Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/qGhz4jT4RRqhT8NPFN1GaqO1GXY.roa
File: qGhz4jT4RRqhT8NPFN1GaqO1GXY.roa (raw, json)
Hash identifier: fcyqc7GDeSzGBYz0J4yAaYl/3oztsDr7SqvW1irK/7o=
Subject key identifier: A8:68:73:E2:34:F8:45:1A:A1:4F:C3:4F:14:DD:46:6A:A3:B5:19:76
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F9941C
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/qGhz4jT4RRqhT8NPFN1GaqO1GXY.roa
Signing time: Sat 01 Jan 2022 13:06:27 +0000
ROA not before: Sat 01 Jan 2022 13:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202717
IP address blocks: 2a02:bc8:37::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351900700 (0x14f9941c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a86873e234f8451aa14fc34f14dd466aa3b51976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8c:36:2c:d6:fd:14:e9:86:5d:37:9d:05:95:
e9:59:79:16:c3:5a:84:8e:c0:e2:54:a1:b1:6e:55:
7b:bc:d8:3d:bb:be:51:8e:c0:40:2d:15:11:1b:d3:
43:53:27:d9:9e:eb:74:f3:d1:68:82:c5:44:11:ed:
f4:6f:bb:2b:0f:88:10:db:f2:1d:94:41:d2:76:80:
62:82:28:81:c5:f1:28:a5:8a:7c:7b:f6:c1:a5:c3:
de:83:c8:6d:e8:0c:f3:6c:66:6b:9a:15:bd:18:e2:
88:5b:9b:38:eb:b3:47:db:e1:93:a0:39:7c:e0:c7:
61:df:03:e9:f0:bc:39:00:ef:a8:b0:39:40:91:72:
c2:8f:43:44:55:d7:92:4e:2b:2a:94:28:91:c6:1f:
c4:fa:09:7b:80:79:15:a4:ab:7d:33:19:bb:c6:e5:
b2:2f:47:50:0f:ca:73:4d:50:9e:2c:7e:85:31:54:
2a:4e:f5:f6:26:22:89:8d:9d:64:54:6b:5e:9a:fa:
0d:d7:30:fa:0a:4c:e8:f1:85:f5:e8:60:47:1c:67:
f2:a5:9d:38:31:92:fd:ee:2d:26:bc:68:b5:67:3e:
36:b3:27:2b:4d:41:40:b9:29:a9:1d:be:49:ae:b4:
c0:46:4e:d7:00:df:66:cf:d5:e7:a0:c5:bf:d8:e2:
dd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:68:73:E2:34:F8:45:1A:A1:4F:C3:4F:14:DD:46:6A:A3:B5:19:76
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/qGhz4jT4RRqhT8NPFN1GaqO1GXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:bc8:37::/48
Signature Algorithm: sha256WithRSAEncryption
88:cf:f7:d5:e0:32:4e:ef:ad:e5:da:c3:b3:38:ba:a6:69:92:
3b:99:72:ea:65:e4:40:95:8f:1e:90:1b:a8:f0:13:5d:9e:73:
e0:28:5b:ac:87:90:84:11:9d:1f:38:af:27:8e:09:2e:9f:ec:
21:ea:d8:ca:fa:13:9d:17:a1:90:b9:3f:65:65:8b:57:eb:2c:
65:45:de:c7:53:4d:c3:34:9b:99:df:39:f5:73:c3:db:0d:73:
b7:3b:97:21:6a:11:63:77:09:bc:46:9f:d2:2d:fd:b7:e5:cb:
40:c4:a4:6b:f0:8f:25:8f:c4:70:1d:d2:b4:3d:12:98:0b:8c:
c6:4b:ad:ea:34:92:80:c3:28:24:76:07:9a:02:c7:24:be:de:
ec:66:7c:90:52:46:16:7e:72:2a:fb:56:f8:3b:e4:33:b2:7b:
8d:ed:75:1e:b4:d5:d7:b2:fc:cb:9d:09:44:4f:4d:b1:db:d3:
61:25:ca:4b:be:30:81:5a:76:99:9d:f8:1d:69:d4:ba:f1:f1:
eb:15:9b:ee:65:e1:d5:8a:47:f4:0b:ad:6f:f9:57:3c:5b:72:
3f:89:5b:ce:05:e5:35:c8:b7:97:43:ec:3c:f7:7b:e4:c9:7e:
a4:5f:bf:39:88:1d:43:b4:cf:e5:dc:c7:ef:1d:3d:4c:ff:ed:
5c:1d:b0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org