Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QT3PLacTz-TsGnAXrOn86dJQpFg.roa
File: QT3PLacTz-TsGnAXrOn86dJQpFg.roa (raw, json)
Hash identifier: zdaB5e72cSnAgrnMgOgnNeenP9OlrsIjVHNY9/wB0vc=
Subject key identifier: 41:3D:CF:2D:A7:13:CF:E4:EC:1A:70:17:AC:E9:FC:E9:D2:50:A4:58
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0135F74C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QT3PLacTz-TsGnAXrOn86dJQpFg.roa
Signing time: Sat 01 Jan 2022 00:59:55 +0000
ROA not before: Sat 01 Jan 2022 00:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210233
IP address blocks: 2a0c:b641:30::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20313932 (0x135f74c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=413dcf2da713cfe4ec1a7017ace9fce9d250a458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fa:af:68:39:55:d8:4f:22:77:d3:84:cf:03:
84:41:d7:38:38:4c:1a:37:05:f6:2f:b4:9d:e3:89:
4d:e1:bf:9d:90:8a:ad:55:64:87:56:1d:0f:4e:95:
4d:93:fc:30:ff:e5:27:97:46:6b:be:0c:55:de:77:
01:9d:06:e1:f5:b4:fc:b6:67:73:b2:82:06:5c:cb:
12:82:36:04:a3:57:a4:9b:fc:4e:70:e0:83:28:6c:
b1:60:93:f6:2a:b2:8b:30:7e:4e:8d:2e:a4:09:53:
21:b1:01:2a:2b:9c:c6:93:21:1e:ce:ac:22:81:22:
71:7e:0e:5f:8d:d0:b2:0c:51:28:4f:f0:c6:29:82:
be:f2:58:fb:83:4d:aa:62:42:6e:d7:94:51:bf:6e:
17:eb:9f:91:33:38:b8:a9:be:c2:d4:b1:3b:13:36:
e6:74:1a:21:bc:05:45:96:85:0d:f8:3e:43:3a:09:
39:30:d3:90:6f:e8:f4:cb:75:4b:de:7a:83:5b:a7:
ca:51:4b:8b:4a:e6:0e:46:e6:21:62:e1:17:22:ce:
95:dc:46:9b:06:99:ef:df:36:37:51:85:27:3a:ef:
0a:63:98:cc:65:ec:e4:7a:09:c6:3a:da:0f:6a:f0:
3c:c7:9f:6b:23:59:50:7d:36:f8:b3:52:9f:65:5d:
03:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3D:CF:2D:A7:13:CF:E4:EC:1A:70:17:AC:E9:FC:E9:D2:50:A4:58
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QT3PLacTz-TsGnAXrOn86dJQpFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:30::/44
Signature Algorithm: sha256WithRSAEncryption
12:1c:b2:74:27:a2:af:df:04:b3:52:4a:af:5b:34:eb:10:b0:
63:12:38:80:66:46:ab:47:cf:2a:d5:3d:85:af:2f:22:19:de:
4f:39:bd:71:5e:73:cc:c0:d2:e7:6a:2e:ea:c0:28:14:2a:94:
74:5c:d4:39:b0:5e:2c:77:53:82:34:ea:91:86:21:20:77:ce:
2e:2f:0a:3a:6f:71:dc:d0:72:90:34:40:65:e0:43:20:2f:33:
56:ff:a9:82:1d:c1:b4:d1:f3:50:90:d0:39:03:c9:43:01:da:
3b:b5:19:40:b3:1d:76:ff:f4:a5:67:d3:e7:20:e1:f0:de:a7:
1c:8f:bc:e8:9c:e2:b3:66:4d:1a:54:d8:c5:f9:4c:1c:b8:dd:
64:b8:16:43:b2:6e:5f:d4:2a:9e:6b:ab:34:04:88:75:93:95:
5d:a7:47:69:ab:82:ca:bc:29:a2:bb:fe:00:86:a3:09:8a:e6:
9c:61:e3:64:2e:73:0f:e2:14:67:b4:fe:0d:0f:f4:f8:3f:44:
2a:74:d0:50:e5:4f:4e:2a:12:b9:e7:0f:3f:d2:2f:1a:a2:72:
ab:94:dd:5b:27:85:61:99:ef:f8:16:e9:bb:07:2e:cf:7a:e1:
95:06:4a:63:f9:f4:54:a3:e1:bd:4f:c8:32:40:b1:56:3f:f8:
cd:73:10:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org