3d:7f:b6:c6:ce:73:4f:a1:32:
80:e8:94:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org