Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/QQFxvO190QIegtCpeo149zXv644.roa
File: QQFxvO190QIegtCpeo149zXv644.roa (raw, json)
Hash identifier: BzlhtYbyjv9jJovWkaezRRNMhgj3LH0Pvd03fSOdkY0=
Subject key identifier: 41:01:71:BC:ED:7D:D1:02:1E:82:D0:A9:7A:8D:78:F7:35:EF:EB:8E
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 097FB3EA
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/QQFxvO190QIegtCpeo149zXv644.roa
Signing time: Sat 01 Jan 2022 09:04:08 +0000
ROA not before: Sat 01 Jan 2022 09:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211158
IP address blocks: 2a0e:aa07:e021::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159364074 (0x97fb3ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=410171bced7dd1021e82d0a97a8d78f735efeb8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d6:e4:18:13:be:38:33:92:ae:55:a1:cb:f9:
85:2c:bf:de:0f:c9:25:1f:f9:0e:b0:61:ad:b2:79:
53:4b:77:fa:7a:06:af:b6:c6:50:33:69:fa:09:46:
34:a2:50:79:f9:ed:e1:7c:19:88:3b:1e:a3:85:47:
bd:02:0b:7b:25:a0:70:f6:09:38:f7:45:da:e8:a3:
06:47:68:88:c6:46:99:4d:cc:62:bb:dc:85:65:08:
a4:3d:36:50:80:bb:e2:02:a4:a4:0b:aa:4f:59:0a:
80:8d:94:d0:44:ab:3c:a6:9c:cf:55:da:c0:9b:fc:
68:cb:72:f3:2c:c7:0f:6c:7d:5f:42:82:d5:a6:58:
79:71:ed:e8:66:f6:e2:05:7b:3c:04:61:d2:d5:50:
4a:c4:78:a2:90:65:84:0a:6f:91:1f:85:64:71:56:
fc:cc:8e:84:eb:74:23:a4:f5:30:53:2c:23:53:3a:
57:aa:10:d6:a7:eb:f1:82:95:a1:40:cb:7c:8c:58:
ee:99:30:ec:38:82:d9:3b:2d:f1:3d:70:01:ea:60:
00:87:4e:c8:64:be:76:b2:3f:c5:cd:a6:54:8c:93:
6e:92:34:8f:4a:de:1d:80:c2:99:e5:a8:ad:7c:8b:
a1:0c:a9:34:3e:75:63:19:4f:54:43:46:13:38:70:
1c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:01:71:BC:ED:7D:D1:02:1E:82:D0:A9:7A:8D:78:F7:35:EF:EB:8E
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/QQFxvO190QIegtCpeo149zXv644.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e021::/48
Signature Algorithm: sha256WithRSAEncryption
39:ad:74:bf:61:72:a8:09:b7:0b:45:c7:7f:a4:86:cc:b0:a3:
58:d5:e4:e6:25:1a:98:65:6c:2f:19:4c:f5:2a:bd:34:91:8c:
e1:d0:d3:f7:92:8e:e8:50:90:0f:d0:a7:99:16:de:2b:8f:2c:
0a:bd:31:13:e1:01:df:33:75:24:ee:0b:a2:28:09:cb:33:4b:
13:06:9f:5e:44:95:40:1c:f1:d9:58:01:05:65:85:d2:8c:3e:
da:e8:be:ff:b4:a7:18:72:5f:7a:62:68:aa:b7:d3:78:b5:56:
3b:cd:e7:b1:e4:e7:9e:3e:f0:87:94:ab:91:f0:57:03:c8:c9:
b7:61:7c:cf:15:e7:c9:28:9a:78:ef:92:85:96:17:c6:71:0e:
bf:61:b9:c9:88:6d:9e:13:b0:99:66:b4:f8:1b:9d:be:d1:3d:
7d:cc:43:d1:39:d8:15:ee:b9:3f:ae:92:3e:5e:e8:4e:56:12:
a8:b4:7b:77:80:27:14:9a:a4:20:81:be:69:75:d8:83:89:29:
4d:e6:66:e4:13:cc:bc:4a:be:7d:9c:14:d2:f4:f5:9a:29:cb:
39:e1:57:5f:89:f6:30:c4:85:e3:38:28:95:d6:5e:f7:ed:5a:
fe:45:3f:54:20:54:52:5a:78:f9:ef:f1:70:6f:f1:72:ce:fd:
9e:d7:51:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org