Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/0Q-fM_pYwZ8RJ-RgVki7CX5HyQY.roa
File: 0Q-fM_pYwZ8RJ-RgVki7CX5HyQY.roa (raw, json)
Hash identifier: 23fg2TaNktzsOpcPPhr2wUQUuUCccOzSRo5JtREjNqY=
Subject key identifier: D1:0F:9F:33:FA:58:C1:9F:11:27:E4:60:56:48:BB:09:7E:47:C9:06
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1D2D9FE4
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/0Q-fM_pYwZ8RJ-RgVki7CX5HyQY.roa
Signing time: Wed 23 Mar 2022 19:00:28 +0000
ROA not before: Wed 23 Mar 2022 19:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203323
IP address blocks: 2a01:5c40:c000::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489529316 (0x1d2d9fe4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 23 19:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d10f9f33fa58c19f1127e4605648bb097e47c906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e8:a7:06:e0:bf:a5:1e:be:42:de:de:84:c6:
2d:bf:33:7c:bd:99:c6:0c:f8:03:d7:8a:31:4f:7e:
08:c0:5a:c8:be:d5:22:76:8d:ef:29:24:d6:52:f7:
ad:13:bf:3a:24:f9:3a:46:d2:4b:49:60:7a:91:68:
ba:d4:ba:0a:6c:52:77:0a:63:75:5f:ab:fc:eb:4c:
f3:96:48:71:61:d4:8f:61:c1:4f:57:11:ed:d0:d4:
e9:5e:90:b3:68:54:86:1a:ef:b4:96:f1:1c:38:c2:
8b:e7:ad:58:13:e5:6f:8a:a5:36:3a:74:11:ba:f1:
ea:ed:c7:65:58:26:41:21:cd:b1:9b:97:d6:7b:e4:
5d:0b:91:57:e4:16:32:06:72:f0:8b:96:2a:e0:92:
51:83:4f:fb:99:7f:c7:59:00:1d:f9:5a:86:bb:d5:
f2:bb:8a:14:85:79:f7:cb:53:97:36:f4:d5:2f:2e:
0e:a6:44:92:29:b6:de:7d:55:72:ad:6d:34:af:b4:
b4:88:df:a3:5c:6e:25:87:79:38:73:f7:0e:17:42:
23:b1:c5:3e:af:f0:5d:c9:c6:7e:6f:77:01:d0:f4:
7c:6e:59:f0:12:fd:4d:e5:03:bd:22:d3:69:b9:88:
ec:2a:af:86:6d:77:2c:25:e7:18:6f:ad:97:4f:6a:
92:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0F:9F:33:FA:58:C1:9F:11:27:E4:60:56:48:BB:09:7E:47:C9:06
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/0Q-fM_pYwZ8RJ-RgVki7CX5HyQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:5c40:c000::/64
Signature Algorithm: sha256WithRSAEncryption
76:47:2d:fd:15:7b:08:ea:29:1f:d9:e1:1d:01:0c:a8:b4:50:
72:aa:47:7c:56:ab:7b:b5:16:6a:cb:c5:52:b5:5a:50:f1:4b:
31:92:31:a3:13:0e:f4:bf:6d:26:36:9f:ff:3a:5b:07:58:5c:
fa:ee:ca:ec:10:06:da:e8:f3:5f:8d:b3:3e:41:df:12:82:0e:
41:cc:80:d5:71:80:2d:c5:38:c3:74:c9:0b:61:cd:3c:8f:28:
73:d2:f2:a0:45:ee:c2:f6:0c:48:8d:6a:6d:da:9c:e2:78:94:
91:a5:ba:e6:a7:8b:a9:12:83:4b:ba:4b:4c:8c:0f:05:a0:39:
c4:a0:66:d5:8e:5a:ae:4f:d1:b5:84:bd:06:fd:f8:70:67:77:
cd:2c:cd:4d:4e:a7:f2:d4:2e:cb:db:40:25:cf:fb:4d:54:dc:
b4:f1:e2:e1:33:53:54:11:ee:75:ca:0c:57:87:78:ef:66:13:
84:fa:d1:5e:96:5c:3e:2c:ff:4c:f6:29:e2:36:9d:b9:a5:2b:
3f:98:0e:b5:fb:f3:66:93:4e:59:c7:5d:8d:36:ee:a0:eb:46:
1a:dc:dc:36:04:e3:44:30:38:7f:e4:47:8b:51:c7:33:d2:2b:
a3:89:ab:f1:dc:8d:0c:b0:4f:e7:e7:48:ec:6c:49:15:4b:bd:
0c:92:30:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org