Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/qyNtzIb3lBI9VOX0qOpQ5mfDwRo.roa
File: qyNtzIb3lBI9VOX0qOpQ5mfDwRo.roa (raw, json)
Hash identifier: HrjoeSSJ5uhJ59JDtaqg1tfgHRZjnpKsBXuBa9DIEak=
Subject key identifier: AB:23:6D:CC:86:F7:94:12:3D:54:E5:F4:A8:EA:50:E6:67:C3:C1:1A
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 01828937F0A0D669EE7AA5A462681B34FD3B
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/qyNtzIb3lBI9VOX0qOpQ5mfDwRo.roa
Signing time: Wed 10 Aug 2022 19:25:20 +0000
ROA not before: Wed 10 Aug 2022 19:25:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211358
IP address blocks: 2a05:b0c6:5001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:89:37:f0:a0:d6:69:ee:7a:a5:a4:62:68:1b:34:fd:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Aug 10 19:25:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab236dcc86f794123d54e5f4a8ea50e667c3c11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2d:4b:04:d1:12:a0:f7:d4:d5:6d:2e:17:e9:
1b:92:97:53:85:9e:7c:b4:44:56:4a:cb:2b:91:e1:
f6:8d:5f:a8:51:bf:64:02:4e:18:41:31:7a:6f:aa:
9a:f2:24:81:1b:50:6b:d8:5a:78:12:be:dd:1a:67:
42:f8:a7:1a:14:e8:8c:ac:77:32:2b:d7:22:77:fc:
aa:92:e2:88:4b:4d:08:bd:25:6a:01:21:3a:4d:f1:
bf:4a:1d:26:16:a2:2f:8d:fc:b4:f8:e1:f5:98:94:
50:6a:40:22:fb:f4:9e:46:28:8d:12:84:97:0f:04:
0f:d6:9f:79:1c:2e:f7:ac:a3:12:7e:29:c3:4d:7b:
b7:21:3e:f7:3c:18:88:6b:2f:93:9f:82:6d:63:e3:
22:fa:6f:f5:e4:16:6d:fe:34:4c:19:43:78:9a:be:
a4:a0:1b:4f:16:10:81:d8:69:3e:21:01:40:78:a4:
41:36:69:57:c0:cc:5e:d0:c3:da:53:cc:9d:96:1a:
5f:16:90:5d:35:61:1d:87:bf:45:27:ec:94:3f:64:
0b:5b:99:bc:b9:15:b7:8f:f1:bb:01:c7:66:3b:75:
71:0b:55:ab:8d:cd:dd:90:4a:ec:5c:2e:24:71:33:
5c:c8:58:4b:6f:42:47:f4:c0:d9:73:8c:f1:5b:c0:
57:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:23:6D:CC:86:F7:94:12:3D:54:E5:F4:A8:EA:50:E6:67:C3:C1:1A
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/qyNtzIb3lBI9VOX0qOpQ5mfDwRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c6:5001::/48
Signature Algorithm: sha256WithRSAEncryption
66:5b:40:74:af:e3:c2:61:e2:6d:04:a6:a3:65:43:cb:4a:61:
a9:9c:0c:f2:e4:b7:1b:f8:c8:74:51:85:c2:c4:0d:b8:86:38:
c9:f2:ad:da:93:4e:b7:13:de:32:81:52:c1:58:a2:cc:07:a9:
4c:98:3b:4d:a5:a5:8e:1d:a4:95:9a:f7:24:79:69:e6:ce:b2:
2c:c1:9e:bf:92:fe:07:ca:8c:91:36:3a:dc:f4:fb:79:3d:18:
3d:5f:5e:31:6d:34:6f:82:90:70:ab:33:f5:49:21:c9:26:e6:
d9:9e:9c:39:14:c7:b1:4f:be:d5:79:e8:79:3d:1a:ff:97:a1:
3d:db:54:a0:23:41:47:30:07:6d:84:fa:f6:df:6b:f4:85:f0:
e1:cf:2a:9d:48:ce:f6:e6:41:f5:4c:7c:46:7a:20:de:fb:66:
ae:c4:1a:ae:0e:70:5a:05:67:16:33:bb:86:5b:be:db:39:60:
4a:57:39:c8:1f:77:12:00:9a:07:7c:3d:7e:d6:b4:2e:21:ac:
1f:cd:90:fa:0a:e3:db:19:a7:77:4d:6e:6c:43:44:fb:ce:f2:
38:e6:f3:56:f2:44:34:da:aa:3c:11:c3:27:34:38:ae:39:bf:
1f:a0:44:a8:ed:b5:d9:13:b0:30:a2:5f:ea:29:4b:5b:32:cd:
92:e3:8d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:27 2025 by rpki-client