Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/qH2ZsuW2dsePoEikTFk7JDlNZ98.roa
File: qH2ZsuW2dsePoEikTFk7JDlNZ98.roa (raw, json)
Hash identifier: jMFDrtUpRkQaXknHbG4XoVj5dlEfA23MSWz3C8OYsCI=
Subject key identifier: A8:7D:99:B2:E5:B6:76:C7:8F:A0:48:A4:4C:59:3B:24:39:4D:67:DF
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 07C2F0
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/qH2ZsuW2dsePoEikTFk7JDlNZ98.roa
Signing time: Mon 04 Apr 2022 20:12:05 +0000
ROA not before: Mon 04 Apr 2022 20:12:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206444
IP address blocks: 2a12:bec1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 508656 (0x7c2f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 4 20:12:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a87d99b2e5b676c78fa048a44c593b24394d67df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:c5:2f:57:01:6b:ec:f4:50:81:b2:b3:68:33:
46:5a:e7:6d:95:fa:83:cc:8d:9b:5b:d4:f0:e3:dc:
b0:a5:7f:08:f7:0a:da:7f:9f:53:87:4b:a3:f4:a8:
f9:c1:62:f5:9f:01:4a:5a:c8:96:01:e6:2c:de:98:
84:19:16:9c:4b:05:2e:77:65:a2:c2:a0:53:b2:6e:
c1:61:47:02:b4:90:da:af:b8:3b:b7:07:7f:89:7c:
83:5c:83:8e:6d:27:ca:1c:0b:43:05:a0:16:b2:f2:
ef:7e:f2:63:bb:1c:f6:1d:18:c5:07:e7:9e:52:cc:
dc:00:1f:18:13:e4:f0:4d:52:73:01:73:2e:33:14:
6e:f7:22:53:24:4f:c5:68:6f:6e:2d:d1:44:3d:8a:
6f:aa:f1:32:e6:2f:1e:02:15:cf:d5:69:c3:4d:e7:
20:23:bd:82:f6:dd:3f:ed:fc:3c:9a:36:42:8b:68:
77:f4:ea:54:c7:bd:f1:fa:a8:30:36:9f:df:db:df:
c2:08:b7:43:f0:5f:67:5f:d3:07:9a:2b:bf:d6:b5:
f6:e0:b3:39:7d:ed:91:25:56:31:e5:25:2a:95:97:
d6:86:a3:0e:bb:3f:d7:a0:a8:9c:ef:b1:9e:09:f5:
be:13:2d:61:22:d6:30:f6:31:50:d7:3b:94:a6:73:
52:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:7D:99:B2:E5:B6:76:C7:8F:A0:48:A4:4C:59:3B:24:39:4D:67:DF
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/qH2ZsuW2dsePoEikTFk7JDlNZ98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec1::/32
Signature Algorithm: sha256WithRSAEncryption
8a:65:50:45:a0:dd:f0:4d:51:e0:63:b9:1d:e3:f8:ca:03:9a:
11:f5:f7:1b:48:4c:14:5f:01:cb:68:a7:2d:cd:da:ad:32:97:
cf:95:96:7c:11:56:85:db:0c:c3:1c:a9:10:3d:ad:7d:67:3f:
98:dc:c6:3c:95:45:27:d5:ea:c8:47:93:b6:f1:bb:1d:f6:f3:
c4:c5:c9:4b:1b:e0:99:1a:b0:fd:32:4c:bb:89:45:12:48:35:
7e:ea:aa:86:f6:81:5e:d2:c1:91:59:f3:32:a8:2e:55:e5:79:
1b:47:8e:c6:1c:09:97:e0:2c:f2:0c:cd:b8:76:ae:f6:a2:0e:
0d:3c:37:53:ee:0d:96:c9:13:48:05:28:47:17:54:5f:06:8f:
24:49:f8:f7:dd:a8:2a:7a:8b:b0:5b:6c:cf:87:36:fd:c1:83:
53:56:12:3b:ad:c0:bb:00:1d:2e:3d:cd:37:64:ce:1a:8b:94:
fa:5f:f8:01:48:7c:c5:82:af:0c:d8:9c:87:0e:d1:0a:5c:24:
ff:f8:4d:db:9c:84:fa:d7:3f:29:6f:e4:38:b6:4d:14:5f:a0:
b7:70:cd:d9:18:5b:1f:5e:27:6a:a6:d1:e2:1d:75:c9:65:2a:
5f:d9:d3:7d:a4:d6:7c:76:f2:01:ed:2f:33:b4:b7:89:06:28:
c9:ca:62:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org