Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/qOzl3QZAHrJ58QDpgoaX4Vo5Lj4.roa
File: qOzl3QZAHrJ58QDpgoaX4Vo5Lj4.roa (raw, json)
Hash identifier: sWV5VVjfWjuwK4D1uj5ohlybBi8w474SGBXsd81VVVQ=
Subject key identifier: A8:EC:E5:DD:06:40:1E:B2:79:F1:00:E9:82:86:97:E1:5A:39:2E:3E
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 03F3272B
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/qOzl3QZAHrJ58QDpgoaX4Vo5Lj4.roa
Signing time: Sat 01 Jan 2022 06:00:48 +0000
ROA not before: Sat 01 Jan 2022 06:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208454
IP address blocks: 2a07:22c1:ffec::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66266923 (0x3f3272b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 06:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8ece5dd06401eb279f100e9828697e15a392e3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:58:ac:b6:b7:8b:28:f0:cf:c7:e0:d4:b3:
81:c9:01:38:13:8e:cc:27:69:09:27:b6:4d:64:be:
e0:ca:5d:43:56:b5:c7:e4:19:94:2f:e5:b8:26:19:
81:fa:d8:af:39:56:0b:50:a1:e7:2f:2b:10:a7:ea:
ae:0b:76:3f:ee:0b:5c:63:d5:4e:ab:33:b6:84:d9:
a3:4e:ab:0c:99:6a:1a:79:3e:c8:02:16:dc:1d:5c:
3d:97:85:21:4d:59:03:30:c8:b4:2a:0a:76:0f:9b:
9a:a6:79:7c:7e:73:16:bc:37:cc:09:15:e8:18:a2:
e9:d3:01:77:4b:d1:5c:6c:34:e6:0b:f7:31:4f:63:
f6:d6:fd:32:e4:a7:95:09:0c:d3:49:4e:f5:6d:c0:
57:e0:87:06:a2:f4:dc:80:e3:d8:c6:e7:0a:f6:4d:
0f:91:75:5c:f9:f2:82:67:57:73:e2:71:4c:4d:d0:
98:99:0d:50:3b:46:04:cf:c6:a2:f4:e9:cd:c4:99:
6c:9c:b0:2f:b3:23:79:60:8a:56:70:6e:dd:3b:cb:
a5:47:fe:69:3a:be:af:d7:f9:81:b0:5b:49:c9:af:
8d:3e:51:20:3b:74:e5:d0:14:25:56:6d:48:e5:41:
33:dc:c5:70:6c:90:b7:bf:9d:bd:f0:f0:73:26:94:
f0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:EC:E5:DD:06:40:1E:B2:79:F1:00:E9:82:86:97:E1:5A:39:2E:3E
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/qOzl3QZAHrJ58QDpgoaX4Vo5Lj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:ffec::/48
Signature Algorithm: sha256WithRSAEncryption
21:db:84:35:79:bb:7e:14:8d:d9:92:a3:9a:a9:a7:10:bf:c6:
15:d9:63:83:57:b3:0d:e3:e4:d3:0b:ed:b9:ef:a7:c5:22:df:
55:b5:6a:da:12:53:bc:5f:34:9f:6b:ef:99:e7:49:98:22:1f:
86:92:af:6a:90:54:d0:6f:1e:04:0c:06:3b:e4:5d:2b:f8:86:
20:4b:e8:c3:53:17:d0:73:6f:17:e7:de:a3:2a:fc:31:3a:54:
72:11:75:72:4b:da:17:27:75:b7:9c:7a:9c:b9:5f:83:88:2c:
ff:cd:a6:6d:59:df:87:ea:a7:72:28:ab:a9:79:85:34:ba:9e:
bd:86:2e:5f:5f:f1:76:a6:b8:7b:55:cd:84:0a:6a:e0:d7:10:
83:16:ce:90:fa:b7:dd:9f:de:f0:16:f5:3f:d4:95:e8:7e:e5:
8a:ed:b7:30:69:9c:d0:d7:01:2b:3e:16:93:61:cf:fa:5e:2b:
9f:5c:a6:9b:c3:cf:23:12:81:0d:7d:fe:e5:34:66:d8:0a:33:
4a:cf:d4:23:63:9e:cb:04:08:07:47:a4:78:65:67:e5:ff:8d:
b7:e9:5b:19:22:31:8d:4c:e3:75:6f:77:80:d8:bb:19:d0:9c:
19:66:2e:e1:f5:79:ad:e5:61:85:88:2b:01:cd:c9:f4:70:93:
39:26:3c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org