Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qBNqUPcgkPqJC-w5o8ZQD0DjpP8.roa
File: qBNqUPcgkPqJC-w5o8ZQD0DjpP8.roa (raw, json)
Hash identifier: JRxtZ7Rtx8zb5KXY4+gMWqc2pvaYc01A0vStvxWQCpI=
Subject key identifier: A8:13:6A:50:F7:20:90:FA:89:0B:EC:39:A3:C6:50:0F:40:E3:A4:FF
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 097292A4
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qBNqUPcgkPqJC-w5o8ZQD0DjpP8.roa
Signing time: Mon 07 Mar 2022 12:20:28 +0000
ROA not before: Mon 07 Mar 2022 12:20:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208137
IP address blocks: 2a0e:8f02:f03c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158503588 (0x97292a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Mar 7 12:20:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8136a50f72090fa890bec39a3c6500f40e3a4ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fd:20:80:a8:90:eb:61:97:f7:d9:c6:1b:cc:
e2:50:27:44:7c:16:0e:b8:c1:39:aa:53:02:80:2e:
6b:61:80:03:24:27:81:b0:d5:c3:3d:3c:48:48:33:
46:9c:0f:48:1d:95:53:2b:07:c4:e3:5b:74:29:c7:
10:18:62:47:1e:80:e2:39:94:72:d0:2d:06:62:b4:
b8:43:2c:9f:84:59:f7:bf:d8:f0:6a:fc:2b:78:02:
31:b8:a0:fc:69:05:c4:d0:5e:f2:5b:5b:6f:06:43:
c5:03:05:d5:cb:db:83:0f:ae:5d:cc:0c:c9:a8:b3:
24:a9:2f:dc:da:31:32:cc:a1:d7:56:b9:13:ef:6e:
e8:ca:cb:4f:e2:c0:79:45:cb:36:90:57:dd:60:2d:
0b:23:f6:5e:84:68:1d:04:ea:11:ca:6c:d3:59:0b:
85:b7:c8:35:cf:36:95:ba:ef:09:c6:00:91:48:78:
55:e4:c9:a6:ae:f3:4b:12:57:6b:47:65:e1:18:31:
bd:0e:0d:d2:1a:73:4d:7e:ba:78:0b:32:84:c8:5c:
64:ef:64:1f:72:5f:fc:55:a5:47:16:f5:6c:19:c4:
44:cb:47:82:f8:a3:41:ce:8b:a3:f6:c0:cd:1b:74:
c1:b8:3e:49:61:a8:f8:ca:18:e1:54:eb:ac:d1:5e:
ee:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:13:6A:50:F7:20:90:FA:89:0B:EC:39:A3:C6:50:0F:40:E3:A4:FF
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qBNqUPcgkPqJC-w5o8ZQD0DjpP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f03c::/48
Signature Algorithm: sha256WithRSAEncryption
18:4c:e5:4a:f5:97:40:6a:94:51:46:c0:ef:8a:11:15:76:b2:
70:7c:67:2e:c2:32:52:00:5c:76:88:91:87:48:d3:c3:78:dc:
5b:09:b4:77:7a:2a:a9:e3:4e:f2:10:29:c7:43:7a:d8:60:68:
a5:e6:fc:39:c1:1e:e4:73:5e:06:c6:a7:52:88:ee:a1:d7:f1:
7f:99:3e:4f:57:2e:a5:fa:99:e7:05:0e:70:99:8f:cc:87:1e:
1e:13:da:34:17:7f:21:61:21:b3:b9:74:f0:bb:98:50:f0:59:
cf:81:65:06:cc:e6:69:16:40:f4:75:d4:f6:9e:6c:c9:57:a4:
d1:4c:b5:36:b1:ba:ee:5c:54:ec:a7:02:75:69:82:65:2f:8d:
a9:1e:e8:02:b6:4d:09:11:f4:cf:44:1f:30:0b:de:c3:a0:5c:
c7:78:42:35:36:bb:a2:a8:87:2b:3e:a3:c3:8c:e7:71:3d:34:
83:77:54:f3:0a:aa:b9:60:8a:17:30:2f:ee:30:aa:e7:ab:ca:
66:97:8b:dd:16:66:4c:77:40:3e:4f:c9:eb:9d:54:4a:6f:9a:
c8:5e:07:1d:83:1e:65:9a:39:fc:89:a8:1d:58:06:82:46:85:
fb:74:f8:e4:5b:77:e4:dd:f4:9f:27:d3:1b:a6:a7:7f:4b:03:
8c:20:db:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org